Product Security Office BOLOGNA

Product Security Office
Bologna
Emilia Romagna, BOLOGNA

Vous souhaitez donner du sens à votre métier ?

Vous voulez contribuer à l'amélioration de nos soins de santé ?

Alors rejoignez notre équipe!

We are currently looking for a Product Security Officer (M/F/d).

The Product Security Officer is responsible for the guidelines and the auditing of the product security measures within the R&D departments, to establish product quality worldwide.

Moreover, the Resource will guarantee product compliance with security & privacy laws and regulations, regarding data protection and cybersecurity worldwide.

Your Challenge:

- Design policies and procedures for product "compliance" (including legal, privacy and regulatory compliance) and subsequent "advisory"

- Define product security risk mgt.

plan

- Define how to perform product related risk assessment

- Trigger activities based on product security risk report

- Monitoring of implementations and actions

- Develop Guideline for Data protection concepts for product and monitor finished concepts

- Order Fulfillment ISP Risk Mgmt.

- Manage product security incidents, findings and product complaints, in close co-operation with the regions and QARA.

- Prepare and perform product security oriented trainings internally within EMEA.

- Perform Information security Risk Assessment and mitigations, and DPIA on processes, products and tools in R&D

Your Profile:

- Bachelor's degree in informatics or related domain

- At least 5 years of experience in the position, in IT and/or regulations

- Experience gained preferably in an international healthcare or IT service company

- Experience in developing and deploying security controls in large organizations

- Good attitute towards project management, process architecture

- Knowledge of privacy by design and security by design concepts for IT solutions

- Good understanding of security & privacy regulations and legislation (e. g.

GDPR, HIPAA, FDA Guidelines, NIS)

- Good understanding on the security standards such as ISO2700x, CobIT

- Good understanding of security IT technologies and future developments (state of the art).

- Knowledgeable in ISO 27001 risk management, security management and auditing

- Sound command of English

Additional Information

- The possession of information security certificate (e. g.

CEH, CISM, CISSP) will be a plus

- Location: Bologna / Smart Working (Hybrid)