H3Global IT Specialist Cyber Security Operations /h3pCampari Group today is a major player in the global branded spirits industry, with a portfolio of over 50 premium and super premium brands, marketed and distributed in over 190 markets around the world, with leading positions in Europe and the Americas. /ppHeadquartered in Milan, Italy, Campari Group owns 22 plants worldwide and has its own distribution network in 22 countries, and employs approximately 4,000 people. /ppShares of the parent company Davide Campari - Milano N.V. are listed on the Italian Stock Exchange since 2001. Campari Group is today the sixth-largest player worldwide in the premium spirits industry. /ppstrongGeneral Description of the Role and related Objectives /strong /ppThe Global IT Specialist Cyber Security Operations is crucial in Campari Group's cyber security operations. Reporting to the Global Security Operations Manager, this role operates within a diverse, multi-vendor environment. The specialist works closely with various departments, such as the Security Operations Center and the Global Cyber Security Department. A significant aspect of their role is centered around Vulnerability Management and the Cyber Security Incident Response process, the related playbooks and automation/orchestration. /ppstrongKey Responsibilities and Activities /strong /ppstrongVulnerability Management: /strong /pulliLead the vulnerability management lifecycle: identification, classification, prioritization, remediation, and validation. /liliCoordinate periodic vulnerability assessments across infrastructure, applications, and cloud environments. /liliCollaborate with IT teams to ensure timely remediation of critical vulnerabilities. /liliMonitor exposure to known CVEs and zero-day vulnerabilities through threat intelligence feeds. /liliTrack and report remediation metrics (e.g., mean time to remediate, percentage of critical vulnerabilities resolved) to improve operational posture. /li /ulpstrongCyber Security Incident Response Process: /strong /pulliManagement of playbooks with a strong focus on corporate areas (Internal/External Communication, Legal Compliance, HR, IT Operations, and other IT Centers of Excellence). /liliDevelopment of new playbooks from scratch based on new events and emerging threats, including those specific to Operational Technology. /liliMapping of playbooks on ServiceNow. /liliIncident simulations with all technical teams and participation in TableTop exercises covering both IT and OT scenarios. /li /ulpstrongCyber Security Operation Management: /strong /pulliTake ownership of the events in partnership with the SOC for efficient incident responses across IT and OT domains. /liliParticipate in post-incident reviews, using feedback to refine response protocols, playbooks, SOPs, and the knowledge base aiming to improve security metrics such as the MTT*s. /liliDrive the adoption of automation/orchestration in incident resolution. /liliWork with the SOC for accurate and timely evidence collection and forensic analysis in the event of data breach security incidents to determine the root cause and its impact. /liliManage security alerts with the SOC and oversee SIEM rules specific to Campari, including those tailored for OT systems and assets. /li /ulpstrongThreat Hunting and Intelligence: /strong /pulliCooperate with the SOC to conduct threat hunting, penetration test and Attack Simulation and Path Visualization using proper tools and collaborate with red/blue teams for attack simulations and resilience testing. /liliWork with Threat Intelligence providers to stay updated on new threats. /li /ulpstrongKey Relationships /strong /ppInternal: Global Cyber Security Managers; Global Service Delivery Tower Leads; Regional Service Managers; COE team. /ppExternal: Technology and service providers. /ppstrongExperience Education /strong /pulliMinimum 3 years of proven experience in Cyber Security in a multinational company with an IT outsourcing model or in an IT Consultancy firm focused on security services. /liliFluent Italian and English, any other European language is an advantage; /liliDegree in cyber security, computer science, engineering or equivalent is preferred; /liliProven experience in incident handling, playbook/runbook handling and forensic evidence collection. /liliExperience with cloud services and cloud SIEMs preferibly with OT domains knowledge. /liliExcellent communication skills, versatility, flexibility and ability to work under pressure; /li /ulpstrongCertifications (highly valued): /strong /pulliCertified Information Systems Security Professional (CISSP) /liliGIAC Incident Handler (GCIH) /liliOffensive Security Certified Professional (OSCP) /liliIncident Handling Response Professional (IHRP) /liliCertified Computer Security Incident Handler (CSIH) /li /ulpstrongRequired Skills Traits /strong /pulliSkilled in security incident response process and playbooks. /liliAble to cooperate with various teams and vendors. /liliAbility to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner. /liliAbility to work under pressure. /liliCultural awareness and excellent team working skills. /liliStrong problem-solving and troubleshooting skills /li /ulpbOur commitment to Diversity Inclusion: /b /ppAt Campari Group we believe in building more value together, thus we see diversity in all forms as a source of enrichment. Our employment policies and practices ensure that we are committed to providing equal employment opportunities in all aspects of employment without regard to any individual’s race, religion, creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex, sexual orientation, gender identity or characteristics or expression, political affiliation or activity, age, veteran status, citizenship, or any other characteristic protected by law. /ppbNote to applicants: /b /ppYour application will be assessed based on your abilities, expertise, general knowledge and experience, not because of any confidential, proprietary or trade secret information you may possess. You must not disclose to Campari Group any such information. In the event that you are asked a question that cannot be answered without disclosure of any confidential, proprietary or trade secret information (including from a current or prior employer or their vendors or customers), you must decline to answer the question. /ppbNotice to third party agencies: /b /ppPlease refrain from cold-calling or emailing our executive leadership team or the HR community directly. The Talent Acquisition department manages centralized recruiting operations globally, including the selection and management of external suppliers. Currently, our preferred supplier list is at full capacity. To ensure we have your information on file for future consideration, we kindly request that you complete the online form provided here. /p #J-18808-Ljbffr