2 days ago Be among the first 25 applicants Get AI-powered advice on this job and more exclusive features. Direct message the job poster from Carlo Gavazzi Automation Carlo Gavazzi is a leading provider of industrial automation solutions. Our products and systems are used worldwide in various industries, including factory automation, building automation, and energy management. We are seeking a dedicated and experienced Cyber Security Specialist to join our team. In this role, you will be responsible for developing and integrating cybersecurity measures across our company's IT environments and the operational technology (OT) in our production plants, with a focus on zero-trust principles. You will collaborate with internal teams and external partners to ensure our systems are secure, compliant, and resilient against cyber threats. Key Responsibilities Develop and Integrate Cyber Security Measures: Implement cybersecurity strategies within all company IT environments and OT systems in our production plants, emphasizing zero-trust principles. Monitor and Analyze Security Events: Regularly monitor and analyze security events and vulnerabilities alongside our external Security Operations Center (SOC) to determine appropriate responses to cyber risks. Incident Response and Analysis: Utilize tools for accurate and timely collection and analysis of evidence during cybersecurity incidents. Identify root causes and assess the impact on systems and business operations following internal incident detection and response procedures. Plan and Execute Incident Simulations : Assist in planning and conducting regular cybersecurity incident simulations. Document results and address findings at both procedural and technical levels. Participate in IT and Business Projects: Engage in new and existing IT and business projects to uphold security-by-design and security-by-default principles. Collaborate with Stakeholders: Work closely with the Group CIO and CISO office, internal teams, and external partners to assess, contain, and eliminate potential security threats. Support regular vulnerability assessments. Stay Updated on Global Security Threats : Keep abreast of global security threats and emerging cybersecurity trends. Produce Technical Documentation: Create technical documents, including project presentations, analysis reports, and metrics. Draft policies and procedures to ensure compliance with ISO 27001 standards. Manage Cybersecurity Solutions: Oversee key cybersecurity solutions and propose continuous improvements. Promote Cybersecurity Culture: Help foster and maintain a strong cybersecurity culture throughout the company. Maintain Information Security Management Systems: Regularly update information security management system documents to meet certification requirements based on ISO 27001. Support the internal quality office in ensuring compliance with certification bodies. Monitor Audit Trails and Logs: Monitor audit trails and logs to track activities by privileged users. Detect and anticipate potential security breaches in real-time to prevent security policy violations. Sounds great! Am I the Cyber Security Specialistyou are looking for? Let’s see: Bachelor's degree in Computer Science, Information Technology, or a related scientific field. Master’s degree or specialization in Cyber Security is highly preferred. Minimum of 5 years in the cybersecurity industry. Proven experience working within IT/Cyber Security operational teams or with System Integrators. Specific focus on SOC (Security Operations Center), CERT (Computer Emergency Response Team), or CSIRT (Computer Security Incident Response Team) environments is a significant advantage. Strong knowledge of cybersecurity principles and best practices. Familiarity with regulatory and industry standards such as NIST Cyber Security Framework, ISO 27001 Knowledge of ISA/IEC 62443 standards is a plus. Experience with cloud services and solutions like Microsoft 365, Azure, AWS, etc. Hands-on experience in securing network architectures, including: o Firewalls, VPNs, IDS/IPS o SIEM tools, EDR/XDR solutions o Vulnerability management solutions o Other security technologies Professional certifications in cybersecurity are highly desirable, such as: o CISSP (Certified Information Systems Security Professional) o OSCP (Offensive Security Certified Professional) o Or similar certifications. Excellent ability to communicate complex and technical issues to diverse audiences. Proficiency in English is required. Strong problem-solving and troubleshooting abilities. Excellent interpersonal and teamwork skills. Availability to travel internationally for short periods. Carlo Gavazzi is an award-winning company! It has the perfect blend of the small family-owned company culture, with the resources and support of a large global corporation. We focus on the pursuit of excellence with our great people and dedication to our customers. Interested in finding out more? Please send your CV to GlobalTalent@carlogavazzi.ch indicating the role as reference you are interested in. Browse our website (www.gavazziautomation.com) or visit our LinkedIn page Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job function Job function Engineering and Information Technology Industries Appliances, Electrical, and Electronics Manufacturing Referrals increase your chances of interviewing at Carlo Gavazzi Automation by 2x Get notified about new Cyber Security Specialist jobs in Lainate, Lombardy, Italy. Cologno Monzese, Lombardy, Italy 19 hours ago Cyber-Security Governance Specialist (Junior) System Monitoring (Physical Security System) - Milano Junior Cyber Security Strategy Consultant IT & Cyber Security Governance - Junior Consultant We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. J-18808-Ljbffr