Head Of Information Security Milano

Head Of Information Security
Milano
Lombardia, Milano

The Head of Information Security is responsible for the planning, design, implementation and maintenance of the Virgin Fibra information security and compliance program, ensuring its alignment to the business strategy/needs and to the Virgin Group policies and direction.

He/She will report to the CTO and will coordinate with all the functions of the company and with the Group Head of Information Security to ensure information assets and technologies are adequately protected.

**Activities & Responsibilities

- Establish and maintain the enterprise's vision, strategy, and program to ensure information assets and technologies are adequately protected, maintaining processes across the enterprise to reduce information and Information Technology risks

- Develop and track a clear, measurable cybersecurity plan

- Assume responsibility for Virgin Fibra's information security and compliance program

- Provide leadership to the company's information security organization, working directly with the business units to facilitate risk assessment and risk management processes

- Work closely with the Head of Virgin Group Information Security

- Present regular reports to Virgin Fibra and Virgin Group executives

- Develop and enhance an information security risk management framework

- Define and contribute to deliver an information security culture and awareness program for employees and partners

- Monitor and respond to security and privacy incidents

- Maintaining up-to-date knowledge of industry and regulatory trends and legislations

**Core Skills and Knowledge

- Substantial experience in risk management, information security and incident response

- Experience managing an infosec and compliance program in the Business to Consumer environment

- Proven ability to define, implement and measure effective incident response and an InfoSec culture program

- Knowledge and expertise in best-in-class information security certification frameworks such as ISO/IEC 27001, and NIST, industry law and regulations, GDPR, compliance, controls, identity access management

- Understanding of current legislation and regulations relevant to our organization and business

- Excellent project management and leadership skills

- Excellent communication skills

- Familiarity with cloud native technologies and agile development methodologies

- English level: at least B2

Contratto di lavoro: Tempo pieno, Tempo indeterminato

Stipendio: a partire da €50. 000, 00 all'anno

Benefit:

- Lavoro da casa

- Orario flessibile

Orario:

- Dal lunedì al venerdì

Lingua:

- Inglese (Obbligatorio)