Job Description
Leonardo is a global industrial group, among the main global players in Aerospace, Defense and Security that realizes multi‑domain technological capabilities in Helicopters, Aircraft, Aerostructures, Electronics, Cyber Security and Space. With over 53,000 employees worldwide, the company has a solid industrial presence in Italy, the UK, Poland and the US. It also operates in 150 countries through subsidiaries, joint ventures and investments. A key player in major international strategic programmes, it is a technological and industrial partner of governments, defense administrations, institutions and companies.
Solution Architect – Space Domain Cybersecurity Technical Authority
Initially acting as a Deputy Technical Authority on Space domain projects with intensive cybersecurity contents, the Solution Architect will support the Technical Authority in defining, reviewing, and ensuring compliance of the overall architecture and implementation of the Security Solutions and Systems built from the infrastructure layer (networking, storage, hypervisor) up to Security applications (SIEM, SOAR, EDR, Threat Intelligence). The role ensures alignment with ECSS standards and programmatic requirements across the entire project lifecycle.
Responsibilities

Define and maintain the end‑to‑end technical architecture of the Security Operations Center (SOC) in compliance with ECSS standards and Customer requirements.
Support the Technical Authority in decision‑making and ensure technical consistency across all project phases (design, integration, verification, validation, qualification).
Coordinate cross‑functional technical teams (infrastructure, networking, security, applications) to deliver the SOC baseline.
Define and enforce hardening baselines and security controls for ESXi, servers, network devices, and middleware.
Review and approve technical documentation (HLD, LLD, security requirements, test plans, SECOPS).
Manage requirements traceability for security aspects and ensure compliance through audits and reviews.
Plan and supervise integration, validation, and acceptance testing of SOC components.
Support incident response process design and integration of SIEM/SOAR capabilities.
Interface with Customer’s stakeholders, auditors, and external bodies, ensuring transparency and compliance.
Oversee the implementation of the virtualized infrastructure (VMware vSphere/ESXi, Horizon, storage, and networking).
Ensure integration of IAM and PAM solutions (e.g., RedHat, Oracle, CyberArk) into the SOC baseline.
Supervise deployment and tuning of SOC core platforms: SIEM (Splunk/QRadar/LogPoint), SOAR (XSOAR), EDR solutions, Threat Intelligence, and Forensics tools.
Conduct and validate security hardening activities at infrastructure and application levels.
Support planning and execution of security audits, penetration testing, and compliance assessments.
Maintain alignment with ECSS documentation requirements and systems engineering processes.

Qualifications

Preferably a degree in Computer Engineering or equivalent.
At least 5 years of relevant experience in a similar role (Solutions/Security Architect, Systems Engineer) and willingness to broaden the scope.
Previous experience in Space projects is recommended.

Technical Skills

SOC Core: SIEM (Splunk, QRadar, LogPoint), SOAR (XSOAR), EDR/XDR (CrowdStrike, SentinelOne, Microsoft Defender ATP), Threat Intelligence (MISP, OpenCTI), Forensics (FTK, EnCase, Autopsy).
Infrastructure: VMware vSphere/ESXi, VDI (Horizon, Citrix), virtualized networking and storage.
Access Management: IAM (RedHat, Oracle, Keycloak), PAM (CyberArk, Thycotic).
Network Security: Firewalls (Fortigate, Stormshield, Checkpoint), IDS/IPS (Suricata, Snort, Zeek).
Operating Systems: Linux (hardening, SELinux), Windows Server (AD, GPO, WSUS), container security (Docker, Kubernetes).
Standards: ECSS (E-ST-40, Q-ST-80, S-ST-00), ISO 27001, ISO 27035, ISO 22301.
Knowledge of cybersecurity tools, applications and solutions (SIEM, SOAR, EDR, Cyber Threat Intelligence, Forensics, …) supported by hands‑on experience on projects.
[Nice to have] Previous experience in Cybersecurity projects for Space Domain.
[Nice to have] Experience in dealing with Classified information (SECOPS, COMSEC, INFOSEC, previous experience in Classified projects).

Behavioral Skills

Ability to understand requirements and define solutions to maximize compliance while minimizing costs.
Ability to estimate costs, efforts (e.g., function points, man‑hour) and duration of activities.
Experience in coordinating technical teams in complex projects.
Ability to deal and interface with customers in a structured and regulated environment.
Ability to interface with customers’ technical representatives and to effectively present solutions.
Demonstrated ability to produce and review technical documentation (Design documents, Requirements specifications, Test plans, procedures and reports, manuals, SECOPS, …).

Language Skills

Professional fluency in English, being the main working language.
[Nice to have] Proficiency in another European language (French or German).

Other

Availability to travel, long or short term within Europe, with the possibility to temporarily relocate in Belgium.
[Nice to have] Certifications such as CISSP, CISM, or equivalents.
Be a national of a Member State of the European Union or UK.
Hold or be eligible for security clearance up to ESA/EU SECRET.

Seniority
Senior
Primary Location
IT – Genova – Fiumara
Additional Locations
IT – Roma – Via Laurentina
Contract Type
Permanent
Hybrid Working
Hybrid
#J-18808-Ljbffr