About the Role:
Reporting professionally to the Cyber Risk & Governance Manager and managerially to the Italy Cybersecurity Manager, the Cybersecurity Risk & Governance Expert is responsible for ensuring or supporting compliance with cybersecurity legislations, applicable standards, and internal governance frameworks. This role involves performing Cyber Risk Assessments and Third-Party Cybersecurity Assessments to evaluate applications, infrastructures, and suppliers when required.
Additionally, the position oversees the maintenance and evolution of the Cybersecurity Governance Framework, ensuring alignment with global laws, regulations, and standards across all countries where Ferrero operates.
This role will be based in our
Alba offices
, with the possibility of working remotely up two days per week.
Main Responsibilities:
You will be part of the
Europe Hub, managing requests and needs originating from the area
while planning activities and resources to
ensure continuous improvement of the cybersecurity posture
.
Maintaining awareness of global cybersecurity regulatory frameworks and standards
will be key to ensuring Ferrero's compliance with requirements, while
creating and delivering end-to-end compliance strategies and plans
to guarantee long-term adherence to frameworks, regulations, and best practices.
In addition, you will
lead the tracking and delivery of compliance activities
, keeping accurate records of evidence, remediation actions, and reporting to business stakeholders and regulators as needed. Beyond compliance, you will
conduct Third-Party Cybersecurity Assessments
and contribute to improving methodologies for evaluating supplier maturity and risk exposure.
Your role will also include
supporting the definition and maintenance of cybersecurity policies and procedures
, ensuring alignment with Ferrero's environment and industry-leading practices, while
integrating cybersecurity risk and compliance aspects into other Group processes effectively
. Finally, you will
perform cybersecurity risk assessments
to confirm or update risk levels of applications and infrastructures and
collaborate with internal stakeholders
to retrieve and present information necessary for compliance and audits.
About You:
Bringing solid expertise in cybersecurity risk and governance, you have at least 4 years of experience in similar roles within a multinational environment or in cybersecurity consultancy.
Your background includes assessing compliance against recognized frameworks and regulations, defining and maintaining governance models, and managing risk through audits and evaluations of IT and cybersecurity controls for applications, infrastructures, and third parties.
You hold a
degree in Computer Science, Engineering, or a related technical field
, and ideally a master's degree in Cybersecurity, Compliance, or Information Security.
Your knowledge includes
cybersecurity laws and regulations
such as NIS2 and the EU AI Act, as well as
international standards and frameworks
like ISO27001, NIST, COBIT, ITIL, and PCI DSS. Familiarity with risk management methodologies and control evaluation processes is essential.
You combine analytical thinking and problem-solving skills with the ability to communicate effectively in complex business contexts. Proficiency in
English
is essential for this role.
Ready to make cybersecurity governance your next big impact? Join Ferrero and help us build a resilient, compliant, and secure future. Apply today and be part of our global journey.
Our Benefits & Perks:
Careers with caring built in - discover our benefits here.
About Ferrero:
Ferrero began its journey in the small town of
Alba in Piedmont, Italy, in 1946.
Today, it is one of the world's largest sweet-packaged food companies, with many
iconic brands
sold in countries all over the world. Find out more about Ferrero at
DE&I; at Ferrero:
Ferrero is committed to building a diverse and inclusive culture in which all employees feel welcomed and appreciated and have the same opportunities. We believe all our people are equally talented in their own way. In nurturing the curiosity and natural abilities of our employees, we provide them, generation after generation, the means to succeed personally and professionally, enabling them to craft their journey at Ferrero. The diversity of our talents is what makes our work environment multicultural, innovative, and highly rewarding.
Find out more here.