Security Governance and Risk Manager

Main ResponsibilitiesThe candidate will support all group affiliates in implementing and maintaining approved security standards across IT, operational technology, cloud, and digital environments. Reporting directly to the Corporate Information Security Officer (CISO), the resource will translate group security frameworks into clear policies, controls, and procedures, acting as a trusted advisor to senior leadership and local teams. Key duties include establishing the group-wide security risk assessment cycle, monitoring affiliate security maturity, supporting internal and external audit readiness, and actively participating in incident response procedures.Mandatory Academic and Language RequirementsMaster’s degree, preferably in Information Security, IT, or related STEM fieldsProfessional fluency in English (C1 level) in both written and spoken communicationTechnical CompetenciesMinimum 7 years of experience in information security, with a strong focus on governance, risk, and compliance (GRC)Proven experience in translating security frameworks into actionable policies, procedures, and controlsDeep understanding of major international standards and regulations such as NIS2, ISO 27001, NIST CSF, and IEC 62443Strong knowledge of cloud security and modern enterprise platforms, with preferred experience in Azure and Microsoft DefenderSolid background in Security‑by‑Design practices within complex project frameworks and procurement processesFamiliarity with risk management frameworks, maturity programs, and security monitoring tools like SIEM, SOC, and ServiceNowRelevant professional certifications such as CISSP, CISM, ISO 27001 Lead Implementer or Auditor are highly preferredWhat We OfferDirect‑hire, permanent contract with the client company, promoting flexible working arrangements with a strong focus on well‑being, corporate welfare, and work‑life balanceCompetitive salary range between €55,000 and €60,000 (CCNL Energia e Petrolio)Performance‑based variable bonus of €6,000Corporate canteen on‑site and €10 meal vouchers for remote daysComprehensive corporate welfare package including supplementary health insurance and wellness servicesWorkplace: Rome, hybrid work model with two days a week remote.This position is open to candidates of any gender (L.903/77). #J-18808-Ljbffr