Cybersecurity Analyst

Purpose and Activities: The person we are looking for will leverage their skills and develop interest in defining security requirements for innovative areas. They will work in a highly specialized team and actively participate in the evolution of security controls by defining requirements and objectives and verifying correct implementation. They will be placed in a stimulating, dynamic and cutting-edge environment. The work will be valuable both for the Parent Company and for the various companies of the Intesa Sanpaolo Group, with the opportunity to interact with different professional profiles and international corporate cultures.

The resource will support the team in defining security requirements and objectives to consider when introducing or evolving cybersecurity technological components, including, for example:

• Identity and Access Management tools and technologies (knowledge of SAML, OAuth protocols, Single Sign-On and Multi-Factor Authentication methods)
• Endpoint protection technologies (e.g., EDR platforms, antimalware, application control, Data Loss Prevention)
• Application protection technologies (e.g., Anti-DDoS platforms, Web Application Firewall, API security/protection)
• Network security and network monitoring tools (e.g., IDS/IPS, Network Detection & Response, BAS)
• Cloud security solutions (e.g., CNAPP, CSPM, CWP, CASB, SSPM platforms)
• Solutions for secret and encryption key management (e.g., HSM, secret management, CA)

Required Experience: 1-2 years of experience in cybersecurity.

Required Qualifications, Skills and Competences: The person we are looking for:

• Knows at least one reference framework (e.g., NIST Cybersecurity, ISO 27001, ISO 22301...) and relevant regulations (e.g., law on national cybersecurity perimeter, Circular 285, NIS Directive, PSD2...)
• Has knowledge of major security technology vendors
• Has good knowledge in at least one of the following security areas: Identity & Access Management, Network Security, Cloud Security, Endpoint Security, API Security, Secret and Key Management
• Has participated in at least one complex IT project for the development of cybersecurity and/or business continuity solutions (preferably in Finance), on-premise and/or cloud-based and/or hybrid, and/or system integration projects in complex contexts
• Has excellent knowledge of English
• Has excellent knowledge and command of the Office suite (Word, PowerPoint and Excel)
• Preferably holds active security certifications such as CISSP, CCSP, CISA, CISM, GSEC, SANS GIAC, ISSAP, etc.

Who we are: We are a leader in Italy and one of the main banking groups in Europe. Join us and be part of our success story! With over 20 million customers in Italy and abroad we are a true engine of sustainable growth with strong commitment to the environment and a tangible social impact. People are at the center; we take care of them by creating an inclusive culture within the Group where everyone feels valued and plays a leading role. Join our international reality. The future is chosen, not waited for!

We guarantee an inclusive and equal opportunity environment. We will consider all candidates regardless of race, religion, sexual orientation, gender identity, marital status, age, disability or any other protected category in accordance with applicable Italian laws.