Cyber Security Analyst

About the role

The Cyber Security Analyst will join the Group Security Department of Dolce&Gabbana in Milan, reporting directly to the Group Security Director. The role focuses on strengthening the company’s security posture across endpoints, networks, cloud services and email, while ensuring compliance with regulatory frameworks such as NIS2 and ISO 27001.

Key responsibilities

• Support compliance activities for NIS2 and ISO 27001, acting as a reference for the security framework.
• Coordinate operational and project security tasks together with the ICT department.
• Serve as the primary contact for the external Managed Security Service Provider, managing SLAs, reviewing metrics and escalating critical incidents.
• Manage and tune the Endpoint Detection & Response platform, lead incident response, conduct threat hunting and orchestrate host isolation.
• Oversee Zero Trust Network Access and Cloud Access Security Broker policies to provide least‑privilege access for remote and hybrid workers.
• Administer email security controls to mitigate phishing, BEC and credential harvesting, and optimise gateway rules.
• Collaborate with network teams to maintain firewall policies, IPS/Anti‑malware profiles, web filtering and secure VPN access.
• Lead internal containment and remediation when critical threats are identified.

Required profile

• Bachelor’s or Master’s degree in Computer Science, Cybersecurity, or related field.
• 3–4 years of experience in security operations or a similar role.
• Familiarity with project‑management frameworks such as PRINCE2 or Agile.
• Strong command of English.

Required skills

• Routing, Switching and general network security.
• IPsec, GRE, IPv4 and IPv6.
• Virtualisation platforms – Hyper‑V, VMware.
• Vulnerability management tools – Qualys, Nessus.
• SIEM solutions – Splunk, QRadar.
• Security devices – firewalls, reverse proxies, IDS/IPS, EDR.
• Experience with Zero Trust (ZTNA) and Cloud Access Security Broker (CASB) concepts.