YOUR RESPONSIBILITIES
- Perform penetration testing on chargers, embedded controllers, and backend infrastructures using various techniques (e.g. brute force, code injection, malformed data)
- Attack implemented security mitigations in order to bypass them, either via software or hardware techniques such as fault injection, glitches and side-channel attacks
- Identify weaknesses and vulnerabilities in charging protocols in connection with EVs and CPOs
- Create reports of any findings and support the team in assessing the identified vulnerabilities, possibly providing remediation requirements
- Support the establishment and maintenance of a distributed penetration testing lab, including the selection of tools, programming languages and scripts
|
Vollzeit
Bozen, Bologna
01.06.2026
Bozen, Bologna
YOUR RESPONSIBILITIES
- Design and develop software cyber security mechanisms in accordance with applicable cyber security requirements and secure code writing guidelines
- Support in monitoring vulnerabilities that may affect the product, assessing their severity and managing any associated correction and verification
- Assist in the definition/updating of secure coding guidelines
- Support the integration and configuration of cybersecurity mechanisms for the entire product lifecycle (development, production, maintenance)
- Write documentation on the software developed in accordance with the process
- Debugging code on various systems using debuggers
- Read and understand the technical documentation of the µprocessors and µcontrollers
|
YOUR RESPONSIBILITIES
- Fix security vulnerabilities across embedded software codebases
- Work with product managers and developers in agile sprints to prioritise and resolve security issues
- Deliver clean, well-documented fixes that adhere to existing code conventions
- Support vulnerability analysis and remediation confirmation at validation level
|
YOUR RESPONSIBILITIES
- Fix security vulnerabilities across the front-end (Vue.js/Nuxt.js) and back-end (C#/.NET and PHP/Laravel) codebases
- Collaborate with product managers and developers in agile sprints to prioritise and resolve security issues
- Deliver clean, well-documented fixes that adhere to existing code conventions
- Support vulnerability analysis and remediation confirmation during validation phases
|
YOUR RESPONSIBILITIES
- Operate and maintain the ISMS, ensuring policies, controls, risks and evidence remain accurate, consistent and audit‑ready
- Translate risk assessments and treatment plans into structured, trackable work items in Jira, ensuring full traceability with IMS documentation
- Manage the lifecycle of security controls, including implementation, testing, remediation and exceptions
- Integrate the Information Security function into existing Jira/Confluence workflows, dashboards and templates
- Maintain controlled security documentation in the IMS and support internal and external audits
- Coordinate security intake processes, supplier assessments and access/asset governance activities
- Connect vulnerability and incident outputs to the ISMS and ensure findings drive updates to risks, controls and procedures
- Provide security guidance to engineering, IT and business teams, supported by live data and metrics
|
Vollzeit
Bozen, Cividale del Friuli
29.05.2026
Bozen, Cividale del Friuli
- Analyse und Überwachung der europäischen und nationalen Gesetzeslage im Bereich ICT und Informationssicherheit;
- Bewertung der Auswirkungen der neuen Gesetze auf die Prozesse der Bank mit Erstellung der Gutachten für die Organe und betrieblichen Funktionen;
- Unterstützung bei der Erstellung und Aktualisierung der internen Bestimmungen für die Prozesse im ICT-Bereich;
- Überprüfung der Implementierung und Funktion von ICT-Systemen und ICT-Prozessen sowie der Sicherheit in Zusammenarbeit mit der Einheit Cybersecurity;
- Ermittlung der Nicht-Konformitätsprofile und Definition und Überwachung der Maßnahmen und Interventionspläne, in Zusammenarbeit mit den anderen Kontrollfunktionen;
- Berichterstattung über die durchgeführten Tätigkeiten in den periodischen Berichten der Compliance-Funktion für die Organe der Bank und die Aufsichtsbehörden;
- Teilnahme an strategischen ICT-Projekten, um bereits ab der Planungsphase die Konformität mit der Gesetzeslage zu gewährleisten;
- Zusammenarbeit den internen und externen Audit-Teams mit Übermittlung der erforderlichen Unterlagen und Unterstützung während der Überprüfungen.
|
|
|
