Job n. 290125ita2 Summary: The role: Risk Assessment and Management - Conduct regular security risk assessments and audits to identify vulnerabilities. - Develop and implement strategies to mitigate identified risks. - Stay up-to-date on the latest security trends, threats, and tools. System and Network Security - Design and implement security measures to protect systems, networks, and data. - Monitor network traffic for unusual or suspicious activity. - Collaborate with other IT team to Install and maintain firewalls, intrusion detection/prevention systems (IDS/IPS), and antivirus software (MS Defender) Incident Response - Detect, analyze, and respond to security breaches or incidents. - Develop and document IRP - Incident Response Plan. Policy and Compliance - Develop, implement, and enforce security policies and procedures. - Ensure compliance with industry standards, such as GDPR, NIS2, ISO 27001. - Conduct employee training and awareness programs to promote cybersecurity best practices using Phishing Awareness platform. Threat Analysis and Mitigation - Collaborate on penetration testing to evaluate system defenses. - Identify and address advanced persistent threats (APTs). Collaboration and Reporting - Collaborate with other IT teams to integrate security solutions into business processes. - Prepare and present security reports to management and stakeholders. - Assist in disaster recovery and business continuity planning. Requirements: - 2-3 years of experience in cybersecurity, network security, or a similar role. - Microsoft Defender for Endpoint, Office 365 and Identity - Experience with other security tools and technologies, such as SIEM, firewalls, IDS/IPS, and antivirus software. - Knowledge of security frameworks and standards (e.g., ISO 27001). - Experience with penetration testing and vulnerability management tools. - Fluency in English; - Analytical, problem-solving, and communication skills - Problem Solving: rapid identification and resolution of threats and vulnerabilities. - Communication: translating complex security findings into actionable insights for technical and non-technical stakeholders. - Working with cross-functional teams, such as IT and Compliance, to implement security measures. - Location: ITALY, Nova Milanese - Date: 29 Jan 2025 - Experience: 3 to 5 years - Job family: Support Functions