Join to apply for the TAS-I Cyber Security Authority role at Thales Alenia Space.A Joint Venture between Thales (67%) and Leonardo (33%), Thales Alenia Space is a global space manufacturer delivering high-tech solutions for telecommunications, navigation, Earth Observation, environmental management, exploration, science and orbital infrastructures. Thanks to our diversity of skills, talents and cultures, our customers (governments, institutions, space agencies, telecommunications operators) therefore have Space to Connect, Secure & Defend, Observe & Protect, Explore, Travel & Navigate.As a major player in the space sector, cybersecurity is a prerequisite for Thales Alenia Space. It affects all of our areas of activity (Navigation, Telecommunications, Observation, Exploration) and concerns our information systems, our development and production environments as well as the systems and products we design and deliver to our customers.The CSA (Cyber Security Authority) role has been created as part of the Head of Cybersecurity TAS-I Department. The CSA interacts with all Thales Alenia Space cybersecurity and engineering players, in TAS-I projects across the board. The CSA combines strong technical skills, in-depth security understanding, and the ability to manage different teams in the organization, which do not report directly to him/her.The CSA is responsible for monitoring and mastering cybersecurity risks of Products, Projects and Services during early capture, bid and development phases through the following missions:ResponsibilitiesContribute to the definition of the cybersecurity technical policy of its scope of responsibility and the associated roadmapReport to Head of Cybersecurity the TAS-I cybersecurity risks and KPI regarding Bids and Cyber Security compliance on a regular basisShare with TAS-I Centers of Competences the security status and costs of their supplies for projects during Bid and before going into serviceFill in and validate the cybersecurity maturity dashboard of TAS-I, including the Group Cybersecurity fundamentals compliance level and KPI regarding BidsAlert CPSO / Head of Cybersecurity TAS-I when major deviation is identified and assist in defining the relevant remediation action plansRaise cybersecurity alert to TAS-I Technical Director and Head of Cybersecurity TAS-IInitiate and support audits and checks of solutions security activities to ensure compliance with the Organization, regional and national cybersecurity rules, and compliance with Thales Group Policy and TAS Security InstructionsCheck consistency of the cybersecurity technical roadmap of TAS-I with TAS technical strategy (existing technical roadmaps, R&T plan, and Technical Innovation Strategic Plan) and with applicable regulations and standardsProvide feedback to Engineering Managers on the applicability, application, and effectiveness of the cybersecurity engineering policy in TAS-IChallenge, support, and approve cybersecurity organizations, strategies and cybersecurity quotations in bids and solutions, and validate the Target security level identified during bid or solution orientation phaseEnsure corresponding cost of the implementation of the target security level is identified and included in the solution budgetSupport the Purchasing team to evaluate suppliers’ cybersecurity maturitySupport legal and contracts teams for cybersecurity-specific contractual articles analysisParticipate in key technical reviews for all bids and projects (the SOR in particular) within the operating entity upon PDA request and at least for A2/B2, and verify the cybersecurity section in the DVaValidate the security status of the solution, before going into serviceQualificationsEngineer or Master’s Degree education, the position requires a minimum of 5 years of relevant experience in firms specialized in consulting, technology services, digital transformation, cybersecurity and IT/OT security, risk and crisis managementConfirmed relevant experiences in Defence and Aerospace Industry within one or more domains of Thales Alenia Space like Navigation, Telecommunication, Earth Observation or Space Exploration is expectedSkills RequirementsProduct management and product life cycle expertise with a proven track record of delivering next generation solutionsInformation and Operational Technologies (IT/OT) and Internet of Things (IoT) architectures fundamentalsInformation Security Management System (ISMS - ISO/IEC 2700x series)Risk management frameworks such as ISO 31000, ISO 27005, EBIOS Risk ManagerSecurity accreditation processesCryptographyCyber security expertise in audits, vulnerability management, penetration tests in hardware, infrastructure and software environmentsNational, European and US security regulations expertiseDefine, develop and lead a culture of crisis policy adapted to industrial constraintsCloud native and virtualization technologiesDEVSECOPSSupply Chain SecuritySoftware developmentAutonomyManagerial capacitiesGood communicantAbility to negotiate with industrial and institutional partnersAdaptabilityManaging complexityAbility to lead and manage in a matrix organization achieving on-time, on-budget, and compliant delivery with a history of outpacing market performanceStrength of proposal, communication, ability to synthesize on complex issuesCritical thinking to promote innovation and creativityTeam spirit, leadership and animation of small teamsJudgment and decision makingSense of serviceFlexibilityExperience in driving enterprise cultural changes into Product and Engineering teamsStrong entrepreneurial skills with a keen sense for problem solving and agilitySeniority levelNot ApplicableEmployment typeFull-timeJob functionEducation and TrainingIndustriesAviation and Aerospace Component Manufacturing and Defense and Space Manufacturing
#J-18808-Ljbffr