Platform Cybersecurity & Requirements Engineer

At Vertiv, we’re on a mission to empower the people that will power the future. From a simple swipe to life‑changing medicines, from push notifications to generative AI. We design, manufacture, and service the products and solutions that keep the world connected. With $6.9 billion in sales, a strong customer base and global reach spanning nearly 70 countries, we are uniquely positioned to deliver greater value to our customers and create new opportunities for our people.

We are seeking a motivated and technically skilled Platform Cybersecurity & Requirements Engineer to join our R&D team in Tognana, Italy!

We are looking for an experienced Platform Engineer with deep expertise in industrial embedded systems, cybersecurity, and regulatory compliance to strengthen our R&D team. This role is essential to ensure that our platform‑level architecture meets evolving cybersecurity requirements, in particular the EU Cyber Resilience Act (CRA).

Your mission will be to bridge internal security requirements with vendor‑provided capabilities, ensuring full alignment with corporate compliance and product development needs.

This role requires solid system‑level thinking, cybersecurity expertise, and the ability to drive requirements engineering across organizational and supplier boundaries.

• Define and manage cybersecurity requirements for our embedded platform, aligning internal needs with vendor‑provided documentation and capabilities
• Serve as technical interface with external hardware suppliers, ensuring CRA‑related obligations are clearly defined, documented, and tracked
• Conduct gaps analysis between corporate cybersecurity expectations and supplier deliverables
• Ensure compliance with the Cyber Resilience Act (CRA) by:
  • Translating legal and regulatory obligations into actionable engineering requirements
  • Tracking the lifecycle of security measures (from risk identification to mitigation and verification)
  • Supporting technical documentation and regulatory reporting (e.g., vulnerability handling, secure‑by‑design declarations, SBOMs)
• Contribute to threat modeling, risk assessment, and cybersecurity risk classification
• Collaborate with firmware/software teams, legal/compliance, QA, and suppliers on secure boot, firmware updates, vulnerability response, secure communications
• Define and maintain internal checklists and conformance matrices for platform‑level cybersecurity governance

• Degree in a STEM field, such as Computer Science, Electronic Engineering, Physics, or Automation
• Proven experience with industrial platforms or control systems, ideally based on PLCs, embedded Linux controllers, or gateway devices
• Deep knowledge of cybersecurity for embedded and industrial systems, including:
  • Secure boot, signed firmware updates, secure communications
  • Threat modeling and risk‑based mitigation strategies
  • Understanding of supply chain security and SBOM management (CycloneDX)
• Solid understanding of EU cybersecurity regulations, including:
  • Cyber Resilience Act (CRA)
  • IEC 62443, ISO 27001, NIS2, and related standards
• Familiarity with requirements engineering, traceability tools, and structured documentation
• Ability to interface with vendors and assess technical security documentation
• Fluent in English, both spoken and written
• Strong sense of ownership, attention to detail, and commitment to security‑by‑design principles

If YOU are the person we are looking for, feel free to apply and let's start drafting your future career in a healthy and growing environment!

The successful candidate will embrace Vertiv’s Core Principals & Behaviors to help execute our Strategic Priorities.

Safety. Integrity. Respect. Teamwork. Diversity & Inclusion.

• Customer Focus
• Operational Excellence
• High‑Performance Culture
• Innovation
• Financial Strength

• Own It
• Act With Urgency
• Foster a Customer‑First Mindset
• Think Big and Execute
• Lead by Example
• Drive Continuous Improvement
• Learn and Seek Out Development

#LI-AK1