PpRINA is currently recruiting for a bCyber Security GRC Consultant /b to join its office in bROME, GENOA OR MILAN /b within the bOperating Engine /b Division. /p h3Mission /h3 pThe Cyber Security GRC Consultant focuses on contributing to the development, implementation, and maintenance of governance, risk, and compliance programs, ensuring that our organization and clients maintain robust information security and regulatory compliance. /p h3Key Accountabilities /h3 pThe selected candidate will be responsible for: /p ul liIdentifying security risks in organizations and complex systems/architectures; /li liDesigning security measures and providing recommendations to improve security posture; /li liEnsuring compliance with laws, regulations, and cybersecurity standards; /li liSupporting customers in cybersecurity-related activities; /li liDrafting technical reports (often in English); /li liMaintaining and updating RINA cybersecurity guidelines and assessment methodologies; /li liProviding technical support for business development, including drafting proposals and defining services; /li liCoordinating junior staff when applicable. /li /ul h3Education /h3 pBachelor’s Degree in Information Systems or Cyber Security /p h3Qualifications /h3 ul liAt least 3 years of experience in cybersecurity, with proven expertise in GRC topics, GDPR technical aspects, and knowledge of relevant standards/regulations; /li liStrong knowledge of laws, regulations, international standards, and best practices (e.g. GDPR, ISO 27000 family, NIST Cybersecurity Framework, NIS Directives, ISA 62443, Common Criteria/ISO 15408, etc.); /li liExperience in Governance, Risk Compliance activities for IT/OT security; /li liAbility to identify and analyze information security risks in diverse contexts; /li liExcellent problem-solving skills; /li liStrong verbal and written communication skills in Italian and English; /li liFlexibility and ability to manage multiple tasks in a fast-paced environment; /li liWillingness to travel domestically and internationally. /li liOne or more recognized security certifications (e.g. ISO 27001 Lead Auditor, ISA 62443, ISACA CISM/CISA/CRISC, ISC² CISSP, Data Protection Officer, etc.); /li liKnowledge of security tools and platforms such as: /li liGovernance Risk Compliance (GRC) platforms. /li liPrevious experience with security certification processes for Information Security Management Systems (ISO/IEC 27001) or IT/OT products (Common Criteria, ISA 62443). /li /ul h3Competencies /h3 ul liWORKPLACE DYNAMICS - Resourcefulness in shaping progress and working efficiently. /li liPERSONAL EMPOWERMENT - Ownership for life, work and results, striving to grow professionally and personally. /li liINTERPERSONAL INFLUENCE - Skills and strategies we use to interact effectively with others. /li liDOMAIN BUSINESS ACUMEN - Applying a scientific approach and critical thinking in operations and solution development within area of expertise. /li liFORESIGHT INSIGHT - Context awareness adopting a systemic perspective and informed decision making. /li /ul pRINA is a multinational company providing a wide range of services in the energy, marine, certification, infrastructure mobility, industry, research development sectors. Our business model covers the full process of project development, from concept to completion. /p h3EEO Statement /h3 pAt RINA, we endeavor to create a work environment where every single person is valued and encouraged to develop new ideas. We provide equal employment opportunities and are committed to creating a workplace where everyone feels respected and safe from discrimination or harassment of any kind. We are also compliant to the Italian Law n. 68/99. /p /p #J-18808-Ljbffr