Summary\nAbout us\nKering is a global, family-led luxury group, home to people whose passion and expertise\nnurture creative Houses across couture and ready-to-wear, leather goods, jewelry, eyewear and beauty: Gucci, Saint Laurent, Bottega Veneta, Balenciaga, McQueen, Brioni, Boucheron, Pomellato, Dodo, Qeelin, Ginori 1735, as well as Kering Eyewear and Kering Beauté.\nInspired by their creative heritage, Kering Houses design and craft exceptional products and experiences that reflect the Group’s commitment to excellence, sustainability and culture.\nThis vision is expressed in our signature: Creativity is our Legacy. In 2024, Kering employed 47,000 people and generated revenue of €17.2 billion.\nJob Description\nContext\nKering is strengthening its cybersecurity posture in a context of growing threats and digital transformation across its prestigious portfolio of luxury houses. To achieve this, a dedicated team of cybersecurity experts globally ensures comprehensive protection for the group and its brands.\nWe are currently looking for a GUCCI CISO & Deputy Group CISO to join our cybersecurity leadership team, reporting directly to the Group CISO.\nYour Opportunity\nYou will lead cybersecurity operations for GUCCI directly and as a Kering Deputy Group CISO structure Cybersecurity practice for Bottega Veneta, Brioni & Pomellato, working alongside experienced security professionals and in close collaboration with GUCCI CTIO, IT teams, and corporate security functions. This is a hands-on leadership role where you’ll build and orchestrate security capabilities across all domains – from governance and compliance to detection and response – while supporting the group’s digital transformation and protecting the reputation of our iconic brands.\nHow You Will Contribute\nAs GUCCI CISO & Kering Deputy Group CISO, you will be responsible for:\nStrategic Leadership & Governance\nDefining and implementing the cybersecurity strategy across GUCCI and other activities, aligned with the group’s security framework structured around five pillars: Prevent, Comply, Protect, Detect & React, and Recover\nEstablishing and maintaining strong collaborative relationships with GUCCI CTIO, Tech teams & houses CIOs, acting as their trusted security partner\nLeading security governance across GUCCI, ensuring consistency while respecting each house’s unique operational needs\nDeputizing for the Group CISO in steering committees and executive meetings when needed Operational Security Management\nBuilding, leading, and developing dedicated cybersecurity teams within GUCCI, including recruiting talent and defining team structures\nManaging internal resources focused on security projects (Prevent pillar) and industrial cybersecurity (Protect pillar)\nOrchestrating external security resources and service providers to deliver comprehensive protection\nDriving hands-on security initiatives across all domains, from architecture reviews to incident response coordination Risk, Compliance & Policy Framework\nDefining and deploying information security policies tailored to GUCCI operations & across other houses\nMaintaining and evolving cyber risk mapping for subsidiaries, including project risk assessments and security remediation tracking\nEnsuring compliance with industry standards and regulations (PCI DSS, GDPR, ISO27001, local cybersecurity laws, etc.)\nLeading third-party security management, including supplier audits and vendor risk assessments Protection & Resilience\nOverseeing the deployment and optimization of technical security controls across GUCCI and other subsidiaries (infrastructure, cloud, applications, OT/industrial systems)\nCoordinating with corporate SOC and CSIRT teams to ensure effective threat detection and incident response capabilities\nDefining and implementing business continuity and disaster recovery plans for critical systems\nChampioning secure-by-design principles in digital transformation projects Awareness & Culture\nDesigning and rolling out engaging cybersecurity awareness programs across GUCCI and other subsidiaries employees (communications, e-learning, events, gamification, etc.)\nBuilding a security-conscious culture that balances protection with the creative and operational needs of GUCCI and other houses Reporting & Communication\nProducing regular security dashboards and metrics for the scope and group leadership\nCommunicating security posture, incidents, and improvements to technical and non-technical audiences\nCoordinating external security audits and managing findings remediation Who You Are\nRequired Experience & Skills:\nEducation: Bachelor’s or Master’s degree in Computer Science, Information Systems, or Cybersecurity, ideally complemented by relevant security certifications (CISSP, CISM, ISO 27001 Lead Implementer, GIAC, SANS, or demonstrable equivalent expertise)\nExperience: Minimum 8-10 years in IT/cybersecurity roles with demonstrated progression, including: At least 3-5 years in leadership positions managing security teams or pro