Job Location : Findel,Luxembourg
Ferrero is afamily-owned company with a truly progressive and global outlookand iconic brands such as Nutella®, Tic Tac®,Ferrero Rocher®, Raffaello®, Kinder Bueno®and Kinder Surprise®.
As the love for our brands continuesto grow, so too does our global reach. Represented in 55 countries,with products sold in more than 170, the Ferrero Group is loved bygenerations around the world.
The secret to our global success?Nearly 35,000 dedicated employees who celebrate care and quality tocraft a business, careers and brands we are proud of.
Join us, andyou could be one ofthem.
About theRole :
For our Ferrero HQ in Luxembourg we arecurrently looking for a Cyber Defence &Response . As responsible for Cybersecurity Defence& Response, the incumbent will work directly with differentdepartments within the Ferrero Group and will be in charge ofensuring correct operation of cybersecurity technologies,monitoring cybersecurity threats and events, analyzing andresponding to cyber incidents regarding information and operationalsystems.
He / She will serve as organizational point of contact forcybersecurity incidents, providing overall direction for theAdvanced Cybersecurity Operations Center and inputs to the overallsecurity strategy.
Further He / She will manage resources andcommunicate with Cybersecurity management.
MainResponsibilities : Maintasks :
Defineobjectives, develop strategy and future models of cybersecurityincident management processes, including Advanced CybersecurityOperations Center;
Identify and update a planof initiatives to continuously improve organization cybersecurityincident management capabilities and Advanced CybersecurityOperations Center services;
Define, review andupdate main cybersecurity incident management documents (e.g.policy, procedures and guidelines);
Support thecreation and deployment of specific training and awarenesscampaigns on cybersecurity incident management best practices,policies, procedures, and operational guidelines (for technicalpersonnel, for all employees, etc.);
Ensurethat cybersecurity incident management processes are aligned withother relevant IT, OT and Businessprocesses;
Lead the implementation ofinitiatives and projects to achieve cybersecurity incidentmanagement objectives, including Advanced Cybersecurity OperationsCenter;
Evaluate third-party providers of goodsand services, create and monitor vendorrelationships;
Ensure correct operation ofcybersecurity implemented technologies and develop necessaryadjustments to enhance efficiency andeffectiveness;
Receive information aboutcybersecurity incidents, coordinate response to cybersecurityincidents (24x7) and analyze them in order to prevent theirrecurrence;
Support local cybersecurity teammembers in local cyber incidentmanagement;
Coordinate the cyber incidentresponse team (central and local) and Advanced CybersecurityOperation Center;
Support the definition of aKPI framework to measure cybersecurity incident managementperformance;
Measure criteria, create reportsanddashboards.
Who weare lookingfor : Profile :
Master'sDegree in Information Technology or relatedfield;
7+ years of experience in a similarposition or in cybersecurity strategyconsultancy;
Knowledge of cybersecuritytechniques and solutions to identify, analyze and resolvecybersecurity incidents;
Knowledge ofcybersecurity threats, vulnerabilities and main attackmethods;
Basic knowledge of cybersecurityincidents investigation and forensic technologies andtechniques;
Broad knowledge of cybersecuritysolutions and technologies;
Broad knowledge ofcybersecurity international standards, law and regulations (e.g.ENISA, NIST, GDPR, ISO27000) with particular focus on IncidentHandling;
Experience in setting-up, managingand coordinating a Cybersecurity OperationsCenter;
Experience in cybersecurity incidentmanagement activities coordination, in both IT and OTenvironments;
Competences in cybersecurityincident response actions and remediation plansdefinition;
Proven experience in managing ateam of internal and third parties cybersecurity operationspractitioners;
Experience in defining policyand procedures for cybersecurity incidentmanagement;
Professional Certifications (ISC2CISSP, CISM, GMON, GRID, GCDA, GCFA) are considered aplus;
Outstanding analytical and conceptualskills;
Availability for Businesstrips.
Advancedproficiency in Microsoft Office;
Knowledge oflog management software and SIEM;
Knowledge ofIT and OT technologies : network, systems, applications, cloudcomputingetc.
Businessfluent written and spoken English languageskills;
Italian and French are considered anasset.
An exciting and challenging jobin an international workingenvironment.
How to besuccessful in the role and atFerrero :
Consumers,quality and care are at the heart of everything we do. So, to besuccessful at Ferrero, you’ll need to be just as consumerand product centric as we are -
dedicated to crafting brilliantresults for consumers around theworld.