Overview
Leonardo is a global industrial group, among the main global players in Aerospace, Defense and Security that realizes multi-domain technological capabilities in Helicopters, Aircraft, Aerostructures, Electronics, Cyber Security and Space. With over 53,000 employees worldwide, the company has a solid industrial presence in Italy, the UK, Poland and the US. It also operates in 150 countries through subsidiaries, joint ventures and investments. A key player in major international strategic programmes, it is a technological and industrial partner of governments, defense administrations, institutions and companies.
The Solution Architect initially acting as a Deputy Technical Authority on Space domain projects with intensive cybersecurity contents, will support the Technical Authority in defining, reviewing, and ensuring compliance of the overall architecture and implementation of the Security Solutions and Systems built from the infrastructure layer (networking, storage, hypervisor) up to Security applications (SIEM, SOAR, EDR, Threat Intelligence).
The role ensures alignment with ECSS standards and programmatic requirements across the entire project lifecycle.
Responsibilities

The main responsibilities include : Define and maintain the end-to-end technical architecture of the Security Operations Center (SOC) in compliance with ECSS standards and Customer requirements.
Support the Technical Authority in decision-making and ensure technical consistency across all project phases (design, integration, verification, validation, qualification).
Coordinate cross-functional technical teams (infrastructure, networking, security, applications) to deliver the SOC baseline.
Define and enforce hardening baselines and security controls for ESXi, servers, network devices, and middleware.
Review and approve technical documentation (HLD, LLD, security requirements, test plans, SECOPS).
Manage requirements traceability for security aspects and ensure compliance through audits and reviews.
Plan and supervise integration, validation, and acceptance testing of SOC components.
Support incident response process design and integration of SIEM / SOAR capabilities.
Interface with Customer’s stakeholders, auditors, and external bodies, ensuring transparency and compliance.

Space-specific / Cybersecurity Technical Authority & Systems Engineer – Space

Oversee the implementation of the virtualized infrastructure (VMware vSphere / ESXi, Horizon, storage, and networking).
Ensure integration of IAM and PAM solutions (e.g., RedHat, Oracle, CyberArk) into the SOC baseline.
Supervise deployment and tuning of SOC core platforms: SIEM (Splunk / QRadar / LogPoint), SOAR (XSOAR), EDR solutions, Threat Intelligence, and Forensics tools.
Conduct and validate security hardening activities at infrastructure and application levels.
Support planning and execution of security audits, penetration testing, and compliance assessments.
Maintain alignment with ECSS documentation requirements and systems engineering processes.

Qualifications

Preferably a degree in Computer Engineering or equivalent.
Required Level of Experience : At least 5 years of relevant experience in a similar role (Solutions / Security Architect, Systems Engineer) and willingness to broaden scope.
Previous experience in Space projects is recommended.
Technical Skills :
SOC Core : SIEM (Splunk, QRadar, LogPoint), SOAR (XSOAR), EDR / XDR (CrowdStrike, SentinelOne, Microsoft Defender ATP), Threat Intelligence (MISP, OpenCTI), Forensics (FTK, EnCase, Autopsy).
Infrastructure : VMware vSphere / ESXi, VDI (Horizon, Citrix), virtualized networking and storage.
Access Management : IAM (RedHat, Oracle, Keycloak), PAM (CyberArk, Thycotic).
Network Security : Firewalls (Fortigate, Stormshield, Checkpoint), IDS / IPS (Suricata, Snort, Zeek).
Operating Systems : Linux (hardening, SELinux), Windows Server (AD, GPO, WSUS), container security (Docker, Kubernetes).
Standards : ECSS (E-ST-40, Q-ST-80, S-ST-00), ISO 27001, ISO 27035, ISO 22301.
Knowledge of cybersecurity tools, applications and solutions (SIEM, SOAR, EDR, Cyber Threat Intelligence, Forensics, …), supported by hands-on experience on projects
Previous experience in Cybersecurity projects for Space Domain constitutes a strong preference; experience in dealing with Classified information (e.g. SECOPS, COMSEC, INFOSEC, and classified projects) is advantageous.

Behavioral Skills

Ability to understand requirements and define solutions to maximize compliance while minimizing costs.
Ability to estimate costs, efforts (i.e. function points, manhour) and duration of activities.
Experience in coordinating technical teams in complex projects.
Ability to deal and interface with customers in a structured and regulated environment.
Ability to interface with customers’ technical representatives and to effectively present solutions.
Demonstrated ability to produce and review technical documentation (i.e. Design documents, Requirements specifications, Test plans, procedures and reports, manuals, SECOPS, …).

Language Skills

Professional fluency in English, being the main working language.
Proficiency in another European Language (French or German).

Other

Availability to travel, long or short term within Europe, with the possibility to temporarily relocate in Belgium.
Certifications such as CISSP, CISM, or equivalents are a plus.
Be a national of a Member State of the European Union or UK.
Hold or be eligible for security clearance up to ESA / EU SECRET.
Seniority : Senior

#J-18808-Ljbffr