Defensive / Offensive Cybersecurity Lead

As the largest provider of health care products and services to office-based dental and medical practitioners, Henry Schein Inc. understands what it takes to be successful. Ranked first in its industry on the FORTUNE World's Most Admired Companies list, we set ourselves apart through our culture. Our Culture is defined by our values, including mutual responsibility, ethical behaviour, creativity, and open communication. Approximately 25,000 Team Schein Members (TSMs) worldwide help us to keep our culture and continue to thrive as a leader in our industry. Exciting Job Opportunity: Defensive / Offensive Cybersecurity Lead This position will be located near one of our offices in Madrid, Milan, or Paris. This role will set a vision and define a compelling roadmap to build a fit-for-purpose defensive & offensive services portfolio, aimed at monitoring and responding to security events, and delivering measurable outcomes. The role involves developing innovative solutions to enhance the detection and remediation of cyber events, validating requirements with HIS stakeholders, developing metrics, and structuring an agile experimentation framework with the cyber security team to test the effectiveness of our tools and processes. The lead will oversee financial aspects, support security audits, and report to the Chief Information Security Officer (CISO). Set the strategic direction for incident response and all offensive and defensive practices. Supervise and manage the Global Security Operations Center (SOC). Oversee penetration testing and vulnerability management teams. Plan hiring and training for defensive/offensive team members. Create processes and playbooks for handling security events and incidents. Assess and prioritize security events, coordinating with relevant groups. Ensure continuous improvement of rules and procedures. Develop and integrate crisis management plans as needed. Create reports and dashboards to monitor service performance and effectiveness. Design and execute tabletop exercises to test incident response plans. Scope of the role includes: Security event triaging and incident response using telemetry and threat intelligence. Threat hunting based on attack indicators. Vulnerability management across IT services. Risk-based penetration testing to assess security controls. Identifying and implementing offensive/defensive security solutions. Desired Qualifications: 10-15 years of offensive security experience. 10-15 years in defensive security, including SOC management, threat hunting, and threat intelligence. Knowledge of SIEM solutions like QRadar, Splunk, and Microsoft Sentinel. Hands-on experience in cyber incident investigations. Experience working with MSSPs and large-scale clients. Offensive Security and incident response certifications are required. Additional technical certifications are a plus. A Bachelor’s Degree is a plus. J-18808-Ljbffr

Location: Varese, Lombardia, IT

Posted Date: 8/17/2025