CHIEF INFORMATION SECURITY OFFICER (CISO)

Guess Europe Sagl Bioggio SVIZZERA Altro
Attenzione! Annuncio scaduto

Descrizione azienda

In 1981, GUESS sold its very first pair of jeans to Bloomingdale's department store. Since then, GUESS has grown, becoming one of today's most recognized and influential apparel brands in the world.

The continued dedication and commitment of our employees is the driving force of GUESS. Our talented professionals focus on leading the company with their vision of success. Join the team at GUESS Europe and bring your vision to life.

GUESS Europe is seeking eager, passionate individuals to uphold our commitment to the spirit of the GUESS family of brands including GUESS, Marciano, GUESS Factory.

Posizione

PURPOSE OF THE JOB:

The CISO provide the strategic vision of cybersecurity, implementing programs for the protection of information assets, defining processes to limit the risks associated with the adoption of digital technologies, and in providing an “external” view on business processes that impact information security and in maintaining visibility of the Guess's cybersecurity plans for management and institutions.

In its role the CISO will be accountable about plans, milestones, policies and procedures. It will take care to share with all stakeholders involved in the Corporate organization (IT, infrastructure, internal security, legal, compliance, etc.) drafts and development of these to be sure about their feasibility and concreteness within the Company’s reality and then correctly assessed.



CORE JOB RESPONSIBILITIES:

The main target is to standardize, develop, maintain and asses business processes that impact cybersecurity, and provide the guidance in collaboration with the corporate functions involved in order to:

  • Define proper security governance intended to Policies, Procedures and systems by which the organization manages and controls cybersecurity activities
  • Maintain and develop the cybersecurity governance structure
  • Define with the stakeholders and implement a 36-month cybersecurity roadmap, with quarterly milestones
  • Report to management on the status, plans and investments related to the roadmap mentioned above
  • Managing relations with institutions on data and information security issues, providing support in the preparation of meetings, deliverables, etc.

Requisiti

  • Education: Bachelor's Degree
  • Experience Level:
    • 8+ Years in working in a complex IT security environment with Public Key Infrastructure, High Security Modules (HSM), Intrusion Prevention System (IPS) and Intrusion Detection System (IDS)security appliances, problem diagnosis and security optimization in a large enterprise.
    • Familiarity with Payment Card Industry Data Security Standard (PCI DSS) and IT General Controls (ITGC).
    • Familiarity with SOX general operating controls.
  • Required Certifications:
    • Bachelor’s Degree in Computer Science, Information Technology, Engineering or a related discipline.
    • Certification in Information Security field is a must.
    • Mandatory: CISSP (Certified Information System Security Professional)
    • Nice to have:
      • CISM (Certification Information Security Management)
      • CRISC (Certification Risk & Information Systems Control)
      • CGEIT (Certification governance of enterprise IT)
      • GPEN: (Certification of the SANS Institute)
      • OSCE (Offensive Security Certified Expert)
      • OSWP (Offensive Security Wireless Professional)
      • CHFI (Certified Hacking Forensic Investigator)
      • CEH (Certified Ethical Hacker)
      • PALOALTO ACE (Accredited Configuration Engineer)
      • CCIE (Cisco Certified Internetwork Expert)
      • CCDE (Cisco Certified Design Expert)
      • CCNA (Cisco Certified Network Associate)
  • Other Knowledge or Skills:
    • Security technology including firewall, intrusion prevention, web filtering, log monitoring, and data loss prevention.
    • Security concepts including network segmentation, demilitarized zones, tiered architecture, and encryption.
    • Work independently without close supervision.
    • Must be a critical thinker with the ability to come up with original and/or creative security ideas.
    • Strong relationship management to work/consult with users.
    • Strong verbal and written communication skills.
    • Strong ability to interpret impact of security choices.
    • Strong work ethic and self-motivated to get the job
    • Sense of ownership and pride in the performance and its impact on company’s success
    • Good knowledge of written and spoken English is mandatory. Any other European language is considered as a plus