VIE Cyber-Security (m/f)

Job description

VIE Cyber-Security (m/f)

Airbus Helicopters Donauwörth

Airbus is a global leader in aeronautics, space and related services. In 2017, it generated revenues of € 67 billion and employed a workforce of around 130,000. Airbus offers the most comprehensive range of passenger airliners from 100 to more than 600 seats. Airbus is also a European leader providing tanker, combat, transport and mission aircraft, as well as Europe's number one space enterprise and the world's second largest space business. In helicopters, Airbus provides the most efficient civil and military rotorcraft solutions worldwide.

Our people work with passion and determination to make the world a more connected, safer and smarter place. Taking pride in our work, we draw on each other's expertise and experience to achieve excellence. Our diversity and teamwork culture propel us to accomplish the extraordinary - on the ground, in the sky and in space.

Description of the job

The Volunteer for International Experience (VIE) program is an international program sponsored by the French Ministry of Economy, Finance and Employment, open to Airbus to offer young professionals the opportunity to have valuable paid work experience abroad in a technical or business function.

We are looking for highly motivated graduates aged 18 to 28 years, who are citizens of the European Union (all E.U. nationals, plus Norway, Iceland and Liechtenstein). Candidates meeting these criteria and interested in a VIE, please register before your 28th birthday on the website www.civiweb.com. For graduates who would be interested in a career with Airbus, this could be the start of a rewarding future in a dynamic and forward-thinking sector.

The VIE is a specific contract, under Business France's eligibility criteria. For further information, more details can be found on www.civiweb.com and from www.airbus.com/int/en/people-careers/students-graduates.

Desired profile

Tasks & accountabilities

For Airbus Helicopters in Donauwörth within the department Security Information Management we are looking for a VIE Cyber Security (m/f).

Start: 1. June 2018
Duration: 24 months

There are two main missions to this position:

1) Security of the Product Industrial Tools & Systems (PITS)
In the Information Management Security department, the Cyber-Expert will contribute to ensure and continuously improve the Airbus Helicopters Industrial Control Systems Security. This job interfaces in between the Information Management technologies and the aircraft manufacturing.

The main responsibilities for this mission are:

·  Compliance and vulnerability management
·  Security Incident Management,
·  Security risk assessment
·  Propose security improvements

2) Penetration tests
The Cyber-Expert will plan, perform and/or manage penetration tests in order to assess the Information System exposure to cyber threats. Simulated attacks on networks, firewalls, operating systems and applications while respecting the ethical rules are part of the job. The Cyber-Expert will make sure not to harm the availability, the integrity and the confidentiality of the systems.

The main responsibilities for this mission are:

·  Identify weaknesses in the systems
·  Select, design, create or order, document and maintain suitable testing tools
·  Document all actions all along the testing process
·  Report accurately on the findings and associated risks
·  Manage the communication of the findings and risks to a range of stakeholders with the high level of confidentiality required
·  Define with the Security Operation Centre (SOC) team efficient detection mechanisms
·  Propose remediation actions and/or security improvements
·  Follow-up the implementation of the remediation plans
·  Keep up to date with latest testing and ethical hacking methods

Required skills

You offer:

·  You have a University degree in Information Technology or similar experience
·  It is welcome if you have knowledge of standards (ISO 27005, BSI Std. 100-3, NIST SP 800-30)
·  You ideally already had a first contact with the industrial IT environment
·  You have a good understanding of network protocols
·  You already have some experience in Information security architecture and penetration testing
·  You have scripting and programming experience
·  It is beneficial if you know how to assess risks and how to handle security Incidents
·  You are aware of ethical dimensions of hacking
·  You are acknowledged for your discreetness
·  You show technical curiosity and have a self-learning attitude
·  You are diplomatic and are able to explain findings to non-technical professionals
·  You speak English to negotiation level and it is a plus, if you speak German or any other language as well
·  You are a good team player, have excellent communication skills, and are able to work independently