Leonardo
Aerospace, Defense and Security
CYS_SecurityManager_CSC
Neural analysis suggests this role is
optimal for Junior/Expert candidates.
“CYS_Security Manager_CSC at Leonardo. Skills: Cybersecurity, OT Security, Risk Management, Compliance. Support clients' Top Management in defining and implementing strategies for achieving cyber OT objectives and regulatory compliance (PSNC, NIS2). Analyze and evaluate infrastructure cyber posture through Assessment activities against Frameworks and Standards”
Industry & Context.
What They're Looking For.
Must Have
Experience of at least 1 year in the field, Knowledge of the main IT and OT cybersecurity Standards and Frameworks (FNCS, ISO/IEC 27001, ISO 27005, ISA 62443, ISA 99, ENISA Technical Guidelines for Security Measures, NIST Cybersecurity Framework), Knowledge of the main sector regulations (NIS and NIS2, PSNC etc.), Experience in conducting IT and OT Security Assessments for cyber posture evaluation and definition of related actions, Knowledge of Risk Analysis methodologies, Experience in defining and drafting cyber security policies and procedures, Knowledge of the English language at B2 level
Nice to Have
ICS/SCADA Security Essentials certification, CISSP certification, CISM certification, Lead Auditor 27001 certification, Lead Auditor 22301 certification
What You'll Do.
Support clients' Top Management in defining and implementing strategies for achieving cyber OT objectives and regulatory compliance (PSNC
Analyze and evaluate infrastructure cyber posture through Assessment activities against Frameworks and Standards
Re-engineer Cyber Security OT processes through analysis and drafting of Guidelines
Define the baseline for correct cyber security management of ICS systems
Analyze and define Cybersecurity Requirements Specification and Security High Level Design of ICS/OT plants (Green Field and Brown Field) compliant with IEC 62443
through appropriate audits
the degree of Compliance with procedures
OT sector standards (ISA62443) and regulations
Define and implement Cyber Risk Management models (based on standards such as ISO/IEC 27005) for the evaluation and management of cyber risks in the OT domain and for all areas impacted by regulations
Define appropriate remediation plans based on types of actions and degree of threat exposure mitigation
Support clients in the correct analysis and management of cyber risks in the supply chain
Support clients in monitoring cyber processes in defining actions for continuous improvement
How You'll Work.
Team & Collaboration
Excellent teamwork skills to achieve objectives
Full Job Description
**Job Description:** **Leonardo** è un gruppo industriale internazionale, tra le principali realtà mondiali nell’Aerospazio, Difesa e Sicurezza che realizza capacità tecnologiche multidominio in ambito Elicotteri, Velivoli, Aerostrutture, Elettronica, Cyber Security e Spazio. Con oltre 60.000 dipendenti nel mondo, l’azienda ha una solida presenza industriale in Italia, Regno Unito, Polonia, Stati Uniti, e opera in 150 paesi anche attraverso aziende controllate, joint venture e partecipazioni. Protagonista dei principali programmi strategici a livello globale, è partner tecnologico e industriale di Governi, Amministrazioni della Difesa, Istituzioni e imprese All’interno dell'Area di Business **Cyber & Security Solutions, **ed in particolare dell’Unità Organizzativa OT/IoT Security Consultancy, stiamo ricercando un/a **Security Manager** per la nostra sede di **Roma Laurentina** con possibilità di assunzione anche sulla sede di **Milano Nerviano**. La persona che individueremo si occuperà di: * Supportare il Top Management dei clienti nella definizione ed implementazione di strategie per il raggiungimento degli obiettivi cyber OT e di compliance normativa (PSNC, NIS2); * Analizzare e valutare la postura cyber delle infrastrutture mediante attività di Assessment rispetto a Framework e Standard internazionali; * Reingegnerizzare i processi Cyber Security OT mediante l'analisi e la stesura di Linee Guida, Policy e Procedure; * Definire la baseline per la corretta gestione della sicurezza cyber dei sistemi ICS.- Analisi e definizione dei Cybersecurity Requirements Specification e del Security High Level Design degli impianti ICS/OT (Green Field e Brown Field) compliant con normativa IEC 62443; * Verificare, mediante opportuni audit, del grado di Compliance rispetto a procedure, policy, standard di settore OT (ISA62443) e normative cogenti; * Definire e implementazioni di modelli di Cyber Risk Management (basati su standard quali ISO/IEC 27005 ) al fine di valutazione e ge
Applying for this CYS_Security Manager_CSC role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Leonardo?
Real rants from real employees. Read before you apply.