Lead Cyber Security Specialist - possibility of full remote

📋 Description

• • As a Lead Cyber Security Specialist at W.K. Industrial Co., Ltd., you will be instrumental in shaping and executing robust security strategies to safeguard our cutting-edge products and cloud services. You will operate at the vanguard of our Security team, ensuring that our technological offerings remain secure, compliant with evolving regulations, and consistently trusted by our clientele.
• • Your core responsibilities will involve the meticulous selection, design, and deployment of advanced tools dedicated to monitoring the security posture of our entire ecosystem. This includes proactive threat detection and a swift, effective response to potential security threats and incidents, minimizing impact and ensuring business continuity.
• • You will be a key player in implementing and staying current with the latest Cloud and DevOps industry best practices and the associated tooling. This involves integrating security seamlessly into development and operational workflows, fostering a culture of security by design.
• • A significant aspect of your role will be to assess the security of products that leverage Artificial Intelligence (AI). This requires a deep understanding of AI vulnerabilities and the development of tailored security measures to protect these advanced systems.
• • You will engage collaboratively with our high-caliber clients, contributing to the trust and security they expect from our solutions. Furthermore, you will be an integral part of a dynamic and supportive team environment, where continuous improvement and professional growth are actively encouraged at all levels.
• • You will apply established Incident Response procedures to effectively manage and mitigate acknowledged cyber-attacks, ensuring a structured and efficient recovery process.
• • A critical function involves conducting thorough security incident assessments and classifying them based on their associated risk levels. This allows for prioritized and appropriate resource allocation for remediation.
• • You will be responsible for designing, planning, and executing periodic Vulnerability Assessments across our cloud infrastructures. This includes managing the Vulnerability Management process in accordance with international methodologies and standards, identifying and prioritizing weaknesses.
• • You will perform detailed impact analyses of identified vulnerabilities and oversee their remediation. This involves working closely with development teams to ensure that vulnerabilities are addressed effectively and efficiently.
• • You will provide essential support and guidance to the Development Department, assisting them in implementing proper remediation strategies for security vulnerabilities discovered within their products and services.
• • You will actively participate in threat intelligence activities, staying informed about emerging threats and attack vectors relevant to our industry and technology stack.
• • You will conduct evaluations of the security posture of new developments, ensuring that security considerations are integrated from the initial stages of product conception and design.
• • You will contribute to the fine-tuning of compliance as code initiatives, automating security checks and policy enforcement within our cloud environments.
• • You will support the Secure Software Development Lifecycle (SSDLC) for the Development Department, embedding security practices throughout the software development process.
• • This includes assisting development teams in designing threat models, defining comprehensive security requirements, and ensuring these are met throughout the development lifecycle.
• • You will also support SecDevOps activities, which may include Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), Software Composition Analysis (SCA), and other security testing methodologies to identify and address security flaws early in the development pipeline.
• • The role offers the flexibility of working in a hybrid mode from our offices located in Lucca, Milan, Turin, Rome, or Salerno, or fully remotely for candidates based further afield, as indicated by the #LI-Remote tag.