European specialist in Cyber Security, Airbus Cybersecurity's mission is to protect companies, critical national infrastructures, as well as government and defence organizations against cyber threats. Its reliable and high performance security products and services are able to detect, analyze and neutralize the most sophisticated cyberattacks.
We have more than 800 experts based at our main sites in France, Germany and UK, each delivering Cyber Security services. This division is particularly active in the markets of surveillance, investigation and security audits for the systems most exposed to threats within the Airbus Group, but also for partners and customers in the transport, defence and aerospace sectors.
Description of the job
You are passionate by Cybersecurity and you are willing to work in a multi-cultural environment, on European perimeter?
The position is opened in Airbus CyberSecurity Services Center based in Toulouse, for an Experimented Consultant specialized in Governance, Risk management, and Compliance.
Inside Airbus Cybersecurity, the Services include high-skilled security Professional services, such as: Risk Analysis, security audit and associated consulting services.
The Consulting Entity is in charge of supporting our clients all along their Information Risk and Security Management improvement, and addressing the increasing cyber security threat challenge.
The Consulting portfolio covers the following main areas:
• Security risk analysis and Information security strategy definition
• Regulation and compliance / accreditation assistance (ISO 27001, GDPR, LPM, French military law, II901,...)
• Security audits and assessments (organization, architecture), according with PASSI and main best practices
•The Consulting team is also actively implied in main Security interest groups, such as Club-Ebios, Clusif, ANSSI workgroups etc.
Task & accountabilities
We are looking for a dynamic and motivated consultant with a high level of autonomy, extensive knowledge and skills through previous experiences in order to deliver consulting services to our customers.
As an Airbus Governance Risks and Compliance Consultant, you will provide functional, methodological and technical advisory to our customers by bringing information security knowledge in multiple areas. As an ambassador of Airbus Cybersecurity services, you are expected to identify business issues and propose compelling solutions to our customers.
Your main tasks and responsibilities will include:
Implementing different capacities (Audit program, accreditation process, security in projects) based on the best practices or framework standards (ISO 27001, NIST?)
Autonomy in delivering activities such as:
Security Policies (creation or review)
Risk Analysis (EBIOS RM methodology or ISO27005 compliant methodology)
Audit maturity assessment (ISO 27002, NIS, NIST, ANSSI guides)
Compliance audit (PASSI)
Information Security Management System Implementation (ISO 27001)
Information security strategy and roadmap (creation or review)
You will be a key actor from proposal to delivery on major security projects by collaborating closely with sales and internal stakeholders (engineering /expert / CTI / CSIRT).
This position requires a security clearance or being eligible for clearance by the recognized authorities.
At least a Bachelor / master's degree in the field of Computer Science, IT, Engineering, OR equivalent work experience in IT with advanced Security capabilities and possible certifications related with Risk and audit management (e.g. CISM, CISA, or ISO ones)
5+ years of professional experience
Security governance, strategy and policies,
Risk Analysis methodologies (EBIOS RM...)
Holder of certifications related with Audit & Risk aspects (e.g. CISA, CISM, ISO 27001,.. ) appreciated
Advanced Knowledge in accreditation processes and methods (NATO/OCCAR/EU?)
Security standards (ISO, ANSSI, NATO)
Effective communicator with great interpersonal skills and customer focus
Ability to communicate with internal and external senior management confidently
High engagement and distinct flexibility Team spirit and share expertise within a team Ability to identify up-sell opportunities
Ability to coach others in the gathering of requirements, designs, plans and estimates
Full professional proficiency in French and English