Cybersecurity Specialist IT/OT – Mondi Group
Join to apply for the Cybersecurity Specialist IT/OT role at Mondi Group.
Role Description: The OT specialist is responsible for coordinating cybersecurity and operational technology (OT) activities within the Romano di Lombardia site and the other 4 production sites in Italia. The role requires travel to remote locations and entails securing OT systems, managing cyber risks, and complying with Mondi’s OT Security Policies. It requires close collaboration with IT, engineering, operations, and external vendors, and demands strong technical and operational skills.
Key Responsibilities

Provides front‑line information about security anomalies or suspicious behaviour of OT systems to the OT Coordinator.
Reports security incidents, significant threats, vulnerabilities, and exposures of OT systems to the OT Coordinator.
Implements approved cyber‑security policies, standards, and guidelines; consults the OT Coordinator when in doubt.
Monitors users’ adherence to cyber‑security policies, standards, and guidelines.
Develops, verifies, and maintains up‑to‑date documentation in areas such as backup, media handling, system recovery, network management, and asset inventory, in cooperation with OT vendors.
Enforces and follows physical security rules regarding removable media.
Establishes and reviews security baseline configuration standards for operating systems, applications, and network devices.
Monitors third‑party and vendor access and activities in the OT environment.
Evaluates access logs and attempts to access the system.
Considers the use of cryptography and encryption; configures where feasible and required.
Maintains an up‑to‑date list of OT assets.
Performs quarterly verification of OT assets on which antivirus signatures cannot be updated regularly.
Conducts periodic walkarounds to detect suspicious devices (e.g., Shadow OT devices) and reports them to the OT Coordinator immediately.
Assists in performing risk analysis, security reviews, or penetration testing on OT systems.
Provides recommendations for risk‑mitigation strategies.

Qualifications

Bachelor’s degree in Computer Science, Engineering, or a related discipline.
At least 3 years of experience in OT/IT security or industrial automation.
Familiarity with cybersecurity standards and frameworks such as IEC 62443, ISO 27001, and NIS2.
Excellent communication and coordination skills with multidisciplinary teams.
Strong communication skills in English and Italian.

Benefits

Coaching
Cafeteria
Events for employees
Learning & Development
Parking
Public transportation nearby

Inclusion Statement
We encourage applications from under‑represented groups, including women, minorities, LGBTQI+, and people with disabilities. Even if you do not meet all the requirements, we still want to hear from you. If you need assistance during the selection process, please contact the reference person named.
Contact
For more information, please contact Barbara Dama via email.
#J-18808-Ljbffr