Cybersecurity Engineering & Assessment Specialist

Cybersecurity Engineering & Assessment Specialist

Posting Date: 26 Feb 2026

City:
Roma

Location:

Roma, IT, 144

Contract Type:
Permanent

Division:
Operating Engine

Level of experience:
Senior

RINA is currently recruiting for a Cybersecurity Engineering & Assessment Specialist to join its office in Rome within the Operating Engine Division.

The Cybersecurity Engineering & Assessment Specialist is responsible for designing, deploying, testing, and optimizing cybersecurity technologies and defenses across IT and OT environments. This role bridges the gap between security engineering, threat simulation, and operations enablement—combining deep technical expertise, system integration skills, and offensive security knowledge to ensure that organizations build, validate, and maintain effective cyber resilience.

• Design, deploy, and optimize cybersecurity platforms (e.g., SIEM/SOAR, vulnerability management, endpoint protection).
• Implement automation workflows and integrations using APIs and scripting to enhance operational efficiency.
• Extend product capabilities through custom development aligned with client and organizational needs.

• Conduct penetration testing and red‑team engagements across network, application, cloud, and OT environments.
• Simulate real‑world attack scenarios—phishing, malware delivery, privilege escalation—to evaluate detection and response capabilities.
• Provide remediation guidance based on realistic adversary behavior.

• Perform vulnerability and configuration assessments across IT and industrial infrastructures.
• Identify weaknesses in system architecture, misconfigurations, or insecure interfaces, and develop prioritized mitigation plans linked to business risk.

• Assess security and monitoring capabilities within OT and industrial control systems (SCADA, PLCs, IIoT).
• Deploy or leverage network visibility tools to identify insecure protocols and lateral movement paths.
• Support improved segmentation, monitoring, and hardening of critical environments in accordance with IEC 62443 standards.

• Support operating system and infrastructure hardening, patch management, and endpoint control implementation.
• Ensure that deployed platforms are securely integrated within hybrid and on‑premises architectures.

• Develop clear and actionable reports describing vulnerabilities, exploitation techniques, and resolution strategies.
• Present results to both technical and executive audiences, linking technical findings to operational and business implications.
• Deploy and manage awareness and training platforms to reinforce organizational security culture.
• Stay current on emerging threats, offensive tools, and cybersecurity technologies.
• Pilot new solutions and techniques that strengthen automation, visibility, and testing capabilities across IT and OT domains.

• Bachelor’s Degree
• Master’s Degree in Computer Engineering or Information Systems

• Solid understanding of cybersecurity technologies, architectures, and security operations platforms (e.g., SIEM, SOAR, vulnerability management, EDR/XDR).
• Hands‑on experience (about 5 years) in penetration testing, vulnerability assessment, and red‑team methodologies.
• Proficiency in system integration and scripting (e.g., Python, Power Shell, Bash, API orchestration).
• Knowledge of industrial/OT cybersecurity standards (IEC 62443) and best practices for critical infrastructure.
• Strong analytical, troubleshooting, and problem‑solving skills.
• Excellent communication skills in English and Italian, both written and spoken.
• Willingness to travel domestically and internationally for project activities.

• DOMAIN & BUSINESS ACUMEN - Applying a scientific approach and critical thinking in operations and solution development within area of expertise.
• FORESIGHT & INSIGHT - Context awareness adopting a systemic perspective and informed decision making.
• INTERPERSONAL INFLUENCE - Skills and strategies we use to interact…