Toulouse Area, France
il y a 3j

Description of the job :

A vacancy for a DIGITAL SECURITY ARCHITECT has arisen within Airbus Defence & Space in Toulouse.

The INTELLIGENCE business cluster of Airbus DS CIS (CIS-INT) is running a large program in charge of deploying the new Intelligence digital services offers.

This program is composed by different components / applications under the steering of different entities and projects. These components / applications are deployed in a public cloud (GCP) with strong relationships with the Intelligence legacy.

CIS-INT is recruiting a Digital Security Architect (m / f) to support the program teams in the handling, the overall specification and the design of all the security aspects of the geo-

information digital services facilities.

Beyond the scope, we expect that he contribute to the improvement of the security on a global scale, covering the full Intelligence IS landscape.

Within Security governance team, and under Head Of information security France responsibility, Digital Security Architect works in closed relationship with :

  • Security operations to ensure the global consistency of solutions with existing security frameworks, tools and processes
  • The GEO enterprise architect who is responsible for the global consistency of the GEO IS, including Security topic.
  • The solution architect
  • The GDS security architect
  • This position will require a security clearance or will require being eligible for clearance by the recognized authorities.

    Task & accountabilities :

    Your main tasks and responsibilities will include :

  • Responsible for the security from the requirements definition to the implementation of the solution, including evolutions and maintenance.
  • Participate to the architecture to define the adequate end-to-end solutions fulfilling the security requirements based on security policy, security best practices and his experience.
  • Contribution from a security standpoint to the various components architecture trade-offs to be performed before selection of design.

  • Ensure the consistent integration in a global IS landscape from a security standpoint
  • Support to teams in the security design and implementation, driving force for suggestions and advice, with respect to security requirements.
  • Guarantee coherence between the security requirements and the subsystems / components implementation

  • Responsible for security concepts and requirements (risk analyses, security objectives, classification of data, network partitioning, etc.)
  • Contribute to the compliance matrix of all related security requirements.
  • Support the teams to define adequate tests in order to verify security requirements
  • Verify the test plans related to security of all subsystem and propose testing Tools
  • Participate to the validation of security requirements and, more globally, to security acceptance
  • Contribute to the security certification leaded by the team in charge of company security governance
  • Being the focal point to negotiate possible temporary deviations
  • Contribute to the export control process
  • Ensuring the technological watch on the digital, cybersecurity field
  • This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

    This role will involve occasional travel for business and as such you must be able to travel accordingly.

    Required skills :

    You will have the following skills and experience :

  • At least 5 years in security architecture and architecture of systems.
  • Strong experience in Cloud computing and Security of Cloud environment : architecture, right and access management..., Definition of security requirements for a Cloud implementation, Use of associated standard / best practices : SecNumCloud, Cloud Security Alliance...
  • Strong experience in Web application security : Experience in API security (authentication, session management...), Management of -
  • AAA (Authentication, Authorization and Audit), Use or strong knowledge in Web Security standards / best practices : OWASP...

  • Knowledge of current techniques of data attacks and extractions
  • ANSSI Guidelines, EBIOS methodology, security architecture, knowledge in risk analysis
  • Architecture modeling, requirements allocation
  • Experience in Agile and / or Safe development method
  • An Experience in DevOps would be appreciated
  • An experience in Earth Observation systems (functions, performances, operations) would be appreciated
  • Strong coordination skills
  • Ability to negotiate and find consensus,
  • Team player
  • French : negotiation level
  • English : negotiation level
  • This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

    By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment.

    This information will only be used by Airbus.

    Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

    Ajouter aux favoris
    Retirer des favoris
    Mon email
    En cliquant sur « Continuer », je consens au traitement de mes données et à recevoir des alertes email, tel que détaillé dans la Politique de confidentialité de neuvoo. Je peux retirer mon consentement ou me désinscrire à tout moment.
    Formulaire de candidature