This page lists the internship projects currently available in the Center for Cybersecurity of Fondazione Bruno Kessler (FBK). Please note that these are curricular internship projects (which does not include financial compensation) intended specifically for bachelor’s and master’s university students, and not employment contracts. Please refer to jobs.fbk.eu/ for job offers and open positions.
Procedure
- Application: submit your application for the internship project you are interested in using the designated online form and providing the required information. Make sure to apply before the specified deadline. You are advised not to apply to more than two projects at the same time.
- Selection: project supervisors will review the applications and choose the most suitable candidate. If needed, they may request an oral interview during the selection process. Each project is evaluated independently.
- Results: once the selection process is complete, all applicants (both selected and not selected) will be notified of the outcome for the specific project.
For general inquiries, you can email internships-cs@fbk.eu. If you have specific questions about a project, please reach out to the project supervisor directly.
Please note that applications sent via email will not be considered.
Projects are listed starting with those that have the earliest submission deadlines.
Automated Cross-Regulation Compliance for Digital Regulations via Requirements Engineering SaFEWaRe ST
ID: p-2026-safeware-1
Published on: Wednesday, 22 April 2026
Deadline for Applications: Sunday, 31 May 2026 at 23:59
Description:
Organizations operating in the digital space must simultaneously comply with multiple legal frameworks: data protection laws, AI-specific legislation, platform regulations, cybersecurity directives, and more. These regulations are developed independently, use inconsistent and not fully comparable terminology, and overlap in scope, creating a compliance landscape that is fragmented, contradictory, and costly to navigate. In practice, compliance is largely a manual, expert-driven process that does not scale.
This project investigates how Requirements Engineering (RE) methods can be leveraged to automate cross-regulation compliance in the digital domain. The central research question is: how can legal obligations drawn from heterogeneous regulatory sources be extracted, formally represented, aligned, and reasoned over in a unified framework to be comprehensible for different stakeholders?
Applicants will contribute to one or more of the following activities: 1) extraction and formalization of requirements from selected EU digital regulations into a unified goal model representation; 2) design of cross-regulation alignment and conflict detection mechanisms; 3) development and evaluation of a context-aware compliance navigation framework with users from heterogeneous backgrounds.
This project offers the opportunity to engage with research at the intersection of legal analysis, requirements engineering, and knowledge representation, contributing to tools and methods with direct applicability across industry and policy contexts.
Type: Internship + Thesis
Levels: BSc, MSc
Supervisors: Livia Marini (lmarini@fbk.eu), Pietro De Matteis (pdematteis@fbk.eu), Luca Piras (l.piras@fbk.eu), Magdalena Maria Solitro (msolitro@fbk.eu)
Prerequisites:
- Background in law, political science, or in a related field with exposure to EU regulatory frameworks.
- Ability to read, interpret, and critically analyze legal texts in English and Italian.
- Familiarity with EU digital regulation (e.g. GDPR, AI Act, DSA, or similar) is strongly advantageous.
- Good understanding of knowledge representation fundamentals and methodologies (semantic networks, ontologies, logic-based systems, graph databases) is considered a plus.
- Curiosity for interdisciplinary work at the boundary between law and computer science is essential.
Objectives: The student is expected to contribute to one or more of the following activities:
- Familiarization with the state of the art in regulatory requirements engineering and cross-regulation compliance.
- Extraction and formalization of requirements from one or more EU digital regulations.
- Design and evaluation of mechanisms for cross-regulation alignment, conflict detection, and context-aware compliance navigation.
Topics: Requirements Engineering, EU Digital Regulation, Legal Informatics, Cross-Regulation Compliance, Goal Modeling