Cybersecurity Manager Saas Firenze

Cybersecurity Manager Saas
Firenze
Toscana, Firenze

Our Business team. blue is an ecosystem of successful brands working together across regions to provide customers with everything they need to succeed online. 40 successful brands make up the group; within those brands, over 2000 experts serve its 2. 5 million customers across Europe and beyond. team. blue's brands are a mix of traditional hosting businesses, offering services from domain names, email, shared hosting, e-commerce, and server hosting solutions and specialist SaaS providers offering adjacent products such as compliance, marketing tools and team collaboration products. This broad product offering makes it a one-stop partner for online businesses and entrepreneurs across Europe. Your objectives Your objective is to ensure that in our current and future mergers and acquisitions we identify and manage risks through the assessments of our M&A target security controls. Your responsibilities Conduct cybersecurity due diligence and communicate identified risks. Track and follow up on identified remediations. Advise companies on remediating findings from due diligence conducted. Help build and maintain the "team. blue Information Security Standards. " Continuously improve the processes around M&A cyber information security due diligence. Manage third-party providers who provide cyber security assessments on large acquisitions. Build template policies, procedures, and guides to help less mature companies to mature their information security systems. Your skillset You should have a solid background in technical security or experience in IT audit/compliance. The ability to evaluate implemented security measures is more critical than expertise in conducting due diligence on a target. 5 years of experience within information security or technology with an emphasis on security controls. Good English skills both verbal and written. Ability to communicate risks to both technical teams, management, and senior stakeholders. Good collaboration skills as you will be working with many different stakeholders. Broad knowledge of cybersecurity controls. Broad knowledge of security standards such as ISO 27001, CIS Critical Controls. Knowledge of GDPR regarding relevant technical security measures. It is a plus if you Have knowledge of NIS, HIPAA, PCI DSS, and similar regulations and standards. Hold a certification in CISSP, ISO 27001 Implementer/auditor, CISM, CRISC, or similar. Can communicate in several European languages. Working environment You will be working closely with the Group CISO and the rest of the Technology organisation, alongside the M&A Project Implementation managers and wider M&A Team. You will also be part of Group Security which consists of 12 colleagues working within information security in team. blue. You can work from one of our offices (see locations list in the bottom), fully remote, or in a hybrid setup. The job does not require travel besides from the occasional team or company event. 3 reasons to apply for this job The opportunity to use your broad knowledge of information security and technology. Working in an international environment. Flexible working environment. Right to work At any stage please be prepared to provide proof of eligibility to work in the European country you are applying for. Unfortunately, we are unable to support Sponsorship Visas. "Come as you are" Everyone is welcome here. Diversity & Inclusion are at our core. Far above any technical competence, we value respect, openness, and trusted collaboration. We do not tolerate intolerance. J-18808-Ljbffr