NAS Cybersecurity Engineer

Location: Gorgonzola, Italy

Thales people architect solutions that are relied upon to deliver operational advantage at every decisive moment throughout the mission. Defence and armed forces customers rely on us to deliver the full range of defensive systems for land, sea, and air. From early warning, to threat neutralisation, our platforms cover all levels from very short-range systems, to extended protection across the entire battle-space including Airspace Mobility Solutions, Vehicles and Tactical Systems and Missile Defence, Optronics, and Radar. Gorgonzola hosts Navigations Air Systems (NAS) domain. The activity of NAS domain: avionics, navigation and radar systems for civil air traffic and technologies supporting the activities of civilian and military pilots, ATC controllers and technicians of several airlines, air traffic control agencies and Air Force around the world. Italy is the Group’s Competence center for the design, production and delivery of Navigation Aids products and Competence Centre for the delivery of non-Radar Surveillance Products.

• Identify and define fundamental security requirements for solution elements or components.
• Contribute to the allocation of security requirements and establish verification criteria.
• Support cybersecurity risk assessment activities to identify potential threats and vulnerabilities.
• Assist in the development of technical solutions that comply with security rules, regulations, and specific constraints.
• Ensure that design, development, and verification processes adhere to established security requirements.
• Participate in solution integration and verify that solutions meet security requirements by performing analyses and tests.
• Conduct penetration testing campaigns and vulnerability assessments on products.
• Perform test campaigns and scans to identify vulnerabilities in networks and systems.
• Analyze vulnerabilities and assist security teams in managing and responding to security incidents.
• Prepare and document standard operating procedures and protocols for security processes.
• Develop ad hoc solutions to integrate open-source or commercial security tools to mitigate vulnerabilities and automate repeatable tasks.
• Configure security features on Windows and Linux hosts.
• Configure and troubleshoot security infrastructure devices, including firewalls.

• Must have:
• Bachelor’s or Master’s degree in Computer Science, Information Security, Engineering, or a related field.
• Minimum of 3 years of proven experience in cybersecurity engineering, security operations, or similar roles; or a PhD (Doctorate) in a relevant field.
• Strong understanding of network protocols, architectures, and security technologies, including firewalls, proxies, and VPNs.
• Hands-on experience designing, building, and maintaining security solutions such as firewalls, intrusion detection systems, antivirus software, authentication systems, log management, and content filtering.
• Practical experience in operating system security and system hardening techniques.
• Experience with network security, networking technologies, and security monitoring tools.
• Familiarity with vulnerability management methodologies, security incident response processes, and digital forensics.
• Excellent analytical and problem-solving skills.
• Effective communication skills, both written and verbal, with the ability to document procedures and collaborate across multidisciplinary teams.
• Fluency in English.