stairs
Security
July 06, 2016

Information System Security Engineer (M/F)


As Certified Air Navigation Service Provider, the ESSP has implemented an Information Security Management System (ISMS) covering all the information systems under responsibility of the company. This ISMS is ISO27001 compliant.
Under coordination of the Security Responsible, the security engineer will participate to the running of this ISMS and to the activities required to maintain it compliant to the applicable requirements.

Information System Security Engineer’s main responsibilities:

  • Support the definition of the security policies
  • Implement the security policies or support their implementation
  • Participate to the daily Operations Management Board to bring support for the investigation of abnormal behavior of the system
  • Participate to the observation investigation & analysis
  • Follow up and support the security activities concerning future EGNOS releases (EGNOS V2 and EGNOS V3) and their deployments
-    perform, manage and follow up the security risk analysis
-    manage and follow up the security risk treatment plans

  • Manage, investigate and follow up the security incidents
  • Manage ISMS security metrics (dashboard)
  • Ensure whenever relevant, the interfaces with the operations centres and ESSP Operations and maintenance teams for what concerns security of the concerned systems
  • Manage or bring support to the management of the classified documentation
  • Draft and maintain current all documents of the ISMS
  • Contribute to the specification of security requirements for developments under responsibility of ESSP
  • Bring support for the definition of the company internal security audit plan
  • Contribute to the specification of security requirements for subcontractors and ensuring that such requirements are properly included in contractual documents if the security risk analysis identifies the need for such requirements
  • Implement the audit corrective actions plans
  • When and if relevant and when requested attend to some of the EGNOS Engineering Boards relating to System Engineering and Management of Anomalies
  • Bring support to the company contingency management process and Business Continuity Plans
  • Promote a security culture within ESSP


Profile:

  • Autonomy, practicality, rigor and precision
  • Ability to assume responsibility and to defend his/her point of view
  • Strong ability to work in team
  • English : expected CEFR level B1/B2

Specific skills:

  • Good working knowledge of logical and physical security, and of project management
  • Good working knowledge of ISO 27001, 27002, 27005 and at least of one security analysis method as EBIOS.


Job Features:

  • Permanent Contract
  • Full time

Engineer certificate or equivalent.
5 to 10 years of professional experience in Security


Please send your application file only by e-mail to the following address: recrut@essp-sas.eu

Job Location: Toulouse
PDF: Download