GOSP - Generali Operations Service Platform is a joint-venture between Generali and Accenture and provides IT and Procurement services to Generali Group companies. Our purpose is to accelerate the Group's innovation and digitization strategy through the Cloud and shared platforms. Based in Italy it has 5 branches across Europe and employs about 1.000 people. The candidate will be part of the team Security Standards in Security Governance Department. The Unit is responsible Ensuring cascading of security requirements from regulations to the overall IT architecture evolution via internal and customer projects. The Unit has responsibilities on: Ensuring Security by default and by design in Cloud Projects revolving on GOSP Cloud Foundation, in accordance with Group standard and sector best practices. Ensuring the adoption of the security regulations in the Company (in alignment with the Group Internal Regulation System requirements). Ensuring security is embedded in the Company's projects life cycle (Security Gate). Issues security requirements, verifies the implementation of the aforementioned security requirements in projects at infrastructure level involving where necessary technical Security Units, analyzes security of architectures involving other security units according to their area of expertize, ensures resources are allocated in projects for security units (Security Demand Evaluation). Performing controls on security features supporting privacy requirements (Privacy Gate) in alignment with Company DPO Supporting Group Procurement or business requester in the IT Security Assessments of the suppliers candidates. Supporting the good standing of the Information Security Management System and monitors the security control framework, including self-assessments and independent assurance reviews. Supporting the activities of internal/external audit related to Security Standards area The candidate will report to the Head of Security Standards (or his/her internal delegates) and will support on: Support for the security contribution to GOSP project management activities for internal demand and customer demand; Integrate with internal stakeholders and processes of GOSP, especially within GOSP Project Management and Business Relationship Managers; Review security features and implementation for relevant projects; Monitoring and coordination of Security projects budget; Weekly reporting, communication, support and awareness to involved Security managers on GOSP projects. the identification and design of secure Cloud based solutions and establishment of these ones; Collecting, evaluating and validating the documentation provided by the Generali Legal entities for specific Cloud Service Requests and Projects; Understanding the business needs underlying the design submitted Legal entities and proposing standardized blueprints to fulfil similar requirements; The design and implementation of proper reporting to the relevant stakeholders. Supporting in the Security documental framework adoption and definition in GOSP (as internal documentation or as Group requirement); Writing, updating and reviewing of policies, guidelines, technical measures; Organizing and executing the interviews with GOSP stakeholders to define contents to be included or to be abrogated from GOSP documents; The Regulations update, according to GOSP internal requirements and in line with GHO requirements; Performing gap analysis for each regulation to be updated and execute the update according to the information provided by GOSP process owner and support the validation process; Supporting the publication process for each regulation and identify potential remedial actions; Supporting in the analysis for potential policy gaps mitigation identified by GOSP between the requirements of new regulation and the current security operating processes; Addressing and integrating the issue/indications reported by the involved functions; Consolidating the security regulation framework after GOSP formal approval; Supporting Group security annexes recheck requests from procurement on new contracts or renewals. Requirements: • Master's Degree with ICT / ICT Security background or with Statistics /Mathematics background. • Good English knowledge (at least CEFR B1, written/spoken). Skills: Microsoft Office suite usage (Word, PowerPoint, Excel). Use of on-line collaboration tools (Teams, SharePoint). Basic knowledge on Cyber and Cloud Security principles. Ability to work in a large international organization, multicultural contexts. Analytical and effective communication skills. Interpersonal relations management skills in an international environment. Demonstrated ability to work effectively as part of a team, sharing knowledge. Proactivity. Additional Information Contract Type: Stage