je.st
news
Tag: senior security
Senior SIEM Architect Security Information and Event Management mfd
2021-08-20 14:12:40| Space-careers.com Jobs RSS
IT systems are used everywhere also in Space be it within the ground segment or within the space segment of our various clients. Such segments need to be protected and cybersecurity is an essential part of such protection. Holistic Security Operations Centres SOCs become more and more important for our clients to ensure such protection. While such SOCs need to consider standard IT infrastructure, they also need to be extended with space specific protection mechanisms. If you are interested to help designing and building the Security Information and Event Management SIEM solutions within those SOCs and if you bring a track record in building SIEM solutions, then you should continue reading. We are looking for architects, who would like to design, build, implement and deploy SIEM solutions with the latest technologies to protect our clients IT and Space systems from cybersecurity threats. Join our Space teams in either Darmstadt or Bochum. With a team of highly motivated and specialized experts within an international environment, we help to secure our Space clients systems during the digital transformation. Aufgaben As a Senior SIEM Architect, you will work in our crossfunctional Space and Security team to provide your experience to leading international and national Space organizations and corporations. The exciting and diverse tasks are as follows Architect, design and manage deployments of Security Information Event Management SIEM and other security solutions. Requirements engineering, User Case development in close cooperation with our clients Analyse, implement, test and optimize use cases for our clients SIEM solutions Analyse the network and IT infrastructure of our clients and plan bandwidths and capacities Act as technical SIEM expert within our for project teams and as technical point of contact for our clients Advice on the selection, implementation and operation of SIEM solutions Integration of log sources and all corresponding activities like normalisation and baselining Integration of components, processes and interfaces into our clients SIEM solutions Qualifikation Required qualifications to be successful in this role You have a structured and analytical approach Strong experience in the SIEM environment Track record of leading the delivery of SIEM technical solutions Detailed knowledge of the typical technologies that interface with SIEM solutions You are fluent in English Experience with at least one SIEM solution preferably Splunk or QRadar, ArcSight, LogPoint, etc. Experience in working with standards like ISO27000x or NIST You have a degree in IT security, computer science or similar Desirable qualifications Experience in IT System Engineering and relevant standards Experience with CICD Relevant certification such as Certified Information Systems Security Professional CISSP, Certified Information Security Manager CISM, Certified Ethical Hacker CEH or similar Experience in virtualisation andor cloud infrastructure Experience with asset management and service management Experience with penetration testing, vulnerability assessment and IT forensics Fluent in German Experience in the System Engineering Standards provided by the European Cooperation for Space Standardization ECSS Does this job sound interesting to you? Then get in touch with us, even if you cannot say yes to all the above points. We would like to get to know you.
Tags: information
management
security
event
Senior Cyber Security Engineer fmd
2021-03-18 09:11:57| Space-careers.com Jobs RSS
DLR GfR mbH is a company providing reliable, safe and secure aerospace services. We operate and manage the constellation of Galileo satellites in the Galileo Control Center Oberpfaffenhofen on behalf of the European Commission. Our company headquarters is located in an area widely known as a holiday destination the fivelakes region in Upper Bavaria near Munich. At the space industry location in Oberpfaffenhofen, our around 230 employees work every day in international and interdisciplinary teams on the navigation for the future. Become a part of us! Inside of our Security Department we offer the following career option Senior Cyber Security Engineer fmd YOUR MISSION The Security Department within DLR GfR mbH is responsible for the security of Galileo IT applications. The Senior Cyber Security Engineer is responsible for planning and coordinating the relevant work in the group with regard to analytical activities, the regular analysis of security risks according to the Galileo client and the verification of the implementation of adequate security measures, as well as the execution of security audits. In particular, the future jobholder will be responsible for the following activities Verification and analysis of information security procedures and applications running regularly in daytoday business access protection, encryption, configuration control, vulnerability analysis, malware detection, source code review, patching, with prior analysis of project requirements in the cyber security area, development of an implementation concept for the areas concerned, e.g. test environments, L2L3 Maintenance Detection and classification of KAT from most severe I to level II and III system anomalies in the local security environment, development of a solution concept, classification Establishment and implementation of new projects and technical solutions in the cyber security area Identification of potential threats to information and communication systems, review of implementation and development of a signatureready and efficient operational solution, followed by escalation in case of breaches Processing the security risk register by continuously identifying new cyber security risks and threats Regular execution of internal audits in the Galileo Security Environment as well as support of external audits by European and national authorities, this includes in particular the preparation and followup of content Preparation of training documents and regular training of project staff in connection with security Regular reporting and fast escalation to the technical superior. Regular review and documentation of the system against the security requirements defined by the customer, in case of deviations preparation of appropriate correction concepts and implementation. Definition of cyber security processes and workflows YOUR QUALIFICATION Completed university studies in the field of computer scienceinformation technology with a focus on networksIT security, comparable degree, or otherwise demonstrable equivalent professional qualification in the IT security environment Knowledge in the administration of client and server systems Windows and Linux Scripting knowledge for the analysis and automatic storage of log files Certifications in IT security, e.g. T.I.S.P., CISSP etc. are an advantage, but not a prerequisite Knowledge of network technology, VPN technology and firewalls Knowledge in the area of monitoring and log systems Experience in the creation of concepts and system planning Several years of professional experience OUR OFFER Collaboration in the European lighthouse project Galileo trusting and appreciative cooperation in an international environment international team spirit 30 days annual leave compatibility of career and family life e.g. through flexible working time models in the context of company requirements Extra benefits such as awo lifebalance a varied personnel development program individual career options for example through secondments to partner agencies enterprises abroad employerfinanced retirement plan attractive location with a high recreational value in the fivelakes region near Munich and much much more ...
Tags: security
senior
engineer
cyber
Senior Analyst, Information Security Management
2020-09-03 12:11:13| Space-careers.com Jobs RSS
ROLE DESCRIPTION SUMMARY Our Senior Analyst, Information Security Management is part of the Cyber Security team, helping defend the largest fleet of commercial satellites in the world. In this role you will work on the latest security topics amongst leading experts in the field. You will work with people across the organisation and guide them through their Cyber Security journey. PRIMARY RESPONSIBILITIES KEY RESULTS AREAS Provide Information Security related project support and internal consultancy within the organization as well as for customer related projects Support the definition and implementation of SESs information security strategy and framework by assessing information security risks and specifying and implementing information security controls to mitigate key risks Support the development and continuous improvement of SESs information security management system in accordance with industry standards and best practices, most notably the ISO 27001 framework and relevant NIST guidance Work with relevant stakeholders across the organisation to support development of information security policies, standards, processes and procedures Deliver assigned information security projects Support development and implementation of information security concepts and information security controls, including coordination of various business stakeholders and engineering groups. Perform information security audits and compliance reviews Suggest constructive recommendations regarding information security in all areas related to information systems, networks and applications COMPETENCIES Knowledge in selected areas of Information Security combined with willingness and strong drive to learn in other Information Security domains Ability to understand business requirements and work towards solutions, both autonomous and in interdisciplinary teams Possess the ability to explain security rationales and controls to nontechnical audiences Sound analytical skills as well as the ability to provide practical conclusions Good project management skills Understand all stakeholders in the Information Security process Autonomous, innovative mind and good problemsolving skills Excellent team player Ability to establish wellwritten, structured documents e.g. concepts, policies, reports Ability to effectively interact with organizational stakeholders and customers Excellent written and verbal communication skills QUALIFICATIONS EXPERIENCE Degree in Computer Science, Business Information Systems or related studies Masters degree in Information Security or related studies is a plus 13 years industry related experience Any relevant certifications e.g., ISO 27001 Lead Implementer, ISO 27005 Certified Risk Manager, CISM, CISA, GLSC, G2700, CISSPISSMP and knowledge of the satellite industry are a plus Knowledge of Information Security Management Systems in accordance with ISO 27001 and industry standardsbest practices like NIST 80053 Information Security Risk Management frameworks and methodologies Network security, system security, application security and security design Knowledge of Information Security threats, vulnerabilities, security technologies and controls Knowledge of Data Protection and Data Privacy are a plus OTHER KEY REQUIREMENTS COMMENTS Fluency in English any other language being an asset EU Nationality is required NATOEU SECRET clearances are considered an asset. Candidate must be willing to undergo a security clearance procedure as this position might require holding security clearance Limited travelling as required SES is an Equal Opportunity and Affirmative Action Employer. Apply HERE
Tags: information
management
security
senior
Senior Cyber Security Engineer mfd
2020-07-23 11:12:04| Space-careers.com Jobs RSS
IT systems are everywhere also in Space systems, be it on the ground or in Space. Such systems need to be protected and cyber security is an essential part of such protection. If cyber security is more than an annoying accessory for you and you always wanted to work in the Space domain, then youve come to the right place. You want to develop and implement solutions with the latest technologies to protect our Space clients from cyber security threats? Do you want to help them with security aspects as part of the engineering of their systems? Do you want to put their IT systems through its paces and find weak spots? Do you want to help close these vulnerabilities? Join our Space teams in Darmstadt or Bochum. With a team of highly motivated and specialized experts, we keep legacy systems under control, update existing IT infrastructures and reliably build up highly complex IT architectures. We help to accompany and secure our Space clients IT systems during the digital transformation. Does that sound interesting to you? CGI is a locally rooted and a globally operating company that ranks no. 6 among the fastest growing consulting companies in the field of cyber security. We work in local teams for our clients and have access to a network of global expertise. Extensive exchange of experience, knowledge management and practical, interesting client projects in the Space domain form the basis of our work. Become a knowledge bearer and practice champion in two of the most exciting fields of activity of our time Space and Cyber Security. That appeals to you? Perfect! Then become part of the cyber security team in Darmstadt or Bochum. Apply now and share with us where you want to go in your career and what you can bring to the job. TASKS As a cyber security engineer, you will work in our Space team and bring your experience to leading international and national Space organizations and corporations. The exciting and diverse tasks include one or more of the following, depending on where you feel at home and in which area you want to develop yourself Ensure that security is considered during the system engineering of our clients systems Development of specifications for the area of secure systems engineering Development of concepts for the prevention and defense against threats and attacks Development of use cases for the detection of threats, vulnerabilities and hacker attacks Planning and carrying out penetration tests regarding the application landscape and IT infrastructure of our Space clients Analysis and assessment of cyber threats including identification and recommendation of security measures and generation of a comprehensive cyber security situation picture Advice on the selection, implementation and operation of IT security solutions Supporting our clients on site when suspected IT security incidents, such as hacking or compromising their IT networks with malware Support our clients in regards of Governance, risk and compliance and the design, implementation and maintenance of Information Security Management Systems ISMS QUALIFICATION You have a structured and analytical approach You have a degree in IT security, computer science, mathematics, physics or similar Your English language skills are good And as senior you also bring Relevant certification such as Certified Information Systems Security Professional CISSP, Certified Information Security Manager CISM, Offensive Security Certified Professional OSCP, Certified Ethical Hacker CEH, EC Council Certified Security Analyst ECSA, Certified Cyber Forensics Professional CCFP or similar Proven professional and project experience in IT security An excellent understanding and practical use of security principles Desirable qualifications Experience working in Network or Security operations Knowledge of standards related to implementing a risk management framework including COBIT, ITIL, ISO 27001 i.e. 2700x in general and NIST Experience with satellite operations or ground segment development Experience in data security, identity and access management Experience in cloud infrastructure and security solutions What can you expect from CGI? Build your career with us. It is an extraordinary time to be in business. As digital transformation continues to accelerate, CGI is at the center of this changesupporting our clients digital journeys and offering our professionals exciting career opportunities. At CGI, our success comes from the talent and commitment of our professionals. As one team, we share the challenges and rewards that come from growing our company, which reinforces our culture of ownership. All of our professionals benefit from the value we collectively create. Be part of building one of the largest independent technology and business services firms in the world. Learn more about CGI at www.cgi.com. No unsolicited agency referrals please. CGI is an equal opportunity employer. Please apply now under httpscgi.njoyn.comcgixwebXweb.asp?tbtokenZVhcRR0XCB5zYHAERFNTCFpOA21EcFAodEhYUyt6E20rLUJtXzVtBxYHcQkbVhRSSXEqXQ3D3DchkZVpaShw3Dclid21001pagejobdetailsjobidJ07201540BRIDEX757367SBDID1LANG4
Tags: security
senior
engineer
cyber
Senior Security Engineer
2020-06-25 10:13:36| Space-careers.com Jobs RSS
Position Reference 070 RHEA Group is currently recruiting a Senior Security Engineer to support our cybersecurity team based in Frascati, Italy. You will have the opportunity to work in a challenging environment with stateoftheart technologies within the cybersecurity and space domains. As a Senior Security Engineer, you will be involved in the design, development, improvement and management of our advanced cybersecurity services, as well as in the delivery of complex cybersecurity solutions. If you have a passion or interest for cyber security and would like to join a team of seasoned experts with diverse backgrounds, then you are in the right place! At RHEA Group will have the opportunity to work and learn in an exciting environment and participate in unique cybersecurity projects for the European Space Agency, NATO and the European Commission. Tasks and Activities The scope of work will include Provisioning of best practice advice and guidance in the areas of cyber defence and security operations supporting incident detection, analysis and response including operations policy and procedure development, operational scenario definition, operations centre technology selection and implementation, network and host based sensor technology selection and implementation Provisioning of cyber defence and security operations advice and guidance to technical development teams in the areas of cyber defence situation awareness concepts and requirements incident detection, analysis and response management visualization requirements collaborative information sharing and relevance of security metrics Perform security risk assessment leveraging different methodologies including for example ISO27005, MEHARI, EBIOS, HTRA and tools Perform security requirements elicitation from the risk assessment results Prepare security risk treatment plan Design of secure architecture encompassing firewalls, IDSIPS, VPN, AAA, encryption etc. Design security solutions following a securitybydesign approach Design and support the preparation of Cyber security training and awareness, which may include training delivery as well Plan and coordinate security testing activities such as penetration testing and vulnerability assessment. Skills and Experience The following skills and experience are mandatory You have a Bachelors or masters in computer science, engineering, IT or a related field You have at least 5 years proven work experience as a senior security engineer. You have experience in delivery of operations services or specification of solutions for cyber defence or security operations including some of the following o Security Information and Event Management SIEM systems and Security Orchestration Automation and Response o Information Security policies, standards, and procedures o Information Security concepts involving confidentiality, integrity and availability o Information Security concepts involving threat, vulnerability and risk analysis o Information Security concepts involving incident detection, analysis, decision support and response o Trusted Product Evaluation standards such as Common Criteria or FIPS 140 o ITOT system security. You have experience in the design of security architectures encompassing SIEM, intrusion detection systems, firewalls, antivirus software, log management, authentication systems, content filtering, etc. You have a professional qualification or certification such as CISSP. You possess strong interpersonal skills, team working, good analytic and problem solving capabilities. You have strong communication and documentation abilities. You are detailoriented. You have an analytical mind and problemsolving aptitude. You have effective time management and organizational skills. Some of the following skills would be highly desirable, in order of priority Computer network design LAN and WAN architectures, routing protocols, TCPIP Experience in cyber security for space, defense, critical infrastructure, finance or government systems Experience with best practices and standards like ISO27000, NIST Cybersecurity Framework, ISA62443, NIS directive, Common Criteria Certification and Accreditation concepts and processes Cloud Computing and virtual environment security How to Apply Looking to take your career to the next level? Interested applicants should submit their CV and Cover Letter to RHEAs Recruitment team at careersrheagroup.com no later than 15072020.
Tags: security
senior
engineer
senior engineer