Cybersecurity Specialist - Attack Surface Torino

Cybersecurity Specialist - Attack Surface
Torino
Piemonte, Torino

MSC Mediterranean Shipping Company

is a global leader in the shipping and logistics industry.

Founded in 1970 and headquartered in Geneva, Switzerland, MSC is a privately-owned organization led by the Aponte family.

Evolving from a single-vessel operation, MSC is now a globally respected company with a fleet of 760 vessels and over 180, 000 employees.

With an integrated international network of road, rail, and sea transport resources, the company prides itself on delivering global service with local knowledge.

Operating in 155 countries, MSC ensures direct communication with its representatives and offers various e-business solutions for digitalized cargo bookings.

In response to customer needs, MSC plays a significant role in driving the development of smart containers in the industry, helping to establish standards for digital shipping.

In 2019, MSC Technology Italy was established as a technological division of MSC with the goal of creating a Center of Excellence to support the MSC Group's business.

MSC Technology Italy is the first division located in the national territory, complementing existing offices in Geneva (the Group's headquarters), Warren (New Jersey, USA), and Chennai (India).

**CYBERSECURITY SPECIALIST - ATTACK SURFACE**:

We are looking for a Cyber Security Specialist to join our Attack Surface team to work closely with the different stakeholders to ensure that cyber security recommendations and measures are correctly implemented and understood across the whole digital infrastructure of MSC company.

Attack surface team is in charge to detect and monitor the different entry points and attack vectors that attackers can use and exploit to gain access to our organization's network, taking actions to reduce exposition to security threads while improving the security posture of our company.

To reach this goal, the cyber security specialist's responsibilities include using his skill to detect and investigate the vulnerabilities as soon as they are disclosed, as well as to understand insecure configurations and malicious threads related to the different digital assets in scope of MSC.

The cyber security specialist's focus is not only limited to assessing whether vulnerabilities or misconfigurations exist but also how those risks could be mitigated which can help provide MSC with more confidence about system stability going forward.

He/She works inside the Attack Surface team and together with the other Cyber Security areas of MSC Technology, to ensure the proper information sharing and collaboration to guarantee the security of MSC business information, throughout our entire infrastructure.

**In summary, his mission includes the following**:

- Identify and monitor the different attack vectors of a complex digital infrastructure

- Study and analyse new vulnerabilities as soon as they are disclosed

- Identify new trends in attack infiltration techniques

- Contribute to the definition of mitigations and hardening measures

- Investigate different type of security weaknesses

- Collaborate with the different stakeholders to increase business resilience

- Contribute to improve security awareness

Key responsabilities

- Continuously improve our Attack surface monitoring capabilities and our internal management practices for their profitable usage

- Help in reducing our attack exposition while improving our security posture

- Monitor the evolution of cyber security trends and cyber risk scenarios

- Analyse new vulnerabilities as soon as they are disclosed, understanding their impacts and how can be addressed and mitigated

- Identify cyber security weaknesses in our networks and infrastructure

- Investigate and develop new challenging criteria to monitor risky area and attack vectors

- Produce documentation

- Support management with the execution of information security strategy and roadmap

- Stay current with emerging technology trends and tools

- Contribute to the evolution and improvement of MSC security infrastructure and defences.

- Provide timely, complete and accurate responses to the requests coming from IT Security Managers, giving positive and constructive contributions.

- Complete ad hoc tasks and projects as required by the Company

- Incorporate good practices and quality processes in activities and Projects

- Participate in the promotion of the IT security good practices and policies among the business.

Qualifications and experience

- 3-4 years of experience in IT Security Position

- Must be team oriented and at the same able to work with limited supervision

- Ability to identify priorities and ensure that work is completed within timeframes

- Strong verbal and written communication skills, a sense of diplomacy, and decision making skills to handle the often fast-paced role of an incident handler

- Security Certifications (CISSP, CISM, . . ) are an appreciated option

- Security components (firewall, WAF, log management, NAC, IPS, IDS, HIDS, SIEM )

- IT infrastructure background

- System