Job Description SUMMARY Are you a Cyber Security SW Engineer ready to take on new and exciting challenges? Do you want to work in a multicultural environment for a worldwide aerospace leader? If you are a highly motivated engineer who enjoys innovating and simplifying solutions, is keen to grow as a Security Architect and secure SW developer, and is passionate about Cyber Security, this position may be what you are looking for. We are seeking a Cyber Security SW Engineer to join our Product Security team within Airbus Defence & Space in Getafe (Madrid). You will be part of the team that ensures Airbus Defence & Space products and services are protected against cybersecurity threats throughout their lifecycle, from early R&T phases through to end of life. The selected candidate will be eligible to receive state‐of‐the‐art training on Cybersecurity and/or Aerospace Engineering.
Tasks & Responsibilities Guarantee that Airbus Defence and Space products are inherently secure by design and meet security requirements in compliance with national and international regulations.
Participate in the definition of product security architectures and design in accordance with security requirements derived from risk assessments.
Help specify which security controls are to be applied and where in the overall product architecture.
Participate in trade‐offs that influence decisions made in forming the security architecture.
Enable business by providing cybersecurity consultancy and guidance to projects to ensure contractual requirements and customer expectations are met.
As a Junior Cyber Security Software Engineer, main responsibilities include:
Software: participate in software security requirement definition, design, integration, verification, and validation.
SW designing skills (sequence diagrams, UML diagrams, class diagrams, pseudocode).
Analyze developer and test engineer requirements and derive the technical implementation for the building process.
Participate in designing and optimizing processes and tools in source code management, dependency management, continuous integration, testing, and deployment.
Participate in static and dynamic code analysis.
Testing: unit tests/coverage, integration tests, functional tests.
Architecture: conduct security risk assessments (threat and vulnerability assessment).
Help define security requirements to mitigate risks.
Participate in designing security architectures in accordance with security.
Define secure SW architecture and design.
Ensure compliance of products with national and international security regulations.
Provide cybersecurity consultancy and advisory to business projects.
Adopt and promote a security‐by‐design approach with stakeholders.
Help in formal compliance processes (security evaluation, certification, and accreditation) in accordance with applicable criteria and methodologies (CC/CEM, ITSEC/ITSEM, CCN‐STICs...).
Qualifications Bachelor's or Master's in Telecommunication Engineering or Computer Science with emphasis in Information Security; Master's in Cyber Security highly desired.
Knowledge of the Secure Software Development Life Cycle.
Experience in C/C++/C# and/or JAVA.
Familiarity with Visual Studio and SW repositories.
Knowledge of network and application security architecture and operating systems.
Advanced level of English and ability to write clear security documentation.
Subject to NATO/National security clearance.
Ability to travel as required.
Nice to have (not mandatory): knowledge in Aircraft Security; knowledge of EUROCAE material focused on Airworthiness Security Process (ED-202A, ED-203A, ED-204); knowledge of NATO/National security regulations; experience with DO178B/C standards; experience with DOORS for requirements specification and management; knowledge of Security Evaluation, Certification and Accreditation Processes; IT Security Professional certification (CISSP, SANS/GIAC or equivalent); Security Training courses (SANS Security Awareness, Developer Training).
Benefits Vacation days and additional days off (35 working days off in total per year).
Attractive salary and compensation package.
Hybrid work model when possible (up to 40% remote work).
Collective transport service on some sites.
Health insurance, employee stock options, retirement plan, study grants.
On‐site facilities: free canteen, kindergarten, medical office.
Opportunities to collaborate in social and corporate social responsibility initiatives.
Excellent upskilling opportunities and development prospects in a multicultural environment.
Special rates on products and benefits.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation, or religious belief. Airbus has always been committed to equal opportunities for all. We will never ask for any monetary exchange in the frame of a recruitment process. If any impersonation of Airbus is encountered, report it to emsom@airbus.com.
#J-18808-Ljbffr