Data Protection Specialist

As Data Protection Specialist you will contribute to ensuring the safety of information systems and assets, protecting systems and information from unauthorized access or modification. You will contribute to development of security strategy, policy and procedures. Additionally, you will work with internal stakeholders to understand their data security needs, providing recommendations as required. Overall, you will help ensure that stakeholders understand and adhere to necessary policy and procedures.

Day-to-day, you will:

- Contribute to researching, analyzing and troubleshooting information/technology systems compliance and security issues

- Support the vulnerability management process for company assets

- Participate in security incident response activities

- Identify and resolve security issues affecting architectures, network/data traffic, and network access

- Assist in providing security infrastructure support for enterprise systems

- Help assess information security risks of new projects and existing IT environments, relying on technical expertise

- Contribute to development of a variety of security deliverables, including: system security plans, security and risk assessment reports, privacy impact assessments (PIA), contingency plans, milestones, etc.

- Identify, validate, and report on security incidents and events based on enterprise policies and procedures

- Help define compliance programs and activities, contributing to implementation

- Participate in forensic information security investigations involving enterprise computers, servers and/or networking infrastructure

- Support junior security team members in developing IT security skills and expertise

Your technical and non-technical requirements may include:

- Experience with vulnerability management technologies (e.g., Nessus, Qualys, Rapid7)

- Experience with security incident management

- Experience in infrastructure technologies and solutions, especially Microsoft and cloud

- Experience in data protection technique, cryptography, data masking

- Experience with operation management, systems security, testing, databases and mobility considerations

- Solid understanding of the software and security development lifecycle

- Solid knowledge of security practices for data protection to ensure compliance - Knowledgeable of technical assessments and control testing of applications and networks, firewalls, operating systems, etc.; includes assessment of security risks, and user access security

- Experience interacting with internal clients from diverse professional backgrounds

- Experience working with global teams, including working with off-shore teams to facilitate project work

- Demonstrated excellence in communicating and presenting complex information to technical and non-technical stakeholders, both verbally and in written form

-Good written and spoken English skills

Preferred Certifications:

Certifications as CISA, CISM, CISSP and/or Microsoft certifications (MCSA, MCSE) are a plus

You will likely possess a degree (or equivalent), preferably in IT-related field

You will likely have 3+ years of experience in systems/infrastructure engineering with significant focus on IT security

Location: Milan, Rome

Requisition ID - 55122

Avanade is the leading provider of innovative digital and cloud-enabling services, business solutions and design-led experiences, delivered through the power of people and the Microsoft ecosystem. Majority owned by Accenture, Avanade was founded in 2000 by Accenture LLP and Microsoft Corporation and has 30,000 professionals in 24 countries. Visit us at

Meet Some of Avanade's Employees

Joshua C.

Manager, Experience Design

Joshua guides and supports Avanade’s junior employees in their paths to create exceptional experience designs for company clients—while also working with clients and stakeholders himself.

Beth H.

Executive, Delivery Management

Beth oversees all delivery projects within a region for Avanade, ensuring that project teams have the tools and resources they need to achieve total client satisfaction.

Back to top