WHO WE ARE
We are SACE: the strategic partner for Italian companies that want to grow both in Italy and abroad. We accelerate the growth of businesses of all sizes, supporting exports, international expansion and strategic investments with tailored insurance and financial solutions. We accompany companies in exploring new markets, strengthening their competitiveness, managing risks and creating opportunities, with an innovative and sustainable approach that generates value for businesses while also contributing to the well‑being of the community.
La sfida che ti aspetta
Entrerai nel team di Risk Operational Management di SACE, dove potrai presidiare l’intero framework di ICT Risk Management, con focus su Cyber Risk, Business Continuity e Third Party Risk Management (TPRM). In particolare, ti occuperai delle seguenti attività:
* Condurre analisi dei rischi ICT in conformità alle normative DORA e NIS2, identificando vulnerabilità e definendo piani di mitigazione.
* Aggiornare, applicare e monitorare il framework di ICT Risk Management, incluse metodologie, controlli e scenari.
* Monitorare KPI e KRI ICT, incluse metriche di Cyber Risk, availability, incidenti, vulnerabilità e remediation, nonché elaborare e aggiornare dashboard.
* Condurre valutazioni dei rischi operativi e informatici relativi ai fornitori critici e ai servizi in outsourcing, in coerenza con DORA e con la Policy ORM.
* Valutare i contratti ICT in ottica rischio (SLA, KPI, KRI, business continuity dei fornitori, requisiti di sicurezza, governance), effettuare il monitoraggio dei requisiti contrattuali e del rischio e contribuire alla definizione e applicazione delle checklist TPRM per onboarding, variazioni e rinnovi contrattuali.
* Predisporre reportistica periodica verso gli Organi Competenti.
Sei la persona giusta per noi se hai…
Maturato un’esperienza di almeno di 4 anni in ruoli analoghi.
Conoscenza approfondita di DORA, NIS2, Regolamentazione IVASS e Banca d’Italia (Operational Risk e ICT Risk).
Conoscenza di framework ICT e Risk Management: ISO 27001, ISO 27005, ISO 22301, COBIT, NIST CSF.
Competenze di ICT Governance, Cybersecurity, gestione incidenti, analisi vulnerabilità e KPI/KRI di sicurezza.
Capacità di condurre ICT Risk Assessment e Operational Risk Assessment (LDC, RSA).
Conoscenza delle metodologie TPRM e dei requisiti di outsourcing ICT secondo DORA.
Esperienza nella predisposizione di report per funzioni di controllo e Organi Societari.
Familiarità con strumenti di data analysis e dashboarding (Power BI, Excel avanzato).
Se oltre a queste skills, sei una Persona che: ha spiccate capacità analitiche e attitudine alla valutazione dei rischi; è precisa, affidabile e attenta al dettaglio; è proattiva, responsabile e orientata alla collaborazione; ha capacità di sintesi.
Sede di lavoro: Roma
Tipo di contratto: Contratto a tempo indeterminato
What you will find at SACE
At SACE, we believe in people and their potential: we are convinced that what truly makes the difference are the ideas, energy, and talent of those who join our team. We are a center of excellence where skills are cultivated and shared every day, thanks to our tailored training and development programs that allow people to enrich their journey with new perspectives and expertise. We believe in technological innovation as a driver to simplify, create new opportunities and always look to the future. At the same time, we are committed every day to caring for the well‑being of our people with dedicated solutions, fostering a work environment that prioritizes diversity, inclusion and sustainability.
All applications will be considered regardless of sex, sexual orientation, gender identity or expression, nationality, ethnic origin, religion, age, disability or any other characteristic protected by national and international regulations.
SACE is the Export Credit Agency directly owned by the Ministry of Economy and Finance. It specializes in supporting the growth of Italian companies through a wide range of tools and solutions to support exports and innovation, including financial guarantees, factoring, risk management and protection, advisory services, and business matching. With a network of export advisors in 23 offices in Italy and around the world in high‑potential markets for Made in Italy products, SACE currently supports 60,000 companies, enabling them to fully realize their potential both in Italy and internationally, with a portfolio of insured transactions and guaranteed investments totaling approximately €270 billion in 200 markets worldwide.
If you encounter any problems that prevent you from completing your application, please write to. Our team will assist you as soon as possible. Please note, however, that applications sent by email (including CVs) cannot be considered.
#J-18808-Ljbffr