Security Governance Specialist It Cyber Security Lazio

Security Governance Specialist It Cyber Security
Roma
Lazio, Lazio

Techyon:

Information Technology Recruitment Experts | Head HunterTechyon is the first Head Hunter exclusively specialized in search and selection of senior professionals and managers in the field of Information Technology.

Our Recruitment Engineers select the best IT profiles for prestigious IT consulting firms, banks, service companies, manufacturing groups, start-ups of excellence and digital DNA companies.

About the Company:

for an important insurance Company, our Recruitment Engineers are looking for a IT Security Governance Specialist. Core Responsibilities:

The Security Governance Specialist will be responsible for developing, implementing and maintaining Security Governance Policies and Procedures, together with different frameworks that allow the company to comply with the security requirements while doing businesses in a secure way.

Leads the creation, implementation, monitoring, and maintenance of information security Policies and Standards Implements the Information Security Management System and monitors the adherence of security practices to it Establishes credibility and maintains strong working relationships with groups involved in security and compliance matters (InfoSec, Legal, Business Development, Internal Audit, Fraud, Physical Security, etc. )

Responsible for building and influencing security as a core competency throughout the organization and with our internal teams/partners/vendor Engages with the Businesses and SMEs to ensure compliance to information security policies Ensure that the business objectives are reflected in the information security objectives, policy, and activities Supports ad-hoc data analysis requests Partner with Business and IT pointof contacts, to track and/or develop remediation plans for identified vulnerabilities Review all current and existing vulnerabilities for active and acceptable remediation plans.

These plans may be reviewed with but not limited to Business point of contacts, Application Owners, Data Owners / Custodians or System Administrators.

Verify that remediation plans are implemented per remediation targets and Information Security guidelines.

Proactively review and identify any potential gaps that may result in possible audit issues Present key findings, progress, and all issues to leadership on a regular basis and be responsible for influencing the stakeholders to prioritize/execute risk management issues and drive remediation efforts Review all vulnerability scans and penetration tests results to identify all security risks and report on findings to appropriate stakeholders Respond to relevant requests received from all stakeholders or representative of stakeholders Provide all necessary reports and presentations on the status of remediation efforts and all gaps and potential obstacles or issues to management and technical staff Performs other related duties incidental to the work described herein and all special assignments as needed or assignedMust Have:

Bachelor's degree in a computer field Information Security Governance Frameworks and Best Practices Good English level:

B2 Flexibility Strong communication skills Organizational skills 5 years of experience and knowledge in similar positions Nice to Have:

CISSP, CISA, CRISC, ISO27001 or similar certificationsLocation:

Rome