Cyber Security Engineer
MSC Mediterranean Shipping Company · Greater Turin Metropolitan Area
This listing has closed — view similar roles below.
- On site
- Full-time
- $120,000 / year
- Greater Turin Metropolitan Area
Job highlights
- Design security architecture aligned with Zero Trust.
- Focus on Identity and Azure Cloud security.
- Develop solutions for cyberattack prevention.
- Collaborate with cross-functional technical teams.
- Enhance security posture of Azure services.
About the role
About MSC Mediterranean Shipping Company
Mediterranean Shipping Company (MSC) is a global leader in the shipping sector, operating in 155 countries and facilitating international trade. Headquartered in Geneva, Switzerland, MSC is a family-owned organization committed to its customers, employees, and the environment. MSC Technology Italy, established in 2020 as a Center of Excellence, complements existing offices worldwide and embodies passion, continuous evolution, and a commitment to equal opportunities. With over 3,000 employees in the Technology Department, we play a pivotal role in driving business growth and enhancing quality standards. Working in an international office offers opportunities to collaborate with diverse teams, fostering personal and professional growth through cross-country engagement and potential international travel. Do you recognize yourself in our values? Join the MSC family!Role Overview
Join the Security Solution Architect team at MSC Technology Italy to develop a security architecture strategy aligned with the Zero Trust model. Your work will support a perimeter-less security approach with a strong emphasis on Identity and Azure Cloud Security. You will collaborate closely with other Security teams, Enterprise Architects, Developers, and Infrastructure and Network specialists.Key Responsibilities
As a Security Solution Architect, you will:- Design and validate innovative security solutions for defense-in-depth across identity, endpoints, applications, networks, and data.
- Define security requirements and standards for Microsoft/Azure environments, translating them into reference architectures and implementation patterns.
- Promote Security by Design by assessing and strengthening the security posture of MSC’s *aaS services to ensure technical compliance.
- Develop solutions to prevent and respond effectively to cyberattacks, identifying gaps and delivering improvements across internal systems and integrations (Azure Firewall, NSG, WAF, Azure Front Door, Application Gateway, API Management).
- Contribute to formal policies, standards, procedures, and requirements, while enforcing configuration baselines and ensuring compliance. Integrate security processes into existing operational workflows.
- Focus strongly on Identity by designing, developing, and assessing Azure Entra ID Conditional Access policies aligned with the company’s Zero Trust approach.
Qualifications
Required Qualifications (R):
- Professional experience with all aspects of an IT project from security requirements, security design through development, testing, implementation, and production.
- Strong, in-depth knowledge of security technologies and systems across networking, infrastructure, and application domains, with a particular focus on Azure Cloud.
- Excellent problem-solving abilities, supported by critical thinking and effective troubleshooting skills.
- Capability to decompose complex issues into clear, manageable tasks.
- Effective team collaborator with the ability to work proficiently within group environments.
- Strong organizational, time-management, and planning skills.
- Clear and effective written and verbal communication in English, with the ability to engage both technical and non-technical audiences.
Preferred Qualifications (P):
- Self-sufficient and able to operate independently with minimal guidance.
- Strong drive for continuous learning and experimentation with emerging technologies.
Technical Skills
Required Technical Skills (R):
- Strong knowledge of modern identity solutions in Microsoft Azure, including Entra ID MFA, phishing-resistant MFA, and Conditional Access policies.
- Solid Knowledge of the Entra ID platform, application identities, and permission management (Enterprise Applications, Service Principals, Managed Identities).
- Hands-on experience with modern authentication protocols and standards—SAML, OAuth, OIDC, Kerberos—as well as passwordless authentication approaches.
- Proven ability to assess and strengthen the security posture of Azure *aaS infrastructures and resources.
- Experience working with REST APIs and Azure networking and edge components such as WAF, Load Balancer, Application Gateway, and API Management.
Preferred Technical Skills (P):
- Practical experience using Microsoft Intune as an endpoint and device management solution.
- Background in software development, with familiarity in Azure Policies Development and PowerShell.
- Proficiency in SQL and KQL for data querying and analysis.
Other Requirements
- MS Office Products (R)
- Fluency in English (oral and written) (R)
- Bachelor’s degree relevant to Information Technology/Computer Science, Engineering (or equivalent) (P)
- Cloud/Security certifications (e.g., Azure Security, CISSP, GIAC), Network Security certifications (P)
What We Offer
- New Learning Opportunities
- Comprehensive Welfare System
- Life and Health Insurance
- Modern Workstation
- Discounts within the MSC group
Key skills/competency
- Cyber Security
- Security Architecture
- Zero Trust Model
- Identity and Access Management
- Azure Cloud Security
- Risk Management
- Incident Response
- Network Security
- Endpoint Security
- Compliance
Skills & topics
- Cyber Security Engineer
- Security Architecture
- Zero Trust
- Identity Management
- Azure Cloud Security
- Risk Management
- Incident Response
- Network Security
- Endpoint Security
- Compliance
- SAML
- OAuth
- OIDC
- WAF
- NSG
- Firewall
- Microsoft Intune
- PowerShell
- SQL
- KQL
- REST API
- Application Gateway
- API Management
- CISSP
- GIAC
- IT
- Computer Science
- Engineering
How to get hired
- Tailor your resume: Highlight your experience with Azure Cloud Security, Zero Trust, and Identity Management solutions like Entra ID. Quantify achievements in designing and validating security architectures.
- Showcase technical expertise: Emphasize your hands-on experience with Azure networking components (WAF, Firewall, NSG), authentication protocols (SAML, OAuth), and security certifications.
- Demonstrate problem-solving skills: Prepare examples of how you've decomposed complex security issues, designed effective solutions, and troubleshooted technical challenges in IT projects.
- Understand MSC's culture: Research MSC's commitment to people, continuous evolution, and family values. Align your application and interview responses with their emphasis on collaboration and innovation.
- Prepare for technical interviews: Be ready to discuss security requirements, reference architectures, and specific Azure security features. Practice explaining complex technical concepts clearly.
Technical preparation
Master Azure Entra ID Conditional Access policies.,Practice designing defense-in-depth solutions.,Prepare to discuss authentication protocols.,Review Azure *aaS security best practices.
Behavioral questions
Describe a complex security issue you solved.,How do you promote Security by Design?,How do you collaborate with diverse teams?,How do you stay updated with security trends?
Frequently asked questions
- What are the primary security focuses for this Cyber Security Engineer role at MSC?
- This Cyber Security Engineer role at MSC Mediterranean Shipping Company heavily emphasizes developing a security architecture strategy aligned with the Zero Trust model. Key focuses include Identity and Azure Cloud Security, designing defense-in-depth solutions, and strengthening the security posture of Azure *aaS services.
- What specific Azure and identity technologies are crucial for this position?
- For this Cyber Security Engineer position at MSC, strong knowledge of Microsoft Azure, Entra ID (including MFA and Conditional Access policies), modern authentication protocols (SAML, OAuth, OIDC), and Azure networking components (WAF, Firewall, NSG) is crucial. Experience with Intune and Azure Policies Development is also valued.
- What kind of professional experience is required for the Cyber Security Engineer role at MSC?
- MSC requires professional experience across the entire IT project lifecycle, from security requirements and design through development, testing, implementation, and production. A strong, in-depth knowledge of security technologies in networking, infrastructure, and application domains, with a focus on Azure Cloud, is essential.
- How does MSC Mediterranean Shipping Company support employee growth and development?
- MSC Technology Italy fosters employee growth through new learning opportunities, meetups, and technical events. They also offer a comprehensive welfare system, life and health insurance, and encourage continuous learning and experimentation with emerging technologies, aligning with their commitment to caring for their people.
- What is the work environment like for a Cyber Security Engineer at MSC Technology Italy?
- The work environment at MSC Technology Italy is international and collaborative, with opportunities for cross-country engagement. They foster a sense of 'Family' within the company, promoting innovation, wellbeing, and equal employment opportunities. You'll work closely with diverse teams and may have opportunities for international travel.
- Does MSC Mediterranean Shipping Company encourage continuous learning for its Cyber Security Engineers?
- Yes, MSC Mediterranean Shipping Company strongly encourages a drive for continuous learning and experimentation with emerging technologies. This is highlighted as a preferred qualification, reflecting their commitment to innovation and employee development within the cybersecurity field.