Senior Cyber Security Engineer
Manching, Germany
vor 2 Tg.

Job Description

The jobholder will contribute to ensure the Security of Airbus products, supporting services and systems across Airbus Defence and Space.

The jobholder will be joining a team in charge of the analysis, definition and specification of the security aspects of Airbus DS products and their development, test, integration, production and support systems for Military Aircraft, Space Systems, CIS and UAS Business Lines, throughout their lifecycle.

The jobholder will be a key member supporting Military Aircraft and Unmanned Air System business lines in Manching and work collaboratively with colleagues in Spain, Germany France and the UK to achieve the required deliverables for Military Aircraft and UAS programmes.

The jobholder will have a defining role for the security activities of the MALE RPAS programme and lead the TEIS involvement in the programme and its derivatives.

The jobholder may also have a supporting role in the Product Security activities on future programmes. The jobholder may also be required to utilise their expertise and represent Airbus Defence and Space at Airbus transversal meetings and collaborative workshops.

The Job holder will report into the Product Security Team Lead for Military Aircraft.

Tasks :

Tasks and Responsibilities In support of the Business Line Product Security Lead the main tasks and responsibilities will be focused on :

  • Be the Lead for INFOSEC work package for the MALE RPAS.
  • Assist Programme management, Chief Engineer Office and supply chain in Technical oversight of the major sub-contractors with regards to INFOSEC activities.
  • Performance of security risk analysis (threat and vulnerability assessment) on products and supporting information systems.
  • Definition of security requirements for products and information systems.
  • Design of security architectures for products and information systems.
  • To specify and assist in the development of security measures to protect and defend Airbus products and systems by ensuring their confidentiality, integrity and availability.
  • Work proactively to ensure the compliance of the security requirements, thus implementation, with any applicable national and international security regulations.
  • Provision of innovative technology solutions in term of information security.
  • Support assessments and audits of the information security aspects of projects and product lines across Airbus Defence and Space to ensure compliance with Airbus business, customer and national security requirements.
  • Supporting programs and projects in the definition and production of product security documents and records in line with customer national security requirements and Airbus business requirements.
  • Develop, review and improve the Airbus product security policies, methods and tools
  • Assist projects and programmes in the development of secure configuration guidelines for products and systems.
  • Specify and support penetration testing and health checks on products and systems.
  • Support a culture of engagement across the engineering organization, which emphasizes shared responsibility in achieving secure designs.
  • Conduct formal compliance process (security evaluation, certification and accreditation processes) in accordance to the appropriate criteria and methodologies.
  • CC / CEM, ITSEC / ITSEM) and the national and NATO security regulations.

  • Perform information systems security evaluation for verification and validation processes.
  • Perform security technical audits.
  • Production of the security operating procedures to guarantee the security of information systems throughout their lifecycle.
  • This role will involve occasional travel for business and as such the jobholder must be able to travel according to the business needs.

    We are looking for candidates with the following skills and experience :

  • University degree in telecommunications, computer science or similar
  • Sound understanding of information security standards and their implementation (Mainly oriented towards ISO27001, but knowledge in other fields).
  • Derivation of system security requirements and architectural design for systems and applications.
  • Conduct a maturity assessment of products and systems.
  • Familiarity with the threat and risk analysis methods and tools used within NATO. (EBIOS / PILAR / MAGERIT).
  • Understanding of the security management concepts within customer organizations in the entire customer base of Airbus Defence and Space.
  • Understanding the EUROCAE Aviation Cyber Security processes, tools and documentation. (ED202, ED203)
  • Sound knowledge of information security and information systems.
  • Knowledge of NATO / National Security Regulations.
  • Sound knowledge of security assessment, certification and accreditation procedures.
  • Sound understanding of network and communication protocols.
  • Strong team spirit and excellent interpersonal and strong leadership qualities.
  • Strong oral and written communication skills and enthusiastic and proactive approach
  • Ability to learn and grow in an evolving environment and to work in a cross-sectional function.
  • Advanced level in English.
  • This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

    By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment.

    This information will only be used by Airbus.

    Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

    Zu Favoriten hinzufügen
    Aus Favoriten entfernen
    Wenn ich auf "Fortfahren" klicke, gebe ich neuvoo das Einverständnis, meine Informationen zu speichern und mir wie in den Nutzungsbedingungen und Datenschutzbestimmungen beschrieben, personalisierte E-Mail Alerts zu schicken.