(Senior) Security Engineer, Information Protection and Cyber Security IRIS2

ROLE DESCRIPTION

IRIS2 is the new European Union secure satellite constellation. This project is the European Union's answer to the pressing challenges of tomorrow to provide secure connectivity services and enhanced communication capacities to the EU and its Member States as well as to governmental users, private companies and European citizens while ensuring high-speed internet broadband to cope with connectivity dead zones.
SES – together with other consortium partners and core members - was selected by European Commission to build and to operate the IRIS2 multi-orbit satellite constellation. 
The IRIS2 team enters next project phases and there is a strong need of support for all the activities around service provisioning and products that the system can offer in the future. 

In your Security Engineer role, you are responsible for planning, implementing, and upgrading and as well as monitoring security measures. As a member of an agile project organization, you will be expected to bring a flexible way of working and an adaptive mindset to a dynamic development environment.    

As a Security Engineer, Information Protection and Cyber Security IRIS2, you will be responsible to : 
•    Review of functional and contractual documentation, among which and not limited to space and ground architectural diagrams, requirement lists and SoW, etc); interpret it from cyber-security and information-protection perspective, derive the relevant requirements and contribute to its finalisation as appropriate
•    Analyse, co-design and trade-off on security architecture choices, with focus on technologies for encryption, Key Management Facility and key distribution, anti-jamming, TEMPEST/EMSEC, Secure AAA, along with their procurement and deployment, by pursuing cost- and time-efficient accreditations
•    As a member of the programme team, in close cooperation with System Engineering, Program Management, Security workgroup, as well as external Partners, prepare and update Security Management Plans, Security Risk Analysis/Mitigation plans, SecOps plans, Maintenance and ILS plans, Security Accreditation Strategy, Security Architecture Deployment plans, Service Continuity plans, and contribute to the relevant procurement and workload cost allocation; contribute to the later execution of the mentioned plans
•    Contribute to the specification and review the relevant plans for and implementation of the operational sites from the perspective of secure operations
•    Along institutional contract milestone plans (ESA, EC), own or contribute as needed to the preparation and closure of reviews, including (support to) negotiation of contract amendments with Customers as well as with (Sub-) Contractors
•    Report to Programme Management

YOUR PROFILE : 

•    Bachelor/Master’s Degree in either Telecommunications Engineering, Network Engineering, Cybersecurity Engineering, Physics, Mechanics
•    Minimum 5 years experience in cybersecurity engineering activities or secure encryption, ideally in the satellite communication domain
•    Proven experience in working with EU, ESA or national governmental institutions, and more specifically with engineering of security risk management, security threats & incidents, security vulnerabilities, malware analysis

•    Sound knowledge of security technologies, such as encryption technologies, secure Authentication-Authorisation-Accounting technologies, Key Management Facility, Security Information and Event Management (SIEM), Security Orchestration and Automated Response (SOAR)
•    Security engineering experience acquired in programmes covering at the maximum possible extent the following infrastructure systems and activities: satellite control or data planes, IT & Datacentres, 5G systems, OSS/BSS, User Terminals, terrestrial fixed and mobile networks
•    Sound knowledge of ISO 27000 Security standards, ECSS as an asset
•    Fluency in English, both written and spoken, any other European language is considered as an asset 

COMPETENCIES
•    Ability to work in an international environment and adapt communication to audience
•    Very good analytical and problem-solving skills
•    Autonomous with strong self-management skills
•    Good coordination and project management skills
•    Innovative mind with the ability to anticipate security challenges 
•    Stress resistant and able to manage multiple incidents and tasks at the same time
•    Good written and verbal communication skills 
•    Excellent team player
•    Ability to effectively interact with all internal and external partners and stakeholders 

OTHER KEY REQUIREMENTS / COMMENTS

•    The candidate must be eligible for a “SECRET” security clearance, in accordance with the “loi modifiée du 15 juin 2004 relative à la classification des pièces et aux habilitations de sécurité”, as well as EU/ESA/NATO equivalents
•    Willing to work at least 60% onsite from office 
•    Travel as required for project realization purposes 

The job responsibilities outlined in this document are not exhaustive and may evolve over time and be reviewed according to business needs.