Job Description:
Job Description and Tasks
* Key Responsibilities:
o Security Exception Management: Evaluate and process security exceptions, ensuring proper documentation, risk assessment, and the implementation of compensatory controls. This includes collaborating with various teams to facilitate secure deployments and minimize potential vulnerabilities.
o Penetration Testing Coordination: Assist in the organization and coordination of internal and external penetration tests, including scope definition, scheduling, and communication with stakeholders.
o Vulnerability and Compliance Management for the Airbus Group: Oversee the group-wide response to vulnerabilities and compliance issues, leveraging industry-standard vulnerability scanning and management platforms. This involves coordinating with all entities, including subsidiary offices, to review non-conformities and meticulously track the progress of remediation actions.
o Vulnerability Remediation Tracking: Monitor and track the progress of actions taken to address findings from security assessments and penetration tests. This involves retesting implemented solutions to confirm their effectiveness and maintain a robust security baseline.
o Process Improvement: Contribute to the continuous improvement of our security exception management and vulnerability remediation processes, identifying areas for optimization and automation.
* Required Skills & Experience:
o 1-3 years of professional experience in cybersecurity, information security, or a related field.
o Solid understanding of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), and best practices.
o Familiarity with common vulnerability assessment tools and methodologies.
o Proven ability to analyze security risks and recommend appropriate mitigation strategies.
o Excellent communication skills, both written and verbal, with the ability to articulate technical concepts to diverse audiences.
o Strong organizational skills and attention to detail.
o English is a must
* Desirable Skills & Experience:
o Certifications such as CompTIA Security+, CySA+, CEH, or equivalent.
o Experience with GRC (Governance, Risk, and Compliance) platforms.
o Experience with vulnerability management platforms and their application in a large enterprise environment.
o Understanding of compliance frameworks relevant to cybersecurity (e.g., NIS2, GDPR, industry-specific regulations).
o Strong negotiation and persuasion skills.
o Familiarity with scripting languages (e.g., Python, PowerShell) for automation tasks.
o Experience with ticketing and project management systems (e.g., JIRA, ServiceNow).
o Experience with the use and deployment of AI agents in cybersecurity contexts.
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.
Company:
Airbus Helicopters España, SA
Employment Type:
Permanent
-------
Experience Level:
Professional
Job Family:
Cyber Security