collecting and managing cyber vulnerabilities closure evidence for demonstration that vulnerabilities have been correctly mitigated for each version of the GS infrastructure;
proposing tools for cyber vulnerabilities management;
compiling and producing the monthly cyber status report for Galileo GS infrastructure and participating in the project Cyber Board to present the status;
presenting cyber status and evidence to Galileo security accreditation authorities: Cyber Board, GSAP/SAB (Galileo Security Accreditation Panel / Security Accreditation Board);
organising and following up security audits and penetration testing activities on GS infrastructure;
assessing criticality of security audits and test findings;
proposing plan for short/medium/long-term correction of critical findings;
providing support for Galileo Security Monitoring (SECMON) design, development, AIV and accreditation follow-up activities, including interactions with relevant stakeholders (hosting entity, operations);
supporting definition of security monitoring events collection strategy and correlation rules for control and mitigation of Galileo infrastructure vulnerabilities and risk scenario;
participating in each GS delivery review and acceptance review assessing GS cyber status;
participating as permanent member in the classified engineering boards and relevant CCBs;
regular reporting to Head of Unit.
Knowledge of large operations and associated software systems, preferably space-based
Experience in development and maintenance of ground infrastructure and/or software systems
Architecture of ground stations dedicated to space mission support
Security engineering, especially security monitoring
Information technology security
Planning & Organisation
Applicants should have a Master’s or equivalent qualification in a relevant engineering discipline.
Applicants should have a very good background in cyber security, policy, vulnerability management and associated standards. A background in cyber security monitoring system design or operation is an asset.
Knowledge of modern computer systems, programming languages, engineering standards and tools such as DOORs is required. Familiarity with development of large space ground segment is desirable along with demonstrated experience in cyber security engineering for large projects.
Applicants must be eligible for security clearance by their national security administration.
They must be willing to travel.
For behavioural competencies expected from ESA staff in general, please refer to the ESA Competency Framework.
The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.
The Agency may require applicants to undergo selection tests.
The closing date for applications is 31 January 2018.
If you require support with your application due to a disability, please email email@example.com.