Attiva gli avvisi di lavoro via e-mail!
Operational Technology Security Expert (m/f/d)
Bayer CropScience Limited
Milano
In loco
EUR 65.000 - 85.000
Tempo pieno
Genera un CV personalizzato in pochi minuti
Ottieni un colloquio e una retribuzione più elevata. Scopri di più
Descrizione del lavoro
A leading pharmaceutical company in Milan seeks an Operational Technology Security Expert to lead cybersecurity governance and compliance for its Italian production site. The ideal candidate will have over 5 years of experience, a degree in a relevant field, and strong skills in risk management and project coordination. This role emphasizes fostering a strong security culture and managing compliance with regulations.
Competenze
- 5+ years of experience in cybersecurity governance or IT risk management.
- Experience in a regulated industrial environment is a plus.
- Proven track record in managing security or compliance programs.
Mansioni
- Lead implementation and improvement of security frameworks.
- Manage compliance with regulations and internal standards.
- Oversee cybersecurity risk management processes.
- Drive cybersecurity projects ensuring quality and timeliness.
Conoscenze
Formazione
At Bayer we’re visionaries, driven to solve the world’s toughest challenges and striving for a world where ,Health for all, Hunger for none’ is no longer a dream, but a real possibility. We’re doing it with energy, curiosity and sheer dedication, always learning from unique perspectives of those around us, expanding our thinking, growing our capabilities and redefining ‘impossible’. There are so many reasons to join us. If you’re hungry to build a varied and meaningful career in a community of brilliant and diverse minds to make a real difference, there’s only one choice.
Operational Technology Security Expert (m/f/d)
Bayer HealthCare Manufacturing is looking for a brilliant and strong Operational Technology Security Expert.
He/She will lead the implementation and continuous improvement of the Information Security and Compliance Framework for Bayer’s Italian production site.
The role involves managing the compliance program, engaging with internal and external stakeholders, and driving risk reduction while fostering a strong security culture.
- Represent the site in cybersecurity and compliance governance forums, ensuring alignment and communication with global Cybersecurity, IT, and Quality teams
- Ensure the site’s compliance with the NIS2 Directive and related national obligations, including reporting and notification duties within required timeframes
- Drive the lifecycle, development, implementation, and maintenance of information security policies, procedures, and controls in line with Bayer standards and international best practices (e.g. NIST, IEC 62443) and SOPs
- Oversee the local cybersecurity risk management process: perform or coordinate risk assessments, define mitigating actions, and ensure timely implementation with Engineering, IT, and Production departments
- Manage cybersecurity technical and compliance projects, ensuring delivery on time, within quality and budget standards, while meeting regulatory and corporate objectives
- Coordinate and support internal and external audits, compliance reviews, and readiness assessments (including NIS2, ISO 27001, GMP)
- Act as the primary point of contact for cybersecurity governance topics, ensuring consistent application of Business Impact Analysis (BIA), Business Continuity Plan (BCP), and Disaster Recovery Plan (DRP)
- Promote awareness, communication, and training programs to strengthen security and compliance culture across all organizational levels
- Take responsibility for personal conduct and supervise the team regarding Health, Safety, Environment, and Energy duties
- Bachelor’s or Master’s degree in Computer Science, Information Technology, Engineering, or related fields
- At least 5 years of experience in cybersecurity governance, IT risk management or compliance
- Experience in a consulting firm or regulated industrial environment is a plus
- Proven experience in managing security or compliance programs with direct accountability for governance, risk and reporting
- Strong understanding of cybersecurity frameworks and standards: ISO 27001/27002, IEC 62443, NIS2, NIST
- Sound knowledge of IT systems and core security technologies (e.g., firewalling, IDS/IPS, virtualization, network security, Active Directory)
- Knowledge of automation technologies (such as PLCs, SCADA, control systems, industrial network protocols) and professional certifications (including CISSP, CISM, PRINCE2, PMP, ITIL, and CCNA/P) are considered a plus
- Demonstrated ability to lead cross‑functional initiatives and coordinate with global stakeholders
- Experience with project management methodologies and governance tools (GRC systems, dashboards, KPI tracking)
- Excellent communication and stakeholder management skills, with ability to report effectively at different organizational levels
- Residence or domicile in Lombardy
- Fluent in English and Italian mother tongue
Location: Garbagnate Milanese
Type of contract: Permanent
Application Period: 17.11.2025 - 28.11.2025
Reference Code: 856765
Division: Pharmaceuticals
Location: Italy : Lombardia : Milan
Functional Area: Information Technology
Position Grade: A3, VS1.1
Employment Type: Regular
Work Time: Full Time
Address: Viale Certosa 130, 20156 Milano
Email: HROP_Italy@bayer.com
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
