Expert in secure development (Varese, Italy)

IT Security Assessor Location : Remote. Must be able to reach Varese HQ within 2 hours if required) Project duration : 440 days (initial contract : 220 days) Education : Master’s degree English level : Fluent Expected Start Date : 15 / 09 / 2025 Equipment : Laptop provided by the European Commission About the Project : You will join the Joint Research Centre (JRC) of the European Commission, working closely with the Local Informatics Security Officer (LISO) to ensure that all IT infrastructure and information systems comply with the Commission’s Information Systems Security standards (Commission Decision 2017 / 46). Your mission will be to perform security assessments and penetration tests to identify vulnerabilities, verify the correct implementation of security controls, and contribute to improving the security posture of JRC systems. Key Responsibilities Conduct security assessments of information systems and infrastructures, including black, grey, and white box testing. Perform security audits of system architectures, ensuring compliance with EC security policies and industry best practices. Analyse and report on identified vulnerabilities and recommend mitigation measures. Maintain and update the security assessment dashboard and produce regular activity reports. Draft clear, structured technical documentation and presentations for both technical and non-technical stakeholders. Participate in technical meetings and collaborate with multidisciplinary, multicultural teams. Required Skills & Experience Proven expertise in security assessments & penetration testing (white / grey / black box). Strong knowledge of Burp Suite and vulnerability monitoring tools. Solid understanding of secure system architecture design . Experience with DevSecOps and CI / CD pipelines (strong advantage). Excellent analytical, problem-solving, and reporting skills. Ability to deliver presentations and adapt communication to diverse audiences. High degree of discretion and integrity when handling confidential data. Preferred Certifications (valued but not mandatory) Offensive Security Certified Professional ( OSCP ) Offensive Security Certified Expert ( OSCE ) Certified Red Team Operator ( CRTO ) Why Join? Work on high-impact security projects within the European Commission. Collaborate with a multicultural, international team . Contribute directly to protecting sensitive EU information systems . Gain experience in a mission-critical cybersecurity environment . This is your opportunity to bring your penetration testing expertise to one of the most secure and challenging IT environments in Europe. J-18808-Ljbffr

Location: Varese, Lombardia, IT

Posted Date: 8/20/2025