Location: Frascati, ItalyApplication deadline: 25 April 2025Reference number: 0226Are you looking for a new opportunity to take your career to a higher orbit? To join an international group with a successful track record in Space Engineering? A job adapted to your career ambitions and in which you could have an impact for the years to come?We are looking for an Information Security Engineer to join our team based at ESA’s ESRIN premises in Frascati, Italy.In this role, you will have the opportunity to contribute to the IT security activities and services managed by the IT Security section, as well as assist with the activities run by the ESA IT department.About the client and locationThe ESA Centre for Earth Observation (ESRIN) is the European Space Agency’s (ESA) base in Frascati, Italy. From this location, ESA conducts most of their earth observation research, including data analysis and distribution for other non-ESA satellites.This position is open to protected categories under Italian Law 68/99 (“Rules for the right to work of disabled people”).Tasks and activitiesThe scope of work will include:Performing Technology watch, running pilots and prototypes to validate the applicability and usability of new technologies and tools in the ESA security context.Contributing to the definition of new services, the improvement of existing services and processes focusing on “IT Security”.Performing operational tasks in support of non-default IT Security services such as restricted data and VPN management, etc.Driving the Risk Management Process for new services and changes to existing services:Interacting with the requestor to understand the business needs and related use-cases.Reviewing the Policies Compliance Score Card results and the Threat Model and related analysis applied during the Risk Assessment process.Driving the review meeting involving the relevant team and the customer to present and validate the results of the threat analysis and policy compliance results.Collaborating in the definition of the Security Requirements and delivery of the relevant document together with the relevant team and the customer; brief the Project and System Security Officer in view of approval of the Security Requirements and consult with the Security Architect as required.Reviewing of the Security Procedures provided by the customer; brief the PSSO in view of approval of the SECOPS.Preparing validation and approval of requests coming from the esaIT service request tool (esanow) for different requests and Network requests including traffic matrix.Skills and experienceThe following skills and experience are mandatory:University Degree or equivalent in a relevant field.Experience in IT Security Architecture.Experience in modern IT technologies used for securing end-points (PCs, Mobile devices, IoT, etc.), Infrastructure (network, storage, computing infrastructure and cloud), Operating Systems and Applications.Experience of working to government body-based frameworks and policies.Expertise in specific IT technologies deployed in the scope of the contracted tasks:Windows Active Directory, Windows and Linux.Open standards based federated Identity and authentication technologies (e.g. SAML, Auth2, OpenID).Trusted List for Approved cryptographic products.Thales encryption solutions.SIEM solutions and technologies.Skybox vulnerability management solution technologies.Information Security Management according to ISO/IEC 27000-series.Knowledge of the NIST SP 800-xx series and NIST RMF.Risk Assessment methodologies and threat modelling (e.g., PASTA, STRIDE and Security Cards).Knowledge of ‘up-to-date’ technologies and methods within the field.Eligibility for a personal security clearance from your national security administration.Desire to work both autonomously and as part of a team, in an international multicultural environment.Solution oriented mindset, with customer-focused communication skills.Fluent in English, both written and spoken.The following skills and experience would be highly desirable:IT Security industry certification/specialization (e.g. CISSP).Why should you apply?You will have the opportunity to work within leading space organisations across Europe.We encourage everyone to think outside the box and to push the boundaries of traditional knowledge. This role is an opportunity to join a forward-thinking company and allows for a deeper understanding of the industry.To be part of a company that values integrity, inspiration, care and collaboration.Benefits include: competitive remuneration packages; unique career opportunities, including working in other countries; access to training and development programmes; flexible relocation support.We welcome applications from people with disabilities, members of ethnic minorities, all genders, LGBTQ+ individuals and ex-service personnel.Apply now - Information Security Engineer" * " indicates required fieldsTitle (e.g. Mr, Ms, Mx, Dr)Name *First name Last nameEmail *PhoneUpload your CV * Drop files here or Accepted file types: txt, pdf, doc, docx, Max. file size: 10 MB, Max. files: 10.Other supporting documents Drop files here or Accepted file types: txt, pdf, doc, docx, Max. file size: 10 MB, Max. files: 10.How did you hear about this job?If you were contacted by a Recruiter, please share their nameIf ‘I know someone in the company’ please share their name
#J-18808-Ljbffr