Information Security Officer

Our Company Technogym inspires 50 million daily users to work out utilizing our innovative & engaging physical activity solutions . By promoting the Wellness lifestyle of exercise, a balanced diet, and a positive mental approach, Technogym has rapidly grown into a success story of over 2,400 employees in 14 Branches, reaching more than 100 countries, 8 editions of the Olympic Games – from Sydney 2000 to Tokyo 2020. To pursue our mission and continue our success, we are looking for team players with strong relationship skills and an international approach, who are eager to invest their energy into building dreams. If you naturally fit in with our culture by practicing sport and living a healthy lifestyle and are forward-thinking, always proactive and digital savvy, you have the right spirit to join Technogym About the Role We are looking for a highly experienced and skilled Information security officer to develop and implement and check the information security strategy for our company. The Information Security Officer will provide leadership and direction for the development and implementation of security policies, procedures, and standards that align with the company’s overall goals and objectives. This role requires a high level of independence, strategic thinking, and the ability to work effectively with multiple stakeholders across the organization. The candidate should have a solid understanding of on-prem and multi-cloud environments and should be able to provide guidance to the organization on how to secure data and applications. To be a successful information security officer, you should have a comprehensive knowledge of possible IT and device security risks and mitigate them. Ultimately, a top-notch information security officer should prepare the company for potential cyber-attacks and have a keen interest in business development, with a dedicated organizational structure Responsibilities Develop and implement a comprehensive information security program that aligns with the organization’s overall goals and objectives Establish and maintain security policies, procedures, and standards that are in compliance with industry best practices and regulatory requirements Identify, assess, and mitigate information security risks to the organization Stay current with emerging security threats and trends, and implement appropriate controls to protect the organization Communicate effectively with all levels of the organization, including executive management and the board of directors, regarding information security issues and risks Manage relationships with external vendors and partners to ensure the organization’s information security needs are met Oversee incident response and disaster recovery planning and execution Review and approve security designs for applications and infrastructure deployed on-prem and in the cloud Ensure compliance with regulatory requirements for data stored in the cloud (including but non-limited to ISO 27001) Provide guidance on cloud security best practices and standards Continuously monitor and review on-prem and cloud environments for potential security threats Determining the cause of internal and external data breaches and instituting appropriate corrective action. Presenting regular feedback reports on IT and device network security to the board of directors. Managing the information security of company documents and processing above all those connected with the R&D Department Performing cyber investigations on data breaches and attacks demonstrating to know how and when involving police and institutional authorities Requirements MD in computer science, information technology, or a related field. An MBA is preferable, with a full marks path 8 years experience in risk management and information security. An exceptional understanding of scripting and source code programming languages, Node, .NET Core, and Java. Knowledge of main information security management frameworks, such as ISO/IEC 27001 and NIST. Expertise in cloud security best practices, standards, and technologies, specifically Office365, AWS, Azure, and Google Cloud Experience with incident response, disaster recovery, and risk management Experience in financial forecasting and budget management. Outstanding negotiation skills for negotiating contracts and IT support services to be rendered. Excellent understanding of current legislation and regulations relevant to our organization. Excellent project management and leadership skills. First-rate written and verbal communication skills. First-rate English Level (C1) in addition to Italian Passion for fitness, training & sports Results-driven, positive problem solver, and flexible on how to manage dependent resources and unpredictable events Strong “soft skills” for working in heterogeneous teams and under different hierarchies Demonstrable references Technogym is an Equal Opportunity Employer Technogym is an equal opportunities employer. We welcome applications from all members of society irrespective of age, sex, sexual orientation, race, religion or belief. Discover your potential with a career at Technogym, where work means loving what you do, taking on challenges, learning from others, sharing a vision and making it come true –