Cyber Security Consultant - Provincia di Lodi, Lombardia, Italia - BTO spa

BTO spa
BTO spa
Azienda verificata
Provincia di Lodi, Lombardia, Italia

1 mese fa

Piero Bianchi

Inviato da:

Piero Bianchi

Reclutatore di talenti per beBee
Descrizione
BTO is an Italian Independent Research Center that provides consulting services to major European companies. The firm is based in Milan with offices in Torino, Rome, Bologna, Vienna, Luxembourg City, and Munich.

BTO works closely with an international network of renowned universities, top IT Executives and CIOs, to transform applied research into tangible value for both major corporations and academy, thus supporting corporate roles in the comprehension of digital business trends and transformations.


Today more than 200 people are employed at BTO making it a unique young and dynamic environment as well as driving an exponential national and international growth.


Cyber Security Consultant:

We are currently looking for an experienced Cyber Security Consultant, to work within the BTO Cyber Security Practice.

Activities

As a Cyber Analyst Consultant you will be taking part in the following activities:

Information Security Planning:
Plan and estimate budget and time schedule for activities included into Information Security Master Plan and develop initiative-specific sheet / implementation timeline;

Information Security Coordination:
Coordinate the implementation of Information Security projects/activities include into the Master Plan;
Oversight on implementation of Information Security projects / initiatives: Ensure the oversight of the implementation of the Master Plan activities, identifying and reporting issues, risks and opportunities to the CISO / relevant stakeholders;

Reporting on Information Security projects / initiatives: Develop and share with relevant stakeholders periodic status update about Implementation of Information Security Master Plan activities;

Information Security support to Business Units requests: Ensure the planning, coordination, advisory, monitoring and reporting on the initiatives coming from specific Business requests regarding Information Security not included in the Information Security Master Plan;
Identify opportunities for Information Security Incident process improvement;

Security Gap Identification & Severity evaluation: Identify and prioritize gaps (according to their severity) coming from the Security Assessment;

Remediation identification & plan development:
Identify the Information Security remediation to cover identified gaps and share the results of the activities with relevant stakeholders (including Information Security Team, IT, Business);

PMO on remediation:
Execute PMO, provide coordination across all involved stakeholders, on the implementation of Remediation Plans, identifying and reporting issues, risks and opportunities to the CISO / relevant stakeholders;

Cloud Security Strategy and Governance definition: Develop Information Security policies and procedures related to Cloud Environments, Design of Cloud Security strategy in coordination with IT and Business needs;

Assessment of current Cloud infrastructures:
Execute security assessments of existing cloud infrastructures;

Design of Cloud Security remediation:
Define how to improve Cloud Security posture, based on assessments results;

Support Cloud Security project deployment:
Support cloud-related projects from a security point of view (e.g. contribute to the planning of architecture and configuration, etc.);

Incident investigation:
Investigate alerts raised by Company's SOC / other sources to evaluate potential threat against Company's assets;

Incidents Escalation:
Escalate security incidents to internal stakeholders;

Incident Reporting:
Write up security incident reports detailing the attack, its characteristics, and possible remediation activities;

Management of MSSP:
Manage the MSSP to ensure continuous improvements of correlation rules as well as integration of relevant log sources;

Periodic review of Incidents:
Routinely review security incidents for adherence to the established procedures and guidelines.


Skills required:

  • 6 years of working experience as PM/PMO in IT Security Projects;
Bachelor's degree in Information Security, Information Technology, Computer Science, Engineering, or similar strongly desired;
Professional information security certifications (such as CCSP, ACSA, CISSP, CISA, CISM, SANS, ISO 27001 Lead Auditor) strongly desired;
Ability to handle long term IT projects, focused on IT Delivery core platforms and Security processes;
Knowledge and expertise of IT and PM tools especially MS Project, MS Office, JIRA;
Good knowledge of IT Infrastructures, Architecture and Networking;
Proficiency in English;
Also goal orientation, team working and communication skills are highly appreciated;
Availability to relocate.
Altri lavori da BTO spa
Vedi tutte le offerte di lavoro di BTO spa