Defining and supervising the implementation of the Airbus Information and Cyber Security Strategy aligned with the Airbus business objectives.
Defining the Airbus Information Security Policies. Ensuring the compliance with company policies, laws and regulatory provisions within Airbus, the Extented Enterprise and Supply Chain through audit, tests and controls.
Addressing Information Security risks and mitigation in coordination with ICT and business functions risk management organizations.
Liaising and lobbying with national and international security agencies as well as regulators and standardization bodies in the aeronautic industry.
Ensuring that Airbus’ programs & business functions assume their responsibilities with regards to all information classification and protection.
Designing and conducting an efficient security communications and awareness program. Anticipating emerging trends and innovative technologies and their impact on information security.
The following accountabilities are described giving the scope of their applicability.
Ensure the Detection & Response to the most sophisticated cyberattacks are handled appropriately.
Ensure that Airbus group is aware of the cyber threats landscape
Perform Detection & Response technology watch
Manage Detection & Response related knowledge
Perform Threat Intelligence on attacker groups related to aeronautics and defence
Contribute to the writing of documents produced by the CERT (Research and publication as member of Airbus CERT, Detection & Response deliverables )
Development, build and maintain Detection & Response tools
Ensure cyber crisis coordination or lead on a case by case basis
Represent Airbus CERT within working groups and in conferences throughout the world.
Contribute to threat hunting improvement through industrialization of intrusion analysis
Support divisions in understanding malwares targeting them.
Analyze incidents taking into account operational and national constraints
Performing threat hunting :
Conduct Malware Analysis in the context of threat hunting and TTPs discovery
Contribute to the effort of Threat Intelligence
Support incident response in crisis mode :
Be part of the on-call crisis team (deployment reactivity constraints)
Hosts forensic analysis
Contribute to the industrialization of :
Malware analysis and clusterization
Threat detection using system or network capabilities
Integration of signatures into internal tools
Support for IOC searching across the enterprise
Create or enhance Detection & Response projects
Participation to Detection & Response developments
Development of data mining capabilities (Hadoop / Pig)
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.