Ph3Experteer Overview /h3pAs Senior Platform Security Engineer, you will strengthen our security posture across platforms, infrastructure, and workflows. You’ll bridge security operations, governance, risk, and product security to safeguard systems, clients, and IP. You will lead hands‑on technical tasks while coordinating with Product, Infra, and Security Operations teams. This role offers growth within a dedicated security function and exposure to both operations and product development in the Italian market. /ph3Retribuzione / Benefits /h3ulliSupport design and execution of the information security risk management framework /liliEnsure compliance with NIS2, DORA and ISO27001-related obligations with Legal, Risk and IT /liliMaintain and improve security policies, standards and control documentation /liliAssist with audits, due diligence and exception management /liliSupport DevSecOps and secure design in product/engineering teams /liliAct as escalation point during major incidents or zero‑day threats /liliLead detection and response improvements for the entity /liliServe as senior incident responder for emerging threats /liliCollaborate with infrastructure, network and cross‑functional teams to contain and remediate incidents /liliPerform root cause analysis and forensic investigations as needed /liliExpand logging and monitoring coverage to enhance system visibility /liliMaintain and test incident response runbooks, containment strategies and escalation protocols /liliLead end‑to‑end vulnerability management for ION Markets systems /liliSupport security architecture reviews for developed systems /liliMay involve overnight, weekend and on‑call activities /li /ulh3Responsabilità /h3ulliItalian and English fluency /liliDegree/diploma/certifications in a technology‑related field or relevant experience /liliCertifications such as Security+, OSCP, CCSP, CEH, GCIH, GMON are highly desired /liliUp to ~7 years of information security experience with hands‑on operations and compliance background /liliFundamental programming/scripting capabilities (e.g., Python, PowerShell, Bash) /liliFamiliarity with NIS2, DORA and external regulations /liliStrong understanding of ISO27K /liliIndependent, team‑oriented with strong communication /liliAbility to own tasks and manage time effectively /liliEndpoint security concepts, networking, cryptography, forensics basics /liliExperience with security technologies (EDR, SIEM, DLP, CASB, UEBA, IDS/IPS, firewalls, IAM/PIM/PAM, vulnerability management) /li /ul /p #J-18808-Ljbffr