Social network you want to login/join with:
RINA is currently recruiting for a Cybersecurity GRC Consultant to join its office in GENOA, ROME OR MILAN within the Cyber Security and Management Consulting Division.
Mission
RINA is seeking a Cyber Security GRC consultant to join our Cyber Team in GENOA, ROME, or MILAN.
Key Accountabilities
The person will be responsible for:
1. Carrying out technical activities such as:
2. Identifying security risks within organizations and complex systems/architectures.
3. Designing security measures and providing recommendations to improve security postures.
4. Verifying compliance with laws, regulations, and standards related to security and cybersecurity.
5. Providing support to customers in cybersecurity-related activities.
6. Drafting technical/procedural documents related to:
7. IT Security Governance, Risk, and Compliance (e.g., ISO/IEC 27001:2022, NIS/NIS2 directives, PSNC)
8. INFOSEC aspects (e.g., National Scheme for IT products security evaluation, Common Criteria/ISO 15408, ENISA EUCC)
9. Cybersecurity in Industrial Automation Control Systems (e.g., IEC 62443 requirements for risk assessment, systems, and components)
10. Marine cybersecurity requirements from the International Association of Classification Societies (e.g., IACS Unified Requirements, IMO circulars, Flag Administrations requests)
11. Maintaining and updating RINA cybersecurity guidelines and assessment methodologies.
12. Supporting business development from a technical perspective, including drafting technical offers and detailing services (for senior personnel).
#LI-MM2
Education
Bachelor’s Degree in Engineering (General)
RINA is recruiting a Cybersecurity GRC Consultant for its offices in GENOA, ROME, or MILAN, within the Cyber Security and Management Consulting Division.
Qualifications
Requirements:
* Knowledge of laws, regulations, international standards, and best practices (e.g., ISO/IEC 27001, NIST Cybersecurity Framework, NIS/NIS2 Directives, ISA/IEC 62443, Common Criteria/ISO 15408, ISO 21434).
* Engineering academic background.
* Strong problem-solving skills.
* Excellent verbal and written communication skills in Italian and English.
* Flexibility and ability to multitask in a fast-paced environment.
* Willingness to travel within the country and abroad.
Desired Requirements:
* Experience with various computer systems and security tools.
* Security certifications such as ISO/IEC 27001 Lead Auditor, GIAC/GICSP, ISA/IEC 62443 certifications, CEH, OSCP, ISACA CISM/CISA/CRISC, ISC2 CISSP.
* Knowledge of programming languages (Java, C/C++/C#, VB.Net, Python) and their interfaces with DBMS and development environments.
* Understanding of networking concepts (segmentation, protocols, security), with experience in network administration/configuration appreciated.
Core Competencies
* ADDRESS THE WAY - Having a broad perspective and reinterpreting situations
* BUILD NETWORK - Building trust across departments and externally
* CLIENT INTIMACY - Understanding and satisfying client needs and expectations
* EARN TRUST - Valuing diverse opinions and openness
* MAKE EFFECTIVE DECISIONS - Prioritizing activities and managing resources
* MANAGE EMOTIONS - Recognizing and controlling one's emotions
#J-18808-Ljbffr