Iot/Ot Security Manager Calderara di Reno

Iot/Ot Security Manager
Calderara di Reno
Emilia Romagna, Calderara di Reno

IoT-OT Security Manager**:

- This position will be based in Datalogic HQ in Lippo di Calderara (BO).

**Role Mission**:

- Define, together with the Chief Information Security Officer, the evolution strategy and the management of Datalogic product cybersecurity.

- Grant the protection of all technological, informational and operative company resources within the role's responsibility perimeter

- In line with the company objectives and in strict cooperation with the R&D and Operations functions, contribute to enforce the processes of "security and privacy by design" considering security risks in OT and IoT systems and identifying improvements areas.

- Support the CISO interfacing with third parties (customers and suppliers) involved in the security process.

**Main activities**:

- Define, together with the CISO the company security plan in R&D-product area

- Manage ICT policies and procedures, according to Group rules and standards and to external regulations, and adapt them to the OT-IoT environment

- Identify and update the company IoT-OT security standards, maintaining product security certifications

- Interact with clients and suppliers managing cybersecurity activities pertaining to product security (Penetration Tests, Security questionnaires etc.

)

**Internal customers**: colleagues and Datalogic Group companies

- **External customers**:partners and final Datalogic customers**Education**:

- Degree in informatics engineering and-or scientific disciplines.

Sector certifications (e. g.

CISM, CISA).

- Work experience equivalent will be evaluated

- The experience in specific management of security in manufacturing OT-IoT environment will be considered as preferential condition

**Other Information and Specific Skills**:

- Knowledge of main ICT security frameworks (ISO27001, NIST, ISF, Cobit, etc.

)

- Knowledge of main product security frameworks (Common Criteria, STIG regulations, etc.

)

- Knowledge of cyber defense and cyber resilience strategies

- Knowledge of security technologies like Firewall, IDS/IPS, antivirus, antispam, authentication systems

- Knowledge of main regulations having impact on security and privacy like PCI, GDPR, PSD2, SWIFT

- Knowledge of the main themes of physical security related to access to critical environment, Disaster Recovery & business continuity

- Capacity of adaptation, Problem solving, strategic vision, excellent relational capabilities and resistance to stress.