ARGO-HYTOS

• Support and continuously improve the ISMS, including compliance activities, audit preparation, evidence collection, risk tracking, and remediation follow-up. • Translate security and compliance requirements into practical technical controls and verify their effectiveness. • Implement and operate core security controls in the Microsoft / Entra environment, including MFA, Conditional Access, role-based access, privileged access practices, access reviews, endpoint security, and hardening. • Coordinate operational security activities such as Cyber Defence Center investigations, vulnerability and patch management, incident response, backup/restore security, ransomware resilience, and restore-test evidence. • Integrate security into IT operations, change/release processes, and service management, and report the security posture using relevant KPIs such as MFA coverage, device compliance, patch status, critical risks, and restore-test success.