Cybersecurity Risk & Governance Expert

Job Location: Alba

Reporting professionally to the Cyber Risk & Governance Manager, the Cybersecurity Risk & Governance Expert is responsible for ensuring or supporting compliance with cybersecurity legislations, applicable standards, and internal governance frameworks. This role involves performing Cyber Risk Assessments and Third-Party Cybersecurity Assessments to evaluate applications, infrastructures, and suppliers when required.

Additionally, the position oversees the maintenance and evolution of the Cybersecurity Governance Framework, ensuring alignment with global laws, regulations, and standards across all countries where Ferrero operates.

This role will be based in our Alba offices, with the possibility of working remotely up two days per week.

You will be part of the Europe Hub, managing requests and needs originating from the area while planning activities and resources to ensure continuous improvement of the cybersecurity posture. Maintaining awareness of global cybersecurity regulatory frameworks and standards will be key to ensuring Ferrero’s compliance with requirements, while creating and delivering end-to-end compliance strategies and plans to guarantee long-term adherence to frameworks, regulations, and best practices.

In addition, you willlead the tracking and delivery of compliance activities, keeping accurate records of evidence, remediation actions, and reporting to business stakeholders and regulators as needed. Beyond compliance, you will conduct Third-Party Cybersecurity Assessments and contribute to improving methodologies for evaluating supplier maturity and risk exposure.

Your role will also includesupporting the definition and maintenance of cybersecurity policies and procedures, ensuring alignment with Ferrero’s environment and industry-leading practices, while integrating cybersecurity risk and compliance aspects into other Group processes effectively. Finally, you will perform cybersecurity risk assessments to confirm or update risk levels of applications and infrastructures and collaborate with internal stakeholders to retrieve and present information necessary for compliance and audits.

Bringing solid expertise in cybersecurity risk and governance, you have at least 4 years of experience in similar roles within a multinational environment or in cybersecurity consultancy.

Your background includes assessing compliance against recognized frameworks and regulations, defining and maintaining governance models, and managing risk through audits and evaluations of IT and cybersecurity controls for applications, infrastructures, and third parties.

You hold a degree in Computer Science, Engineering, or a related technical field, and ideally a master’s degree in Cybersecurity, Compliance, or Information Security.

Your knowledge includes cybersecurity laws and regulations such as NIS2 and the EU AI Act, as well as international standards and frameworks like ISO27001, NIST, COBIT, ITIL, and PCI DSS. Familiarity with risk management methodologies and control evaluation processes is essential.

You combine analytical thinking and problem-solving skills with the ability to communicate effectively in complex business contexts. Proficiency in English is essential for this role.

Ready to make cybersecurity governance your next big impact? Join Ferrero and help us build a resilient, compliant, and secure future. Apply today and be part of our global journey.

Careers with caring built in - discover our benefits here.

Ferrero began its journey in the small town of Alba in Piedmont, Italy, in 1946. Today, it is one of the world’s largest sweet-packaged food companies, with many iconic brands sold in countries all over the world. Find out more about Ferrero at ferrero.com.

Ferrero is committed to building a diverse and inclusive culture in which all employees feel welcomed and appreciated and have the same opportunities. We believe all our people are equally talented in their own way. In nurturing the curiosity and natural abilities of our employees, we provide them, generation after generation, the means to succeed personally and professionally, enabling them to craft their journey at Ferrero. The diversity of our talents is what makes our work environment multicultural, innovative, and highly rewarding.
Find out more here.