Job Description : SUMMARY
SUMMARY
Are you a A / C systems or Cyber Security Engineer ready to take on new and exciting challenges?... Do you dare to accept the challenge of working for the new revolution in Aeronautic Industry within a worldwide aerospace leader company?...
We are looking for an Aircraft Systems Security Engineer to join our Product Security team within engineering organization in Airbus Defence & Space in Spain (Getafe).
You will be a key person in ensuring that the Airbus Defence and Space Products and supporting services are protected against cybersecurity threats throughout their entire lifecycle (i.
e. from early R&T phases, definition, development, implementation, industrialization, operation, maintenance and support, through to end of life and disposal).
You will work in a new and challenging international environment where cyber security is becoming a revolution for Aeronautic Industry and a key competence and growing concern for the company as well as for the Airworthiness Authorities and end user operators, both civil and military.
You will co-work together with design offices and suppliers in designing the systems security architectures ensuring that the security requirements are implemented.
You will work in a Multi ATA ecosystem, developing or increasing your knowledge and vision of the aircraft systems. As a member of this team you will work potentially on all aircraft critical systems.
You will provide support to avionics civil and military systems such Communications, Surveillance, Navigation, Environmental Control Systems, Flight Control Systems, Weapons Systems among others.
TASKS & RESPONSIBILITIES
One of the main responsibilities of the Product Security team is guarantee that Airbus Military embedded or ground support systems are designed to ensure the appropriate level of protection from the intentional unauthorized electronics interactions and the appropriate means are implemented to mitigate their consequences on safety.
You will participate the product security requirements definition, design, implementation, integration, test, verification and compliance.
As an Aircraft Systems Security Engineer embedded in the system engineering process you will participate in the definition of product security architectures and design in accordance to their security requirements derived from the security risk assessments.
As an Aircraft Security Engineer the main responsibilities will be to :
Provide Product Security governance during the whole product's lifecycle.
Participate as stakeholder in the definition and concept development phase.
Participate the security risk assessments on the Products (including threat and vulnerability assessment).
Participate in the Definition of the product security requirements to be embedded on systems designs.
participate in the Design of secure systems architectures.
Propose security solutions (architectures and designs) to complain with requirements, allowing safe and easy operations.
Participate in definition, development and deployment of the Security Operating Procedures in order to ensure the security maintenance of the Products along their entire lifecycle.
Assess and evaluate the implemented product security requirements within system architectures solutions proposed by systems designers.
Perform functional security testing and penetration testing.
Provide support to the Airworthiness Certification activities in collaboration with Safety center of competence.
Participate in formal compliance processes (security evaluation, certification and accreditation processes) in accordance to the applicable criteria and methodologies (CC / CEM, ITSEC / ITSEM.
and national / international security regulations.
Provide support and expertise on product security to systems designers.
Contribute to R&T&D projects.
Monitor the cyber vulnerabilities and analyze how they may affect to the systems to identify possible mitigations means.
Participation to standardization of product security policies and processes.
The job holder will develop :
Product Security skills to support engineering community.
Global view and knowledge on all aircraft systems and their interfaces.
Soft skills to communicate on product security topics towards authorities, customers, management, programs, chief engineers, systems designers, aircraft architects, partners and suppliers.
REQUIREMENTS
This position is open to both cyber security engineers and non-cyber security profiles with Aircraft system design and development knowledges and experiences or Aircraft Safety / Airworthiness and Aircraft System Architect willing to grow on product security competences.
The successful candidate will be subjected to a NATO / National security clearance in order to undertake related work in accordance with the business needs.
This role will involve occasional travel for business and as such the successful candidate must be able to travel according to the business needs.
Soft Skills
Excellent interpersonal and Leadership skills.
Highly innovative mindset and permanently challenging the status quo.
Passionate about Aircrafts, Security and Technology.
In depth interest to Engineering matters.
Willingness to do always your best, grow and take new responsibilities.
Ability to learn and grow in an evolving environment.
Excellent written and oral communication skills.
Ability to work in an environment that requires a high level of detail and confidentiality.
Proactive, self-motivated with the ability to work independently and as a team member in a challenging environment.
Able to work autonomously as well as in international teams.
Strong customer focus and result orientation.
Strong team player.
Technical Skills
Bachelors or Master in Telecommunication Engineer or Aeronautical Engineer or Computer Science.
Masters degree in Cybersecurity
At least an initial participation in Practices (as working student) in Information Security and / or Aircraft Systems design and development and / or Aircraft Safety.
Able to write clear and consumable security documentation.
Advanced level of English.
Good command of French or German is an advantage but not essential.
Nice to have (not mandatory) :
Knowledge in Aircraft Security.
Knowledge of EUROCAE regulation focused on Airworthiness Security Process (ED-202A, ED-203A and ED-204).
Knowledge of Security Risk Assessment methodologies (MAGERIT, NYST,...)
Knowledge of hardening
Knowledge of NATO / National security regulations.
Knowledge of Security Evaluation, Certification and Accreditation Processes.
IT Security Professional certification is highly desired (CISSP, SANS / GIAC or equivalent) but not essential
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth.
Company :
Airbus Defence and Space SAU
Employment Type : Permanent
Permanent
Experience Level : Professional
Professional
Job Family : Cyber Security
Cyber Security
#J-18808-Ljbffr