Cybersecurity Specialist

We are looking for a Cyber Security Specialist to oversee the daily operations of the Lavazza Group's cybersecurity ecosystem, safeguarding the organization against evolving market threats. Covering all key domains-from endpoint protection and cloud security to account and privileged access management, employee awareness, and compliance-the successful candidate will help ensure comprehensive protection across the enterprise.In addition, the Specialist supports the enhancement and maintenance of cybersecurity tools and processes, with particular emphasis on compliance with Group security standards, regulatory requirements, and the organization's risk posture. Operating as part of a unified function, the Specialist works in close daily cooperation with SOC and SecOps suppliers, alongside internal teams such as Tech & Digital Services, Cloud & Microsoft Technologies, Networking Services, and colleagues abroad, ensuring a consistent and resilient cybersecurity ecosystem across the Group's global operations.

Your day-to-day activities:

• Maintain and optimize IT Security Policy Framework documents, controls and internal governance standards.
• Support processes for users and priviliged account management, daily SecOps and incident management, endpoint protection, cloud and applications security.
• Evolve the Incident Response capabilities for Lavazza Group to have containment and strong remediation skills.
• Support vulnerability & threat management process, threat intelligence, and periodical security awareness campaigns.
• Support periodical external audits activities and cooperate to ensure compliance with applicable laws and regulations (i.e. NIS2, AI Act).
• Advise on security requirements for IT or business projects and validate security architecture in collaboration with the other IT teams., * If you make it to the short list, you'll be interviewed by the Hiring Manager and if necessary, other members of the hiring panel
• In some cases, you may be required to show us your skills via technical challenge.

• You will ideally have 1-2 years experience in a similar role.
• knowledge of Microsoft security suite, Identity and Access Protection, Encryption technologies, Network security & firewall, Cloud environments Security , Endpoint Protection, Security Audits (Penetration testing), Threat Intelligence & Incident Response (SIEM, SOAR)
• Knowledge In the application of compliance (NIS2, GDPR) and regulatory aspects of cybersecurity and Common Security Frameworks (NIST).
• Adaptability & Learning Agility - Ability to quickly learn and flexibly adjust to dynamic, evolving contexts.
• Analytical & Problem-Solving Skills - Strong capability to assess situations, identify solutions, and drive effective outcomes.
• Proactivity & Collaboration - Balanced proactive and reactive approach, with a strong team spirit in complex, multinational environments.
• Fluent English

This position is based in Turin with some remote working (10 days per month)

• Comprehensive welfare package including short working week during summer months
• Hybrid working policy (10 days a month remote working)
• Company restaurant service
• Access to our corporate gym
• A fast paced and dynamic international context

Our Group was founded in Turin in 1895, has been owned by the Lavazza family for four generations. As one of the world's most important coffee roasters, we operate in more than 140 countries through our brands, subsidiaries and distributors, with a total of over 5,500 employees. Every day we operate in all sectors of the coffee industry, offering our products through every channel and positioning our brands as a high-quality blend. We are a community of single origins united into a perfect blend, humans enriching one another through our mutual diversity. Awakening a better world every morning: the commitment we make every single day.