Security Manager - IRIS2

Hispasat, as part of the SpaceRISE consortium, is responsible for the technical implementation and ensuring the success of the IRIS² project, leveraging its extensive experience in satellite communications. This collaboration is essential to provide secure and reliable high-performance communication solutions to the European Union and its member states.

To be part of this project, we are looking for a Security Manager whose responsibilities will be as follows:

• Review of functional and contractual documentation, related to ground architectural diagrams, requirement lists and SoW, etc.
• Analyze the documentation from cyber-security and information-protection perspective, the relevant requirements and contribute to its finalization as appropriate
• Analyze and trade-off on security architecture choices, with focus on technologies for encryption, Key Management Facility and key distribution, anti-jamming, along with their procurement and deployment, by pursuing cost- and time-efficient accreditations.
• Support the project team from cyber-security and information-protection perspective on the requirement compliance analysis, implications on infrastructure implementation and verification and validation perspectives.
• Support the project team regarding cybersecurity audits and regular security upgrades required on the system.
• Together with the project team and external partners, review, analyze and update security documentation.
• Contribute to the specification and review the relevant plans for implementation of the operational sites from the perspective of cybersecurity and security protection.
• Along institutional contract milestone plans (ESA, EC), own or contribute as needed to the preparation and closure of reviews.
• Report to Project Manager.
• Bachelor/Master’s Degree in either Telecommunications Engineering, Network Engineering, Cybersecurity Engineering
• +5 years’ experience in cybersecurity engineering activities or secure encryption, preferably in the satellite communication domain
• Proven experience in working with institutional customers or national governmental institutions, and more specifically with engineering of security risk management, security threats & incidents, security vulnerabilities, malware analysis
• Sound knowledge of security technologies, such as encryption technologies, secure Authentication-Authorization-Accounting technologies, Key Management Facility, Security Information and Event Management (SIEM), Security Orchestration and Automated Response (SOAR)
• Sound knowledge of ISO 27000 Security standards, ECSS
• Security engineering experience acquired in programmes covering at the maximum possible extent the follwoing ground infrastructure: satellite control center, IT & Datacentres, 5G systems, OSS/BSS, terrestrial fixed and mobile networks
• Native to an EU member state and willing to undergo an EU secret clearance process.
• Fluency in English, both written and spoken, any other European language is considered as an asset
• Location: Madrid