Cyber OT/Marine Engineer

RINA is currently recruiting for a Cyber OT/Marine Engineer to join its office in GENOA or MILAN within the Cyber Security and Management Consulting Division.

Mission

We are currently looking for a Cyber Security engineer to expand our technical team.

The persons will be in charge of technical activities such as:

• Identify security risks within organizations and complex systems/architectures, in particular onboard vessels;
• Perform vulnerability assessments and penetration tests in IT/OT environment;
• Design security measures and provide recommendations or suggestions to improve security postures;
• Implement technical security measures also by means of hardening of target systems/devices based on identified security baselines or requirements;
• Provide support to Customers in cybersecurity related activities;
• Draft technical reports;
• It is possible some SW Code/Script development and/or network devices configuration also by means of automated configuration tools;
• Write technical documentation, regarding both descriptions and test procedures.

Key Accountabilities

- Knowledge of security aspects of principal Operating Systems
- Previous experience in performing VA/PT activities (also for personal interest/passion, e.g. CTF challenges);
- Adequate knowledge of programming languages (in particular Java, C/C++/C#, VB.Net, Python), their interfaces with principal DBMS, and their development environments;
- Strong problem-solving ability;
- Excellent verbal and written communication skills - Italian and English as a minimum;
- Flexibility and ability to multi-task in a fast-paced atmosphere;
- Availability to travel within the Country and abroad;
- Adequate knowledge of networking models;
- Adequate knowledge of cryptographic algorithms (e.g. SHA, AES, CBC, ECB).

Education

Bachelor's Degree in Computer Engineering or Cyber Security
Master's Degree

Qualifications

Desired Requirements:

- Security Certifications: GIAC/GICSP or ISA62443 related certifications, CEH, OSCP, eJPT, PJPT, ISACA CISM/CISA/CRISC, ISC2 CISSP.
- Knowledge of security tools/platforms such as: automated configuration tools (e.g. Ansible or Puppet), vulnerability assessment tools, penetration tests techniques and involved applications, cloud security, cyber threat intelligence, Mobile Threat Detection, Intrusion Prevention/Detection Systems (IPS/IDS), Endpoint Protection Platforms (EPP, but also EDR, MDR and XDR services), technologies related to code security analysis, Web Application Firewall (WAF), Security Orchestration Automation and Response (SOAR), Security Information and Event Management (SIEM) and Governance Risk Compliance (GRC).

Previous experiences in Red/Blue/Purple Teams will be considered as a plus.

Competencies

• CLIENT INTIMACY - Embrace internal and external client needs, expectations, and requirements to ensure maximum satisfaction
• EARN TRUST - Take everyone's opinion into account and remain open to diversity
• PROMOTE SUSTAINABLE DEVELOPMENT - Promote commitment by keeping promises as a Role Model
• MANAGE EMOTIONS - Recognise one's and other's emotions and express and regulate one's reactions
• PIONEER CHANGE - Actively embrace change and benefit from the new circumstances
• BUILD NETWORK - Forge trust relationships, across departments, and outside the organization
• MAKE EFFECTIVE DECISIONS - Structure activities according to priorities, actions, resources and constraint
• ADDRESS THE WAY - Have a big picture of different situations and reinterpret it in a perspective way
• THINK FORWARD - Capitalise on experiences and translate them into action plans for the future

With over 5,600 employees and 200 offices in 70 countries worldwide, RINA is a multinational player which provides certification, marine classification, product testing, site supervision and vendor inspection, training and engineering consultancy services across a wide range of sectors. Our business model covers the full process of project development, from concept to completion. The aim is to guarantee a project's technical, environmental and safety - and sometimes also economic and financial - sustainability.

At RINA, we endeavor to create a work environment where every single person is valued and encouraged to develop new ideas. We provide equal employment opportunities and are committed to creating a workplace where everyone feels respected and safe from discrimination or harassment of any kind. We are also compliant to the Italian Law n. 68/99.