(Senior) Engineer, Cyber Security and SecOps, IRIS2

Programme Description

IRIS2 is the new European Union secure satellite constellation. This project is the European Union's answer to the pressing challenges of tomorrow to provide secure connectivity services and enhanced communication capacities to the EU and its Member States as well as to governmental users, private companies and European citizens while ensuring high-speed internet broadband to cope with connectivity dead zones.

SES – together with other consortium partners and core members - was selected by European Commission to build and to operate the IRIS2 multi-orbit satellite constellation.

The IRIS2 team enters next project phases and there is a strong need of support for all the activities around service provisioning and products that the system can offer in the future.

Role Description

In this role, you are responsible for the preparation of plans relevant for security system engineering, and to the later execution of the mentioned plans, in close cooperation with the Programme Team, System Engineering, Security workgroups, as well as external Partners. As a member of an agile project organization, you will be expected to bring a flexible way of working and an adaptive mindset to a dynamic development environment.    

As Senior IRIS2 Cyber Security and SecOps Engineer, you will responsible to :

• Integrate security designs for systems and networks with multilevel security requirements and/or requirements for the processing of multiple classification levels of data also applicable to government and EU organizations.
• Ensure that the security requirements necessary to protect the programme's mission and processes are adequately addressed in all aspects of the IRIS2 design, including the resulting systems supporting those processes.
• Ensure that acquired or developed system(s) and architecture(s) are consistent with programme's security architecture guidelines and “Security by Design” principles.
• Coordinate “Security by Design” activities with the Core Team sub-contractors providing Managed Services, and with the Services and Operations teams, including change management requirements.
• Lead and/or contribute, as required, to the cybersecurity design and governance involving both Space and Ground segments and systems.
• With the future evolution of IRIS2 systems, drive cybersecurity governance by preparing accreditation data packages and organizing and configuring security assessments, i.e., compliance audits and penetration tests.
• Lead development and review of specification documents with link to Cyber Security and Security Operations (SecOps), understood as the operations carried out within a Security Operations Centre and/or Security Monitoring-Monitored Entity Requirements (SECMON-MER).
• Contribute to the review of relevant plans for the implementation of operational sites from the perspective of cyber security design and security operations governance.
• Review and update the Cybersecurity Implementation Plan (CIP), the Security Accreditation and Certification Plan (SACP), the Component Security Accreditation and Certification Plan (CESECAP), and the Component Certification Status Report (CCSR), as required.
• Provide technical advice on Security Risk Analysis and ensure that IRIS2 design and associated risk treatment are developed accordingly, thus contributing to the review and update of the End-to-End Security Risk Assessment (E2E SRA), as required.
• Provide technical advice on Site Security and more specifically on documents such as the Sites Local Security Plan (SLSP).
• Provide technical advice in development, security & operations (DevSecOps) and deployment of security products.
• Provide technical advice for the Security Products Development strategy and procurement, based on System-specific Security Requirements Statement (SSRS), System Interface Security Requirements Statement (SISRS), System Security Plan (SSP), Product Breakdown Structure Asset Security Classification (PBSASC), and Security Classification Guidelines (SCG).
• Provide technical advice to determine the protection requirements (i.e., security controls) for the Information Security Management System (ISMS), ensuring that the support provided by security officers is functional to the ISMS required for IRIS2 and verifying the consistency of ISMS-related documents owned by security officers, such as the Security Management Plan (SMP).
• Contribute to analyse, co-design and trade-off on security architecture choices, with focus on technologies for cryptography, access controls, and GNSS resilience, as required.

YOUR PROFILE

• University level degree in Engineering, Telecommunications or adjacent areas as a minimum 7 years of experience in Satellite Communications System Architectures, Solution Design or Deployment and Security Engineering
• Proven experience in working with EU, ESA or national governmental institutions, and more specifically with security engineering of security risk management, security threats & incidents, security vulnerabilities, malware analysis
• Security engineering experience acquired in programmes covering at the maximum possible extent the following infrastructure systems and activities: satellite control or data planes, IT & Datacentres, 5G systems, OSS/BSS, User Terminals, terrestrial fixed and mobile networks
• Ideally, experienced in complex programme management and cross-functional / cross-organisational cooperation
• Proficiency in preparation of proposals and in technical writing, with sound understanding of the implications
• Fluency in written and spoken English; other European languages are considered an asset

• Excellent project management skills, with strong time management skills to prioritize tasks effectively in a fast-paced environment
• Strong ability to work independently and without supervision in complex environments, e.g. project or matrix organizations

• Flexibility and adaptability in response to changing project requirements and environments
• Ability to think strategically and align project goals with organizational objectives
• Excellent problem-solving and decision-making abilities
• Effective communication skills, both written and verbal

• Strong leadership and teamwork skills, with experience managing diverse expert teams and complex project organizations

• Ability to work under pressure and manage multiple priorities
• Innovation mindset, encouraging and contributing to innovative approaches and solutions.

• Proactive approach, can-do mentality and ability to work autonomously

OTHER REQUIREMENTS

• Eligibility for EU SECRET personnel security clearances is essential. Candidates must be prepared to undergo a security clearance procedure, as this position may require holding such clearance
• Willing to work at least 60% onsite from office
• Travel as required for project realization purposes 

The job responsibilities outlined in this document are not exhaustive and may evolve over time and be reviewed according to business needs.