R0001054 Head of Cyber Security (Open)
We're Nadara. We work harmoniously with the power of nature and the communities around us to power lifetimes to come. We call our approach 'living energy'.
We don't just produce renewable energy, we live it - recognising our relationship with the people touched by our business and supporting social, educational, cultural, and environmental initiatives that contribute to the development of the communities we work alongside.
Job Description Summary:
We're looking for an experienced professional to lead our Cyber Security function. In this role you will be responsible for identifying threats, mitigating risk, and safeguarding our organisation from security vulnerabilities and exploits.
Job Description:
Main Responsibilities
Maintain a security framework in order to ensure the expected security properties of company assets about authentication, authorization, confidentiality, integrity, availability, non-repudiation; Define policies and procedures to fulfill data governance, privacy compliance, business requirements, countries and authorities constraints, security-related standard requirements; Adopt a security roadmap within the budget assigned to increase countermeasures to protect data, endpoints, networks and accounts from cyber attacks; Plan and adjust business continuity and disaster recovery measures accordingly to company's risks, helping to decide if eliminate, mitigate, transfer or accept them; Lead the security operations (SecOps) by logging, monitoring, assigning incident investigation and threat response to the operational teams, declaring the War Room when needed; Ensure the adoption of secure software development best practices by internal teams and suppliers; Evaluate the security posture with vulnerability assessments and penetration tests (VA/PT), addressing any change requested; Coordinate the patch management process; Approve or deny services and change requests security-related when security approval is requested; Evaluate the security risk of a new technology or service being adopted, reviewing their terms and conditions; Aware users about cyber risks and contributes to their security training. Key Requirements
Information Security, Computer or IT/Telco Engineering or STEM degree 10+y on cybersecurity matters with different roles (analyst, specialist, consultant, manager) Excellent knowledge of reference framework about cybersecurity and business continuity (NIST, ISO27001, ISO22301) and security by design principles in networks, systems, applications Experience on cybersecurity for producers or suppliers in energy sector, facing challenges related to unattended IT/OT environments preferable Deep understanding of Azure cloud and on-prem security services for mixed endpoint environment (Windows/Linux/iOS/Android) Able to report security metrics and executive summary to C-Level, auditors, and discuss technical details with specialists Fluent in Italian and English (B2), French or Spanish/Portuguese nice to have One or more certifications on security (CISSP, CISM, CEH, GIAC, ...) as a plus Excellent in leadership and communication skills, team working, relationships attitude, problem solving capabilities Pay and benefits
With a genuine culture of reward and recognition, we want our employees to grow, develop and be part of our journey. We offer a benefits package that includes flexible working policy, development and training opportunities, a wide range of initiatives dedicated to wellbeing and mental health. There's no doubt that you will be compensated for your hard work and commitment so if you'd like to work for one of the top Renewable Energy providers in the world then please do get in touch with us!
Equality and equity
Our company is an Equal Opportunities Employer with a strong commitment to Diversity, Equity, and Inclusivity (DEI). DEI provides an anchor for our long-term business strategy and permeates through our day-to-day culture, ensuring people of all backgrounds can thrive.
What do we expect from you?
We expect from you passion, commitment and, most of all, the desire to learn in each activity you're tasked with. We always look for enablers of growth!
Location:
Milano - Martesana
Time Type:
Full time
Worker Subtype:
Regular#J-18808-Ljbffr