At Vertiv, we’re on a mission to empower the people that will power the future. From a simple swipe to life-changing medicines, from push notifications to generative AI. We design, manufacture, and service the products and solutions that keep the world connected. With $ billion in sales, a strong customer base and global reach spanning nearly 70 countries, we are uniquely positioned to deliver greater value to our customers and create new opportunities for our people.
We are seeking a motivated and technically skilled Platform Cybersecurity & Requirements Engineer to join our R&D team in Tognana, Italy!
We are looking for a experienced Platform Engineer with deep expertise in industrial embedded systems, cybersecurity, and regulatory compliance to strengthen our R&D team. This role is essential to ensure that our platform‑level architecture meets evolving cybersecurity requirements, in particular the EU Cyber Resilience Act (CRA).
Your mission will be to bridge internal security requirements with vendor‑provided capabilities, ensuring full alignment with corporate compliance and product development needs.
This role requires solid system‑level thinking, cybersecurity expertise, and the ability to drive requirements engineering across organizational and supplier boundaries.
What kind of work will you be doing?

Define and manage cybersecurity requirements for our embedded platform, aligning internal needs with vendor‑provided documentation and capabilities
Serve as technical interface with external hardware suppliers, ensuring CRA‑related obligations are clearly defined, documented, and tracked
Conduct gaps analysis between corporate cybersecurity expectations and supplier deliverables

Ensure compliance with the Cyber Resilience Act (CRA) by:

Translating legal and regulatory obligations into actionable engineering requirements
Tracking the lifecycle of security measures (from risk identification to mitigation and verification)
Supporting technical documentation and regulatory reporting, vulnerability handling, secure‑by‑design declarations, SBOMs
Contribute to threat modeling, risk assessment, and cybersecurity risk classification
Collaborate with firmware / software teams, legal / compliance, QA, and suppliers on secure boot, firmware updates, vulnerability response, secure communications
Define and maintain internal checklists and conformance matrices for platform‑level cybersecurity governance

What will make you successful?

Degree in a STEM field, such as Computer Science, Electronic Engineering, Physics, or Automation
Proven experience with industrial platforms or control systems, ideally based on PLCs, embedded Linux controllers, or gateway devices
Deep knowledge of cybersecurity for embedded and industrial systems, including:

Secure boot, signed firmware updates, secure communications
Threat modeling and risk‑based mitigation strategies
Understanding of supply chain security and SBOM management (CycloneDX)


Solid understanding of EU cybersecurity regulations, including:

Cyber Resilience Act (CRA)
IEC 62443, ISO 27001, NIS2, and related standards


Familiarity with requirements engineering, traceability tools, and structured documentation
Ability to interface with vendors and assess technical security documentation
Fluent in English, both spoken and written
Strong sense of ownership, attention to detail, and commitment to security‑by‑design principles

If YOU are the person we are looking for, feel free to apply and let's start drafting your future career in a healthy and growing environment!
The successful candidate will embrace Vertiv’s Core Principals & Behaviors to help execute our Strategic Priorities.
OUR CORE PRINCIPALS
Safety. Integrity. Respect. Teamwork. Diversity & Inclusion.
OUR STRATEGIC PRIORITIES

Customer Focus
Operational Excellence
High‑Performance Culture
Innovation
Financial Strength

OUR BEHAVIORS

Own It
Act With Urgency
Foster a Customer‑First Mindset
Think Big and Execute
Lead by Example
Drive Continuous Improvement
Learn and Seek Out Development

#LI-AK1
#J-18808-Ljbffr