Overview: Role purpose: support the Cyber Defence team to assess and reduce Cyber Risk leading the Vulnerability Management program and handling Security Incidents Key accountabilities and decision ownership: - Ensure that Vulnerability Management activities are carried out across company perimeter, lining-up with owners about detected vulnerabilities - Plan and coordinate all activities required to perform Penetration Tests, Red/Blue Teaming, Vulnerability Assessment and Incident Exercises - Perform risk analysis, support and track remediation plans also governing the risk acceptance process as results of ethical hacking activities - Facilitate interactions between Cyber Defence and other teams, managing relationship with Virtual Security community, Engineering and Operation teams - Lead incident response and post incident activities for high severity incidents ensuring that lessons learnt are distributed to all key stakeholders Core competencies, knowledge and experience: - Strong understanding of the end to end Vulnerability Management process and related industry standards, such as CVE, CVSS. Knowledge of methodologies and frameworks like OWASP, OSSTMM, MITRE would be a plus - Experience in Vulnerability Assessment, Penetration Testing and Red Teaming activities, either as an operational or as a coordinator. Experience in Threat Intelligence & Threat Hunting would be a plus - Knowledge of the main Vulnerability Scanning tools and experience in the interpretation/analysis of their results - Ability to lead projects in complex organizations reporting to managers and executives - Attitude to team working in a multilanguage and multicultural environment Must have technical / professional qualifications: - Master’s degree in Cyber Security, Computer Science or Telecommunication Engineering (or an equivalent education path) - Fluency in English and Italian (CEFR B2 or above) - Certifications in Project Management and Information Security. - 5 years of relevant experience in a similar role in Telcos, Banking, Fintech, Insurance, Digital Services sector