Security Manager - IRIS2

Hispasat, as part of the SpaceRISE consortium, is responsible for the technical implementation and ensuring the success of the IRIS² project, leveraging its extensive experience in satellite communications. This collaboration is essential to provide secure and reliable high-performance communication solutions to the European Union and its member states.

To be part of this project, we are looking for a Security Manager whose responsibilities will be as follows:

• Review functional and contractual documentation related to ground architectural diagrams, requirement lists, and SoW.
• Analyze documentation from a cyber-security and information-protection perspective, contributing to finalization as appropriate.
• Analyze and trade-off on security architecture choices, focusing on technologies for encryption, Key Management Facility, and key distribution, anti-jamming, along with their procurement and deployment, by pursuing cost- and time-efficient accreditations.
• Support the project team from a cyber-security and information-protection perspective on requirement compliance analysis, implications on infrastructure implementation, and verification and validation perspectives.
• Support the project team regarding cybersecurity audits and regular security upgrades required on the system.
• Review, analyze, and update security documentation with the project team and external partners.
• Contribute to the specification and review of relevant plans for implementation of operational sites from the perspective of cybersecurity and security protection.
• Along institutional contract milestone plans (ESA, EC), own or contribute as needed to the preparation and closure of reviews.
• Report to the Project Manager.

The minimum requirements for this position include:

• Bachelor's/Master’s Degree in Telecommunications Engineering, Network Engineering, or Cybersecurity Engineering.
• 5 years’ experience in cybersecurity engineering activities or secure encryption, preferably in the satellite communication domain.
• Proven experience working with institutional customers or national governmental institutions, specifically in security risk management, security threats & incidents, security vulnerabilities, and malware analysis.
• Sound knowledge of security technologies, such as encryption technologies, secure Authentication-Authorization-Accounting technologies, Key Management Facility, Security Information and Event Management (SIEM), and Security Orchestration and Automated Response (SOAR).