Vacancy in the Directorate of Navigation.
ESA is an equal opportunity employer, committed to achieving diversity within the workforce and creating an inclusive working environment. We therefore welcome applications from all qualified candidates irrespective of gender, sexual orientation, ethnicity, beliefs, age, disability or other characteristics. Applications from women are encouraged.
This post is classified A2-A4 on the Coordinated Organisationsโ salary scale.
Location
ESTEC, Noordwijk, Netherlands
Description
Cyber Security Engineer in the Navigation Security Office, Directorate of Navigation.
You will be part of the Cyber Internal Auditor Team, reporting to the Head of the Navigation Security Office. The Cyber Internal Auditor is responsible, within navigation projects, for evaluating the level of compliance of the information security management system and implemented security measures with defined requirements, security policies in place and the appropriate safety standards,. It includes the planning and implementation of the cyber security audits and the provision of independent feedback.
Duties
Your tasks and responsibilities will include:
โข analysing and monitoring the European Commissionโs cyber security policies in respect of navigation programmes and the related regulations and standards;
โข supporting the planning and execution of the cyber audits to ensure that the systems are protected and controlled, and providing support during the physical audits performed at contractorsโ facilities;
โข following up penetration tests carried out by the contractors or by the project;
โข managing and maintaining all the evidence from the audit, its reliability, notably by assessing the independence of provider, as well as the objectivity and timing of the evidence;
โข providing support during the analysis of the cyber security risks related to the supply chain;
โข identifying and formulating recommendations to support navigation programme leadership in four strategic cyber security areas: identify, protect, detect, respond and recovery;
โข working with the CIA (Cyber Internal Auditor) to minimise the risks related to the audit;
โข representing the ESA GNSS CIA on boards established within the programmes for dealing with non-conformances (requests for waivers); participation in Cyber Boards and relevant Galileo programme reviews with internal and external stakeholders (ESA, EUSPA and the European Commission).
Technical competencies Knowledge of cyber security: policy, detection, reaction and correction Knowledge of cyber vulnerability management and associated standards Knowledge and experience in auditing of complex secure systemsKnowledge of security auditing standards and regulationsKnowledge and experience in supply chain management
Behavioural competencies
Result Orientation
Operational Efficiency
Fostering Cooperation
Relationship Management
Continuous Improvement
Forward Thinking
Education
A masterโs degree in engineering or law is required for this post.
Additional requirements
You should have substantial security or audit experience.
You are expected to have a very good background in cyber security, policy, and associated standards and regulations.
You should demonstrate excellent organisational skills and a high-level of stakeholder management.
You must possess good judgment, integrity, and good communications skills, and be willing to travel.
Other information
For behavioural competencies expected from ESA staff in general, please refer to the ESA Competency Framework.
For further information please visit: Professionals, What we offer and FAQ
The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.
Applicants must be eligible to access technology and hardware which is subject to European and US export control regulations.
Applicants must be eligible for security clearance by their national security administrations.
The Agency may require applicants to undergo selection tests.
At the Agency we value diversity and we welcome people with disabilities. Whenever possible, we seek to accommodate individuals with disabilities by providing the necessary support at the workplace. The Human Resources Department can also provide assistance during the recruitment process. If you would like to discuss this further please contact us email contact.human.resources@esa.int.
Please note that applications are only considered from nationals of one of the following States: Austria, Belgium, the Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Luxembourg, the Netherlands, Norway, Poland, Portugal, Romania, Spain, Sweden, Switzerland, the United Kingdom and Canada, Latvia, Lithuania, Slovakia and Slovenia.
According to the ESA Convention, the recruitment of staff must take into account an adequate distribution of posts among nationals of the ESA Member States*. When short-listing for an interview, priority will first be given to internal candidates and secondly to external candidates from under-represented Member States*.
In accordance with the European Space Agencyโs security procedures and as part of the selection process, successful candidates will be required to undergo basic screening before appointment conducted by an external background screening service.
In principle, recruitment will be within the advertised grade band (A2-A4). However, if the selected candidate has less than four years of relevant professional experience following the completion of the masterโs degree, the position may be filled at A1 level.
*Member States, Associate Members or Cooperating States.