security officer

Assicurazioni Generali S.p.A. or simply Generali Group is an Italian insurance company based in Trieste. As of 2019, it is the largest of its kind in Italy and among the top ten largest insurance companies in the world by net premiums and assets.

Has know-how of IT security policies, guidelines, technical measures, ability to follow-up and localize the Security governance framework,
Identifies the gaps between policies and standarts against the ongoing IT operation,
Follows and applies the parches, updates for IT security systems and operational systems in case of need,
International experience on security projects and operation,
Manages Cybersecurity projects initiatives , plans and implements,
Has good documentation, reporting skills,
Has experience on IT internal and external audits, ensures the proper resolution of audit findings,
Has deep knowledge on hardening procedures and rules,
Owns full cyber and security responsibilty of a corporate company,
Analyze the logs, correlations and understands log management, event management and provides solution suggestions,
Ability to manage and follow-up SIEM products, SIEM procedures, SOC communication,
Ability to evaluate cyber attacks, impact analysis, reporting skills,
Experience on corporate and physical security topics,
Makes cyber risk and digital risk evaluation of the systems on corporate management tools like Archer,
Configures vulnerability management tools and evaluates, reports, follows vulnerabilities,
Knows about malicious software behaviours and symptoms,
Has knowledge on SSDLC and guides software and other technical teams on code security, static code testing,
Has ability to understand and apply attack and penetration tests, comments the findings and ensures the proper actions,
Has basic principles of cloud security.

Establish and manage the company's software and hardware infrastructure in accordance with corporate standards,
Evaluate new technological developments within the framework of company plans and objectives and ensure their adaptation to the company,
Inspect the use of technological equipment and software to ensure functionality and efficiency. Identify the need for upgrades configurations or new systems,
Analyze the business requirements of all departments to determine their technology needs. Ensure coordination with all internal and external teams and senior management for the execution,
Understands Windows, Linux and Unix systems,
Has experience on security solutions management i.e. Antivirus, APT, EDR, DLP, Sandbox, URL Filtering, E-Mail Security, DDOS, NAC,...
Has understanding of firewall management, IPS/IDS, WAF, ..etc
Has know-how on network devices and principles, basic management experience on LAN, WAN, VPN, AD, DNS,..
Ability to use phishing simulation tools,
Monitors access of 3rd party providers to company resources and takes action if necessary,
Has experience on PAM products,
Has know-how on ISO/IEC 27001, COBIT ve ITIL,
Has knowledge on database security esp. MS SQL and Oracle,
Has ability to manage MDM tools, understanding of security aspects on mobile devices and application, able to analyze mobile applications for IOS, ANDROID,
Has cyber security certificates,
Has ability to team and people management,
Purchase efficient and cost effective technological equipment and software,
Controlling the budget,
Assist in building relationships with vendors and creating cost-efficient contracts.