Chief Information Security Officer

Chief Information Security Officer page is loaded Chief Information Security Officer Apply locations Vimercate (MB) time type Full time posted on Posted 5 Days Ago job requisition id REQ-23261 Job Posting Title Chief Information Security Officer The challenge An exciting opportunity has arisen to contribute to Haier Europe. The Company is on a journey to achieve ambitious business growth and leadership objectives in the region, and we need someone who is passionate, proactive, self-driven and motivated to join a team of open-minded individuals. We are looking for an individual who demonstrates the core values of the Haier’s attitude: entrepreneurship and innovation, zero distance to consumers and IoT & Ecosystem thinking. A true change agent with an agile approach thriving for idea contamination and with a hyper-collaborative approach that breaks silos and creates an open ecosystem. What you will do The CISO will be responsible for implementing and running the enterprise information security program. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives A key element of the CISO's role is working with executive management to determine acceptable levels of risk for the organization. He or she will proactively work with business units and ecosystem partners to implement practices that meet agreed-on policies and standards for information security. The CISO should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the board of directors and other senior stakeholders If you’re a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our company’s future. Objectives of this role Develops an information security vision and strategy that is aligned to organizational priorities and enables and facilitates the organization's business objectives, and ensures senior stakeholder buy-in and mandate Overseeing the protection of company data, intellectual property, and technology assets from cyber threats. Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements. Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats. Ensures that security is embedded in the project delivery process by providing the appropriate information security policies, practices and guidelines Manages and contains information security incidents and events to protect corporate IT assets, intellectual property, regulated data and the company's reputation Monitors the external threat environment for emerging threats, and advises relevant stakeholders on the appropriate courses of action Collaborating with cross-functional teams to integrate security measures into the company’s IT and business operations. Manages the budget for the information security function, monitoring and reporting discrepancies Your tasks Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations. Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure. Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches. Manage the security architecture, tools, and technologies deployed across the organisation’s IT infrastructure. Works with the vendor management office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations Collaborates and liaises with the data privacy officer to ensure that data privacy requirements are included where applicable Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA. Monitor security metrics and report on the organisation’s security posture to executive leadership. Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation. Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively. What you need to succeed Required skills and qualifications Bachelor’s degree in Information Security, Computer Science, or a related field. 10 years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role. Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST, ISO 27001), and risk management practices. Working knowledge of security auditing, vulnerability assessments, and risk mitigation. Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols. Solid knowledge of data privacy regulations and compliance requirements. Ability to develop and implement complex security strategies. Project management skills: financial/budget management, scheduling and resource management Strong leadership and communication skills, with the ability to influence decision-making at the executive level. Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities. Ability to manage a team of security professionals and work cross-functionally with IT, legal, and compliance teams. Preferred skills and qualifications Master’s degree in Cybersecurity, IT, or related fields. Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA). Experience with cloud security and securing cloud infrastructure. Familiarity with incident management and disaster recovery planning. Knowledge of ethical hacking and penetration testing techniques. Background in regulatory compliance and data privacy laws in the industry. Hands-on experience with SIEM tools, firewalls, and intrusion detection systems. Expertise in secure software development and DevSecOps practices. Understanding of artificial intelligence and machine learning applications in security. Multilingual proficiency for international security collaboration. LI-GG1 Haier Europe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law. About Us Haier Europe is part of the Haier Smart Home, the No. 1 company globally in major appliances and among the Fortune's Global 500 and World's Most Admired Companies. Haier Smart Home has a network of 10 R&D centers, 71 research institutes, 35 industrial parks, 143 manufacturing centers and a sales network of 230,000 nodes around the world. We are the world's only IoT Ecosystem Brand that has been ranked in the Kantar BrandZ Top 100 Most Valuable Global Brands for 5 consecutive years. We also ranked as the 1 Global Major Appliances Brand according to Euromonitor International for 15 consecutive years. In 2023, we achieved revenues of approximately € 33.6 billion. In Europe, under our high-end brands, including Candy, Haier and Hoover, we are designing the new era of living by offering our household solutions and scenarios to over 45 markets in Europe and beyond. Haier Europe is headquartered in Vimercate (MB), Italy. More information is available on corporate.haier-europe.com. J-18808-Ljbffr

Location: Vimercate, Lombardia, IT

Posted Date: 7/20/2025