Cyber Security Architect

The Cyber Security Architect will work closely with the solution architects and enterprise architects to improve and maintain the cyber security of NAVBLUE’S products, services and infrastructure. The ideal candidate will play a critical role in designing and implementing cybersecurity frameworks to align with the business objectives and mitigate potential threats.

Main Responsibilities :

• Perform Security Risk and Threat analysis during the initial design and the Software Development Life Cycle planning, analysis, and design phases. Providing recommendations and requirements for mitigating any security weaknesses identified while defining Non-Functional Requirements in coordination with Solutions Architects.
• Ensure Security by Design is embedded within the Software Development Life Cycle, while ensuring that all security requirements have been applied before product or function release.
• Analyse and interpret security scan results and vulnerability reports to develop prioritized remediation strategies, working closely with IT, Development and Hosting teams to address vulnerabilities effectively
• Engineer and implement security controls based on industry standards while continuously evaluating and enhancing our security infrastructure
• Collaborate with IT, DevOps and SecOps teams to architect, configure and implement security monitoring and defense tools (is. SIEM, IDS / IPS, ASM, WAF) to safeguard against security breaches, cyber threats and unauthorized access
• Report on and assist with all security events and incidents.
• Oversee Security testing, including penetration testing and vulnerability scanning
• Ensure products compliance with security standards and regulations
• Ensure NAVBLUE Security strategy deployment within technical operations
• Ensure effective synchronization and alignment with Airbus Security Organization

Education :

• Bachelor’s degree in technical discipline
• Training and education in cyber security principles

Experience :

• 5+ years of Security Architecture / Engineering, and / or Network architecture, and / or Security Operations and / or Experience in software development; software architecture an asset.

Licensure / Certifications :

• Industry certification (i.e. AWS CSA, ISC2 ISSAP, SABSA SCF or similar)

Knowledge, Skills, Demonstrated Capabilities & Competencies :

• Familiarity with various security certifications such as ISO2700, NIST, etc., sufficient to provide immediate leadership and guidance to individuals, teams and departments in meeting the organization’s security requirements
• Excellent management, analytical and problem-resolution skills
• Working knowledge of the SDLC and AWS network architecture
• Knowledge of the SAFe Agile method would be an asset
• Understanding of security testing in the software pipeline (SAST, DAST, SCA, RASP)
• Knowledge of STRIDE, DICE and other threat and risk frameworks
• Knowledge of AWS tools
• Proven experience managing multiple projects simultaneously
• Practical interpersonal skills; adaptable to all levels of the organization
• Ability to contribute in a collaborative environment

Communication Skills (Spoken, Written, Influencing, Proficiency in Other Languages) :

• Capable of influencing individuals at all levels of the organization to drive and implement change while identifying and minimizing the impact of risks

Technical Systems Proficiency :

• Security Management Tools (email filtering, vulnerability scanning tools, security dashboards, etc.)
• Cloud security management tools like CNAPP, CSPM, CWPP, and CIEM.
• Security risk assessment methodology (EBIOS RM)
• Security Requirement Definition and Review

Travel Required :

• 10-15% Domestic and International

We thank all applicants for applying. Only selected applicants will be contacted.

Navblue is committed to creating an environment and a culture where everyone feels like they belong no matter who they are or where they are from. We are committed to providing equal employment opportunities to all individuals based on job-related qualifications and ability to perform a job. We do not discriminate against any employee or applicant for employment because of race, colour, sex, age, national or ethnic origin, religion, sexual orientation, gender identity or expression, marital status, family status, genetic characteristics, record of offences, and basis of disability or any protected class. Accommodations will be available on request for candidates throughout the entire recruitment and selection process.

About Us :

NAVBLUE, an Airbus Company, is a leading global provider of flight operations solutions, including aeronautical charts, navigation data solutions, flight planning, aircraft performance software (take-off / landing, weight and balance), and crew planning solutions.You’ll be able to shape the future of the digital aviation industry by working on several of the best in the industry flagship products enabling pilots, dispatchers, flight engineers and other aviation personnel on a daily basis to deliver safe, efficient, and reliable flight operations all over the world. You’ll have the opportunity to support millions of flights each year and help NAVBLUE customers maximize efficiency, reduce costs, ensure compliance with complex national and international safety regulations, and effectively deliver their services.

You’ll join a team with a focus on digital and collaborative innovation that is passionate and customer-focused. Over the last few years, Airbus has been supportive of various initiatives such as Going Digital, Performance Based Navigation Services, Air Traffic Management Modernization Programs, FlySmart on iOS and other digital projects related to new aircraft technologies; the launch of NAVBLUE was therefore a natural step to further develop its Flight Operations and Air Traffic Management Portfolio.

NAVBLUE is a fully owned subsidiary of Services by Airbus, fueled by the agility of Airbus ProSky and Navtech (acquired in 2016), and the pioneering spirit of Airbus, NAVBLUE was created in July 2016 with one mission : lead aviation into the digital age.

NAVBLUE is based in Hersham (UK), Cardiff (UK), Toulouse (France), Waterloo, ON (Canada), Bangkok (Thailand), Malmö (Sweden), and Gdańsk (Poland) with other offices all around the world.