Security Governance Specialist

Description du poste:

We are the leading Tech Company in Europe, supporting digital innovation for over 45 years. ​
We are committed to bringing digital technology into every business. How? By putting customers first and becoming the go-to partner for professionals, small, medium and large companies, offering customised solutions and services to optimise business processes. from HR and customer relations to e-invoicing and digital payments.​

The Research and Development team is the beating heart of the Group's innovation. We are constantly committed to researching and developing new technologies and solutions to anticipate market needs and exceed our customers' expectations. We invest significantly in artificial intelligence (AI), exploring its potential to develop innovative solutions and improve our products and services​.
Join an agile team where you can enhance your technical skills by participating in challenging and scalable projects in the field of software development.​
In a fast-paced development environment focused on growth and innovation, you will be responsible for translating requirements into code to create, improve and maintain high-quality software.​

In particular, you will:
* Drive the continuous improvement of the organization's application security maturity, defining a structured and scalable approach to secure software development across teams and products.
* Define, measure, and track key security KPIs related to vulnerability management processes (e.g. detection, remediation, exposure time), providing visibility on risk and progress over time.
* Lead application security initiatives across the organization, implementing security-by-design principles from the early stages of development;
* Contribute to the definition and evolution of security controls and practices, maintaining alignment with internal standards, regulatory requirements, and industry frameworks.
* Collaborate with Product Owners and development teams to align security objectives with business priorities and to promote a shared security culture throughout the software development lifecycle.

What skills are we looking for?​
* Good knowledge of application security frameworks such as SAMM, ASVS, NIST CSF, and similar;
* Excellent understanding of certification standards like ISO 27000, as well as NIS2, DORA, ACN guidelines, PCI-DSS, and their impact on application security;
* Knowledge of AI-focused risk and security frameworks, including NIST AI RMF, EU AI Act requirements, ISO/IEC 23894, OWASP Top 10 for LLMs, and Google SAIF will be considered a plus;
* Understanding of AI-related risks, key facts, and ecosystem dynamics, paired with strong curiosity and continuous awareness of the current and emerging AI technological landscape;
* Advanced proficiency in English (C1 level).

Do you recognize yourself in the skills we're looking for? That's a great start. We're looking for people who reflect our values through their growth mindset and their ability to turn challenges into opportunities.​

* ENTREPRENEURSHIP - is the engine that drives us to excel, innovate and challenge ourselves for our own success and that of our company. We are proactive, responsible and customer- centric, always ready to question the status quo and achieve extraordinary results.​
* INNOVATION - is the guiding light that illuminates our path as we move through an environment full of different experiences, knowledge and perspectives. We are not afraid of making mistakes; we work in an environment that is fertile for the development of innovative solutions.​
* INCLUSION - is the sentiment that guides our relationships amongst individuals, each of whom has a different history and experience. We advocate for an inclusive work environment that values each person's unique characteristics.​

Do you identify with this? Apply now in just a few clicks and track your application on our portal! Here, we give space to those who want to get involved, grow and leave their mark.​
​
What we offer ​
We believe that by creating value for our people, we promote a culture of excellence, innovation and ethical and responsible business practices.​
We are a tech company, and our approach to work is far from being conventional! We believe in a dynamic environment where innovation, growth and wellbeing intertwine every day. Here, work is not just a set of tasks, but an opportunity to express talent, experiment and make a difference.​
* WELLBEING: we have a short working week! You will not work on Friday afternoons, allowing you to devote time to your personal interests. To help you do this, we offer a welfare plan tailored to your needs, with many services and benefits for your wellbeing.​
* FLEXIBILITY: we believe in mutual trust! You won't clock in and out, and you'll work in a flexible, hybrid way. And to make it easier for you, we'll give you everything you need to be productive and connected remotely.​
* DEVELOPMENT AND GROWTH: we invest in people! You'll take part in a personalised development programme to build your skills and contribute to the achievement of the company's goals.​
* DIVERSITY AND INCLUSIVITY: we value differences! You will work in an inclusive environment based on collaboration and respect. Our leadership is focused on trust and the growth of each talent.​
* IMPACT: we work with pride! We are committed to creating shared value: for our customers, our partners and the community. In every project, we focus on sustainability and innovation.​

Location: The position is opened in the Milan or Rome offices