Website AIRBUS
Cassidian CyberSecurity SAS
We have more than 700 experts based at our main sites in France, Germany and UK, each with a Security Operating Centre. We also operate in the United States and the Middle East. This division is particularly active in the markets of surveillance, investigation and security audits for the systems most exposed to threats within the Airbus Group, but also for partners and customers in the transport, defence and aerospace sectors.
Description of the job
For Airbus CyberSecurity, within the Services Center, based in Toulouse, a position has become available for a Cybersecurity Consultant.
Inside Airbus Cybersecurity, the Services include both the Security Operations Center (SOC) and high-skilled security Professional services, such as:
• security incident response, APT check, security audit and associated consulting services.
The Consulting Entity is in charge of supporting our clients all along their Information Risk and Security Management improvement, and addressing the increasing cyber security threat challenge.
The Consulting portfolio covers four main areas:
• ¤ Security risk analysis and Information security strategy
• ¤ Regulation and compliance assistance (LPM, II901, GDPR, Accreditation/Homologation…)
• ¤ Security audits and assessments (organization, architecture), according with PASSI and main Best practices
• ¤ Awareness and training for cyber-crisis handling
In both IT and OT (ICS) critical environments.
The Consulting and Audit is also actively implied in main Security interest groups, such as Club-Ebios, Clusif, etc.
Therefore, as a consultant, you will be expected to participate in the Consulting and Audit offer internal and external communication.
As an Airbus Cybersecurity Consultant, you will accordingly provide functional, methodological and technical advisory to our customers, bring information security expertise and help in designing build and implement pragmatic security solutions.
Mission: Assist our customers in their cybersecurity transformation and improvement
Roles & responsabilities:
Your main tasks and responsibilities will include:
– Being responsible for the implementation of the security policy of the information system
– Developing and implementing the security standards of data-processing and to supervise technical conformity
– Managing the security deployment on all the information systems
– Organising a constant technological survey & an analysis of the risks and related threats
– Proposing and implementing changes of the security for the information system
– Advising and giving support for the technical training and creating an awareness training
– Supporting the remediation of computer security incidents & undertaking operations for the reinforcement of security
– Providing a specialist approach specialist within the field of operational security
EDUCATION AND PREREQUISITES
– At least a master’s degree in the field of IT, with additional knowledge of security fundamentals (general concepts, great domains).
– A minimum of 2/3 years of experience within the field of information security.
Skills and knowledge within the following areas are expected:
– Security governance, strategy and policies,
– Risk analysis methodologies (ISO 27005, Ebios…)
– Functional and technical security architecture concepts and basis,
– Program management assistance for business owners and project management,
– Functional and organizational security audits,
– Main standards and regulations, such as at least: ISO 2700X standards, French LPM, GDPR, RGS.
– Knowledge in at least one of the following expertise areas would be strongly appreciated, such as for example: ¤ BRP/DRP, GRC, IAM, DLP,,PKI, SOC, IDS/IPS, SAP Security…
Standard profile:
– At least a first successful experience in Information system security,
– Knowledge of the security market and its major actors,
– Writing, editorial and synthesis skills,
– Holder of security certifications (CISSP, CISA, SANS, GIAC, ISO 27001 Lead Auditor/Lead Implementer, ISO 27005 Risk Manager…) would be strongly – appreciated,
– Curious and willing to learn and share expertise within a team,
– Full professional proficiency in French and English.
Tasks & accountabilities
Your main tasks and responsibilities will include:
• Being responsible for the implementation of the security policy of the information system,
• Developing and implementing the security standards of data-processing and to supervise technical conformity,
• Managing the security deployment on all the information systems,
• Organising a constant technological survey & an analysis of the risks and related threats,
• Proposing and implementing changes of the security for the information system,
• Advising and giving support for the technical training and creating an awareness training,
• Supporting the remediation of computer security incidents & undertaking operations for the reinforcement of security,
• Providing a specialist approach specialist within the field of operational security.
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.
Required skills
• A minimum of 1 or 2 years of experience within the field of information security.
Skills and knowledge within the following areas are expected:
• Security governance, strategy and policies,
• Risk analysis methodologies (ISO 27005, Ebios…),
• Functional and technical security architecture concepts and basis,
• Program management assistance for business owners and project management,
• Functional and organizational security audits,
Main standards and regulations, such as at least: ISO 2700X standards, French LPM, GDPR, RGS.
Standard profile:
• At least a first successful experience in Information system security,
• Writing, editorial and synthesis skills,
• Curious and willing to learn and share expertise within a team,
• Full professional proficiency in French and English.