European specialist in cyber security, Airbus Cybersecurity's mission is to protect companies, critical national infrastructures, as well as government and defence organizations against cyber threats. Its reliable and high performance security products and services are able to detect, analyze and neutralize the most sophisticated cyberattacks.
We have more than 800 experts based at our main sites in France, Germany and UK, each with a Security Operating Center. We also operate in the United States and the Middle East. This division is particularly active in the markets of surveillance, investigation and security audits for the systems most exposed to threats within the Airbus Group, but also for partners and customers in the transport, defence and aerospace sectors.
For Airbus CyberSecurity, within the Services Center, based in the new office at Issy-les-Moulineaux, a position has become available for a Senior Security Operations (SecOps) Consultant.
Inside Airbus Cybersecurity, the Services include both the Security Operations Center (SOC) and high-skilled security Professional services, such as: management of security incident response plans, APT check, security audit and associated consulting services.
The Consulting Entity is in charge of supporting our clients all along their Information Risk and Security Management improvement and addressing the increasing cyber security threat challenge.
The Consulting portfolio covers the following main areas:
Security risk analysis and Information security strategy
SecOps governance and Cyberresilience (crisis management)
Regulation and compliance / accreditation assistance (ISO 27001, GDPR & LPM, II901,...)
Security audits and assessments (organization, architecture), according with PASSI and main Best practices
Awareness and training for cyber-crisis handling in both IT and OT (ICS) critical environments.
The Consulting team is also actively implied in main Security interest groups, such as Club-Ebios, Clusif, ANSSI workgroups etc.
Task & accountabilities
We are seeking an innovative and motivated consultant with a high level of autonomy and extensive knowledge and skills obtained through previous experiences in order to develop detection and response capabilities for our customers.
As an Airbus SecOps Consultant, you will provide functional, methodological and technical advisory to our customers by bringing Security Operations expertise. This role requires the ability to present to customer senior management and technical teams pragmatic security solutions with appropriate organization model.
Your main tasks and responsibilities will include:
Assist our clients in their Security Operations transformation by implementing SecOps capabilities (SOC / CISRT for example) based on the best practices or standards (ISO27035, PDIS, ETSI?)
Leading delivery activities such as:
SecOps strategy and roadmap
SecOps documentation adapted to client organization (ex: Services catalog, Security Incident Response management plan, Core playbooks,...)
Benchmark analysis on SecOps tooling (SIEM, SOAR, UBA, machine learning capacities?)
Risk analysis & Use Case definition which will be used by our SOC team to create detection rules
Last but not the least, you will be recognized as a SME for the region and leads / coordinates the SecOps consultancy activities of junior colleagues, and will be a key actor from proposal to delivery on major SOC implementation projects by collaborating closely with sales, presales and partners (SOC Engineering team).
Moreover, as a senior consultant, you will be expected to participate & develop the Consulting portfolio.
This role will involve some travel for business regularly in France and Europe and as such you must be able to travel accordingly.
This position will require a security clearance or will require being eligible for clearance by the recognized authorities.
At least a Bachelor / master's degree in the field of Computer Science, IT, Engineering, or equivalent work experience with advanced Security certification (CISSP?) and other certifications related with SIEM and/or incident response (e.g. SANS GCIH, ECSA, or GCIA)
10+ years of professional experience
A minimum of 5 years of experience within the Security Operations activities
Security governance, strategy and policies,
Security Incident methodologies (ISO 27035, NIST 800-61 ?)
Risk analysis methodologies (EBIOS RM...)
Experience in architectural design, process design and project led implementation of SIEM/SOC solutions
Experience with main SIEM products (ArcSight, QRadar, Splunk, RSA) and SOAR products (Phantom, Resilient?)
Ability to coach others in the gathering of requirements, designs, plans and estimates
Appreciation of the business drivers demanding SecOps capacities
Prior work experience serving C-Level clients as a security consultant
Ability to communicate with internal and external senior management confidently
Ability to identify up-sell opportunities
Ability to demonstrate a broad understanding of SecOps industry and technical constraints of SecOps solutions
Ability to take business problems, existing processes and technology and translate these into service and process requirements
Effective communicator with great interpersonal skills and the ability to be credible with clients
High engagement and distinct flexibility
Well-marked capacity for coaching