Are you ready to make a real impact in the world of cyber security? We’re looking for a Lead Cyber Security Specialist to help design and deliver innovative security plans that protect our products and cloud services. As part of our Security team, you’ll be at the forefront of ensuring our solutions remain secure, compliant, and trusted.
1. You will select,design,and use the tools aimedatmonitoringthe security of ourofferingandalsoresponding topossible threatsand incidents.
2. You will implement and stay abreast of Cloud and DevOps industry best practices and tooling.
3. You will take part in assessing the security of products leveraging AI.
4. You will collaborate with top-notch clients and become part ofa great team, where there is room for improvement at all levels.
You may work in a hybrid mode from one of our offices in Lucca, Milan, Turin, Rome, or Salerno, or fully remotely if you are based far from these locations.
What You'll Do:
Security Incident Handling
5. Apply Incident Response procedures related to acknowledged attacks.
6. Security incident assessments and classification based on risk.
Vulnerability Management
7. Design, plan,and execute periodical Vulnerability Assessments,addressthe Vulnerability Management process on cloud infrastructures, using international methodologies and standards.
8. Perform impact analysis and remediation of vulnerabilities.
9. Support and guide the DevelopmentDepartmentwith the proper remediations.
Support initiatives related to the security of complex cloud infrastructures
10. Threat intelligence activities.
11. Evaluation of the security level of new developments .
12. Fine tuning of compliance as code.
Support SSDLCofDevelopment Department
13. Support development teams in designing threat modeling,definingsecurityrequirements.
14. SupportSecDevOpsactivities (such as SAST, DAST, SCA,securitytests,...).
You Have:
15. At least 7 yearsof experience in cyber security roles.
16. Bachelor's degree in Computer Science, Cybersecurity, or related field (work experience may substitute for education requirements).
17. Experience with modern security tools and platforms, including WAF technologies, SIEM platforms, IDS/IPS systems, Cloud Provider Threat Detection Service, Multi-Provider Cloud Native Application Protection Platforms, CIEM tools, EDR technologies.
18. Strong understanding of the Secure Software Development Lifecycle (SSDLC).
19. Familiarity with major Information Security regulations and standards (e.g., ISO 27001, SOC 1 & SOC 2, DORA, NIS2).
20. Ability to analyze code and support secure development practices.
21. Fluency in Italian and good knowledge of English.
What do we offer you at CCH Tagetik part of Wolters Kluwer?
22. Flexible working hours and flexible working policy.
23. English classes and full access to E-learning platforms such as Pluralsight, LinkedIn Learning and Udemy.
24. Possibility of certification paths such as cloud providers certifications, security certifications, and more.
25. Development plans to help you steer your career path. Annual performance and salary reviews.
26. Community and teambuilding events like the global code games, networking events and Wolters Kluwer value days.