Information Security Expert

We are EssilorLuxottica, a global leader in the design, manufacture and distribution of ophthalmic lenses, frames and sunglasses. Formed in 2018 by the combination of Essilor and Luxottica, our Company combines two centuries of innovation and human endeavour to elevate vision care and the consumer experience around it. We are home to the most loved and widely-recognized vision care and eyewear brands in the world. Our proprietary eyewear brands include Ray-Ban, Oakley, Costa, Vogue Eyewear, Persol and Oliver Peoples, complemented by over 20 prestigious licensed brands. Our advanced lens technologies include Varilux, Crizal, Eyezen, Stellest and Transitions. We offer superior shopping and patient experiences with a network of 18,000 stores including world-class retail brands like Sunglass Hut, LensCrafters, Salmoiraghi & Viganò and GrandVision.

Every day, EssilorLuxottica’s 180,000 employees in 150 countries work towards a common mission to help people see more and be more. In 2021, the Company’s milestones included a collaboration with Meta to launch Ray-Ban Stories smart glasses; the acquisition of GrandVision bringing 39,000 new employees into our family; expansion of our International Employee Shareholding community, and the launch of Eyes on the Planet, our strategic approach to sustainability.

In Australia and New Zealand, we operate the iconic retail and eye care brands: Sunglass Hut, OPSM, Ray-ban and Laubman & Pank.

**About Luxottica**

Luxottica is the leader in the design, manufacture and distribution of fashion, luxury and sports eyewear and eyecare around the world.

Our portfolio includes proprietary brands such as Ray-Ban and Oakley, as well as licensed brands including Giorgio Armani, Burberry, CHANEL, Dolce & Gabbana, Prada, Ralph Lauren, Tiffany & Co., Valentino and Versace.

Our global wholesale distribution network covers more than 150 countries across 5 continents and is complemented by an extensive retail network of approximately 9,100 stores, which includes Sunglass Hut, Ray Ban, Oakley, OPSM and Laubman & Pank in Australia and New Zealand.

**The Opportunity**

In this role you will report to the regional ISO and you will be responsible for coordinating and performing security assessments, defining remediation and managing implementation of identified remediation. Security assessments activities include both execution and/or coordination of interview-based assessments (e.g. risk-based) as well as technical assessments (i.e. PT / VA, etc.).

**General Role Overview**
- ** Security Gap Identification & Severity evaluation - **Identify and prioritize gaps (according to their severity) coming from the Security Assessment
- ** Remediation identification & plan development - **Identify the Information Security remediation to cover identified gaps and share the results of the activities with relevant stakeholders (including Information Security Team, IT, Business).
- ** PMO on remediation - **Execute PMO, provide coordination across all involved stakeholders, on the implementation of Remediation Plans, identifying and reporting issues, risks and opportunities to the CISO / relevant stakeholders.

**Knowledge & Skills required**
- Knowledge of most relevant technical elements related to operations security, network security, secure software development, identity and access management, data protection & vulnerability management.
- Demonstrated skills in implementing security assessments programs, including executing risk assessments, technical assessments, identifying and implementing missing controls and or remediation, and managing the testing of the security posture
- Knowledge of international standards and best practices in domain of Information Security and Data Protection (e.g. ISO 27001, NIST 800-53, etc.);
- Knowledge of relevant Information Security / Data Protection laws and regulations (e.g. GDPR, HIPAA, PCI DSS)
- Knowledge about most common IT Security solutions.
- Knowledge of core IT Processes (operations, software development, etc.)
- Project management skills, teamwork and individual accountability
- Proven ability to communicate to all levels in a technical and non-technical manner

**Educational Background**
- Bachelor’s degree in Information Security, Information Technology, Computer Science, Engineering, or similar strongly desired
- Professional information security certifications (such as CISSP, CISA, SANS) strongly desired

**Working at Luxottica**

A career with Luxottica will offer you rewarding experiences and the opportunity to develop your skills every day. Working at our head-office located in North Sydney, you will enjoy:

- A generous yearly product allowance for you to spend across our portfolio of brands and product discounts for family & friends
- Hybrid working environment
- Global volunteering opportunities through our OneSight Foundation
- Wide range of career opportunities across the Luxottica family
- Fabulous office environment offering an ex