Non-real-time Cyber-security Support Engineer [512]

Company Description

HE Space is a successful international space company. For 40 years, we have been supporting our customers with qualified experts in the field of engineering, science and administration. HE Space has joined forces with CS Group to lead the engineering and digital space market in Europe and to provide highly skilled consulting.

Job Description

As a member of a team providing services to EUSPA you will be providing non-real-time Cyber-security support to real time activities of the Security Operations Centre at GSMC, in particular, for:

• Support the review of cyber deliverables under responsibility of the Cyber SOC (lockdown reports, hardening reports, vuln reports, patch reports, cyber plans);
• Operations of non-real-time tools within the Cyber SOC (VMT, NMT, CTI platform, Analysis platform);
• Contribute to regular internal pentesting activities;
• Contribute to Cyber Review Boards;
• Contribute to SOC cyber reports;
• Keep GSMC Threat Analysis archive and related procedures up to date and detailed below.

The set of activities are regrouped as follows:

Vulnerability management services:

• Vulnerability management for the full life-cycle of the cyber-vulnerabilities of the systems under GSMC operations scope;
• Support the definition of mitigation strategies to reduce the risk and propose adequate security measures;
• Support the management of the network maps, ensure systematic examination of the operational infrastructure to detect and identify security deficiencies and new vulnerabilities;
• Support to pentesting activities.

Forensics Analysis services:

• Providing advice to the SOM on the availability and reliability of the digital evidence;
• Definition of procedures to acquire digital evidence from multiple ICT platforms in a manner compliant with the legal regulations applicable to the Galileo Programme and to ensure its chain of custody;
• Providing advice on new tools and technologies in the field of digital forensics;
• Execution of the forensic procedures when required;
• Provide support to the SOM Operations team on any other tasks under its responsibility;
• Keep SOM Forensics Analysis archive and related procedures up to date.

Malware Analysis services:

• Reverse engineering of malicious code in order to understand its mechanics and behaviour;
• Identify and document malware characteristics in terms of Indicators of Compromise (IOCs) and their declination into updates to the configuration of the Galileo security infrastructure;
• Working closely with the SOM specialist on Threat Analysis in supporting the threat landscape maintenance in terms of evolutions of Tactics, Techniques and Procedures (TTPs);
• Keep SOM (Cyber SOC) Malware Analysis archive and related procedures up to date;
• Support to R/T cyber operations and any other activity within the SOM Operational Team as deemed necessary.

Cyber Threat landscape analysis:

• Collect the CTI products, including Open Source Intelligence (“OSINT”) sources, CERTs advisories and CTI feeds and reports to be processed for integration into Security Operations Centre (SOC) systems, and produce regular threat intelligence reports, for threats that could be directed to the Union Space Programme;
• Contribute to the creation and improvement of the security correlation rules based on threat intelligence, vulnerability and security incident reports;
• Support the definition and maintenance of a threat intelligence reports methodology.

Qualifications

You will have the following qualifications and relevant experience:

• Bachelor’s in aerospace engineering or a relevant discipline;
• Minimum 2 years of experience in cyber security;
• Customer focus mentality;
• Fluency in English is mandatory; knowledge of another European language is an advantage.

Additional Information

This job is located in Prague, Czech Republic.

If you think you have what it takes for this job, please send your CV (in English and in Word or PDF) to Leandros Foteinias, by clicking on the button “Apply for this job” quoting job CZ-HP-512.

An exciting and dynamic international working environment awaits you!

Inclusive and committed employer, our company works every day to combat all forms of discrimination and promote a respectful working environment. That's why, committed to gender diversity and overall inclusivity, we encourage all applications and profiles.