Cyber Security Expert

Trentino Alto Adige, Italy

Selection 4.0, a technologically advanced company specializing in the search and selection of Middle and Top Management profiles at national and international levels, is seeking a:

Our client is a rapidly growing Tech Company entering an ambitious scale-up phase.

Their flagship product, unique and pioneering, is already widely marketed in Italy and the US, revolutionizing its sector.

You will be responsible for the security and compliance of the client's SaaS platform, infrastructure, and data, ensuring adherence to standards and high levels of resilience, governance, and trust.

You will work closely with engineering and DevOps teams to identify risks, implement controls, and evolve security measures as the company grows.

Responsibilities

• Perform security audits, risk assessments, and penetration tests on systems.
• Define and implement best security practices for infrastructure, applications, and data.
• Configure continuous monitoring and log analysis to detect anomalies or breaches.
• Coordinate security incident responses: investigation, resolution, and post-mortem analysis.
• Ensure compliance with GDPR, ISO 27001, SOC 2, and other relevant frameworks.
• Provide consultancy on secure CI/CD in cloud-native environments and IAM (SSO, RBAC, MFA).
• Manage client audit requests: prepare documentation, evidence, and respond to external audits (e.g., due diligence for enterprise clients).
• Provide internal training and raise awareness on security best practices.
• Require over 3 years of experience in cybersecurity roles, preferably in SaaS or cloud-native environments.
• Solid experience with cloud platforms (AWS), containerization, and CI/CD.
• Familiarity with frameworks like OWASP, NIST CSF, ISO 27001.
• Skills in vulnerability management, SIEM, IDS/IPS, and log auditing.
• Proven ability to prepare documentation and evidence for audits.
• Proactive mindset, initiative, and excellent prioritization skills.
• Fluent English; Italian is a plus.
• Experience with headless CMS or similar content platforms.
• Involvement in GDPR/SOC 2 audits or external compliance procedures.
• Certifications such as CISSP, CISM, CEH.
• Familiarity with developer-oriented security tools and modern SaaS architectures.
• An environment focused on product and design, with full responsibility for security foundations.
• Direct collaboration with the CTO, founders, and engineering leadership team.
• Flexible working arrangements.

Salary: Between €50,000 and €60,000

Remote work with travel or in-person meetings at HQ.