Recherche par mots clefs: La region souhaitée: Secteur d'Activité:

Détail de l'offre: [ o_0 ] Cyber Security Architect m/f [ o_0 ]

  • Société: AIRBUS
  • Secteur d'Activité: Informatique, Electronique et Télécom
  • Région du poste: France: Ile de France
  • Type de poste: [ o_0 ] Cyber Security Architect m/f [ o_0 ]
  • Contrat: Sans Précision
  • Formation:
  • Lieu de travail: Élancourt
  • Date d'embauche: NC
  • Salaire: N/A
  • Référence: NC

Description du Poste:

[ o_0 ] Cyber Security Architect m/f [ o_0 ] Airbus CyberSecurity Elancourt As the European specialist in cyber security, the mission of Airbus’ CyberSecurity business is to protect governments, companies and critical infrastructures from cyber threats. Its trusted, high performance security products and services are able to detect, analyse and counter the most advanced cyber attacks. Airbus is a global leader in aeronautics, space and related services. In 2016, it generated revenues of € 67 billion and employed a workforce of around 134,000. Airbus offers the most comprehensive range of passenger airliners from 100 to more than 600 seats. Airbus is also a European leader providing tanker, combat, transport and mission aircraft, as well as Europe’s number one space enterprise and the world’s second largest space business. In helicopters, Airbus provides the most efficient civil and military rotorcraft solutions worldwide.
Our people work with passion and determination to make the world a more connected, safer and smarter place. Taking pride in our work, we draw on each other's expertise and experience to achieve excellence. Our diversity and teamwork culture propel us to accomplish the extraordinary - on the ground, in the sky and in space. Description du poste / stage For Airbus Defence & Space within the Cyber Security Solutions Centre based in Elancourt, we are looking for a Cyber Security Architect. In this role you will design cyber security for embedded systems taking into account risks, regulation and applicable best practices.You will have the opportunity to lead studies (with or without prototype). Lead answers to request for proposal (RFP) related to enforcing cybersecurity in embedded systems. You will be able to provide support to the audit team to perform architecture audit, optionally based on the (French) PASSI schema.Please note: This position will require a French Security Clearance or will require being eligible for clearance by the recognized authorities. Tâches et missions principales, responsabilités Writing specification and design documentation (System/Subsystem Specification (SSS), System/Subsystem Design Description (SSDD), Statement of Work (SoW), Design Justification Report, etc.)Writing strategies for security testsWriting documentation to support system certification: System-specific Security Requirement (SSRS), Security plan, System Interconnection Security Requirement Statement (SISRS), System-specific Electronic Information Security Requirement Statement (SEISRS), Security OPerating ProcedureS (SecOPs), System Interconnection Security Requirement Statement (SISRS), etc.Writing common criteria security target and conducting or updating security risk analysis (EBIOS, ISO/CEI 27005)Leading technical workshop and writing technical proposal in the context of RFPWriting studies (state of the art, benchmark, etc.), within the framework of an architecture audit, you will handle interviews, analyse documentation and write the audit report.As a technical manager for a given mission, you will ensure the coordination of the work activities of the technical team Compétences requises Overview of RequirementsEngineering school or equivalent, and a minimum of 5 years of experience in this field in order to match the requirements for the job.Architect experience and knowledge of technical systems detailed below.Strong technical dissemination allowing to exchange the right information to a non-specialist audienceAbility to lead meetings, answer to RFP and workpackage workload estimationOpen-minded, you are ready to get on-the-job trainings and be flexible in order to take into account the evolutions of the technologies.Good team work is essential and requires mandatory human qualities such as open mind, mutual support and transparency.The ability to anticipate needs or to step backward must also be developed should a substitute plan be required.As in any other expertise subject, the aptitudes to analyse and summarize are essential, as well as teaching skills so that to clearly expose a complex technical matter.French: fluent and English: advanced levelDetailed Technical KnowledgeSystem engineering management, including requirement management, V-cycle, Waterfall, functional analysis, etc.Knowledge of the following norms and models would be appreciated: NAF, TOGAF, and knowledge about system engineering applications: Doors, Enterprise architect, MegaRisk analysis management (Failure Modes and Effects Analysis, SIL/SAL, EBIOS, ISO/IEC 27005)Knowledge of security norms, standards and regulations (ISO 27k, Common Criteria, CSPN, Defence regulation, PASSI, PDIS, PRIS, LPM, IGI 1300, IGI 6600, RGSv2, OIV, SIIV, etc.)Following certification would be a plus: ISO 27k, or an expertise in the common criteria or CSPN certificationCybersecurity for ICS certification would be a plus : Certified SCADA Security Architect (CSSA), GIAC Global Industrial Cyber Security Professional (GICSP), ISA 99 / IEC 62443 Cyber Security Certificate Program…Technical knowledge in the event of cybersecurity for ICS in the following areas:Industrial process control systems: RTU, PLC, DCS, SCADA, measure, Ethernet I/OCybersecurity guides or standards for industrial systems: ISO/IEC 62443 (ISA99), NIST 800-xx, ANSSI guidesIndustrial protocols: PROFIBUS, MODBUS, DNP3, OPC, Ethernet/IP, etc.Internet of Things (IoT),Industrial systems (SCADA, PLC), embedded systems (RTOS)Wireless protocols : wi-fi, li-fi, zigbee, LoRaVendors: SIEMENS, SCHNEIDER, ROCKWELL, HIRSCHMANN, PHOENIX CONTACT, etc.…Knowledge of Cybersecurity products for ICS in the following areas:Inventory management, mapping,Vulnerability management,Event/Incident monitoring and management,Gateways: ICS firewall, data diode, etc.Remote access…Technical knowledge in the field of Information and Communications Technology (ICT) cybersecurity in at least half of the following topics:Network security LAN, MAN, WAN (IPSEC VPN, firewall, Network intrusion Detection system, data diode, etc.)Operating system and related hardening (Windows, LINUX/UNIX)Endpoint security: antivirus, device control, integrity, HIDS, etc.Security of web services and applications, SOA architecturesDatabase securityIdentity & Access Management: two-factor authentication, access control, directory, etc.PKI (HSM, enrolment authority, smart card, certificate policy)Log management: collect, aggregation, storage, SIEM/Analysis, timestamping, etc.Software development security: C/C++/C#, Java, Python, php, Ajax, etc.

Postuler à cette offre d'emploi:


Offres d'emploi similaires

Chef de Projet IAM H/F Digital Security cabinet de conseil composé de 180 collaborateurs, accompagnent les plus grandes entreprises du CAC 40 dans la mise en place de leur politique et ...
Ingénieur Sécurité Débutant H/F
Ingénieur Sécurité Débutant H/F Digital Security, filiale du groupe Econocom est un cabinet de conseil composé de 180 collaborateurs, dédié aux activités de service dans le domaine de la ...
Consultant analyste sécurité SOC/SIEM (H/F)
Consultant analyste sécurité SOC/SIEM (H/F) Digital Security cabinet de conseil composé de 180 collaborateurs, accompagnent les plus grandes entreprises du CAC 40 dans la mise en place de leur ...
Consultant sécurité H/F
Digital Security, filiale du groupe Econocom est un cabinet de conseil composé de 180 collaborateurs, dédié aux activités de service dans le domaine de la sécurité des Systèmes d'Informations ...
QA Manager/Architect de test H/F
Un constructeur de renom recrute actuellement un QA Manager/Architecte (Protractor, Cucumber, Selenium, JMeter, Agile, DevOps) test au sein de ses locaux parisien et qui interviendra sur des projets ...