Date: Aug 9, 2024 Location: Sesto San Giovanni, Milan, IT Function: IT Seniority Level: Mid-Senior level Employment type: Permanent Workplace Type: Hybrid Company: Davide Campari Milano N.V. Campari Group today is a major player in the global branded spirits industry, with a portfolio of over 50 premium and super premium brands, marketed and distributed in over 190 markets around the world.
Headquartered in Milan, Italy, Campari Group owns 22 plants worldwide and has its own distribution network in 22 countries.
General Description of the Role and related Objectives The Global IT Senior Specialist Cyber Security Incident Response is crucial in Campari Group's cybersecurity operations.
Reporting to the Global Security Operations Manager, this role operates within a diverse, multi-vendor environment.
The specialist works closely with various departments, such as the Security Operations Center and the Global Cyber Security Department.
Key Responsibilities and Activities Security Incident Response Process: Management of playbooks with a strong focus on corporate areas (Internal/External Communication, Legal Compliance, HR, IT Operations, and other IT Centers of Excellence).
Development of new playbooks from scratch based on new events and emerging threats.
Mapping of playbooks on ServiceNow.
Incident simulations with all technical teams and participation in TableTop exercises.
Security Operation Management: Take ownership of the events in partnership with the SOC for efficient incident responses.
Participate in post-incident reviews, using feedback to refine response protocols, playbooks, SOPs, and the knowledge base aiming to improve security metrics.
Drive the adoption of automation/orchestration in incident resolution.
Work with the SOC for accurate and timely evidence collection and forensic analysis in the event of data breach security incidents.
Manage security alerts with the SOC and oversee SIEM rules specific to Campari.
Threat Hunting and Intelligence: Cooperate with the SOC to conduct threat hunting and Attack Simulation and Path Visualization.
Undertake regular vulnerability assessments.
Work with Threat Intelligence providers to stay updated on new threats.
Key Relationships Internal: Global Cyber Security Managers; Global Service Delivery Tower Leads; Regional Service Managers; COE team.
External: Technology and service providers.
Experience Education Minimum 3 years of proven experience in Cyber Security in a multinational company.
Fluent in Italian and English; any other European language is an advantage.
Degree in cyber security, computer science, engineering or equivalent is preferred.
Proven experience in incident handling and forensic evidence collection.
Experience with cloud services and cloud SIEMs.
Excellent communication skills and ability to work under pressure.
Certifications (highly valued): Certified Information Systems Security Professional (CISSP) Cisco Certified CyberOps Associate GIAC Incident Handler (GCIH) Offensive Security Certified Professional (OSCP) EC-Council's Certified Incident Handler (E|CIH) Incident Handling Response Professional (IHRP) Certified Computer Security Incident Handler (CSIH) Required Skills Traits Skilled in security incident response process and playbooks.
Ability to communicate complex issues to diverse audiences.
Ability to work under pressure.
Cultural awareness and excellent team working skills.
Strong problem-solving and troubleshooting skills.
Additional Requirements Availability to travel internationally for short periods.
Our commitment to Diversity Inclusion: At Campari Group we believe in building more value together, thus we see diversity in all forms as a source of enrichment.
#J-18808-Ljbffr
