Vollzeit
Bozen, Bologna
09.03.2026
Bozen, Bologna
YOUR RESPONSIBILITIES
- Design and develop software cyber security mechanisms in accordance with applicable cyber security requirements and secure code writing guidelines
- Support in monitoring vulnerabilities that may affect the product, assessing their severity and managing any associated correction and verification
- Assist in the definition/updating of secure coding guidelines
- Support the integration and configuration of cybersecurity mechanisms for the entire product lifecycle (development, production, maintenance)
- Write documentation on the software developed in accordance with the process
- Debugging code on various systems using debuggers
- Read and understand the technical documentation of the µprocessors and µcontrollers
|
YOUR RESPONSIBILITIES
- Collect and analyse stakeholder cybersecurity requirements (standards, regulations and customers)
- Perform threat and vulnerability analyses and risk assessments to identify the necessary mitigations for development, production, maintenance and decommissioning
- Support internal vulnerability assessments by reviewing available work products
- Monitor security vulnerabilities that may affect the product and assess the severity of any related corrections and verifications
- Support cybersecurity audits at customer premises and/or those carried out by certification bodies
- Monitor the evolution of international regulations and standards impacting cybersecurity
|
YOUR RESPONSIBILITIES
- Perform penetration testing on chargers, embedded controllers, and backend infrastructures using various techniques (e.g. brute force, code injection, malformed data)
- Attack implemented security mitigations in order to bypass them, either via software or hardware techniques such as fault injection, glitches and side-channel attacks
- Identify weaknesses and vulnerabilities in charging protocols in connection with EVs and CPOs
- Create reports of any findings and support the team in assessing the identified vulnerabilities, possibly providing remediation requirements
- Support the establishment and maintenance of a distributed penetration testing lab, including the selection of tools, programming languages and scripts
|