ATR Cybersecurity Coordination (H/F) AIRBUS
Toulouse (31)CDITélétravail occasionnel accepté
Il y a 16 jours
Critères de l'offre
Métiers :
- Technical Architect
Expérience min :
- 6 à 10 ans
Secteur :
- Industries Aéro, Naval et Défense
Compétences :
- Anglais
Lieux :
- Toulouse (31)
Conditions :
- CDI
- Temps Plein
- Télétravail occasionnel accepté
Description du poste
**Job Description:**
* About us *
ATR is the *world's number one aircraft manufacturer in regional aviation* providing a new generation of turboprops. We are a joint venture between *two European aeronautical heavyweights, Airbus and Leonardo. *
From the world's largest cities to our planet's most remote regions*, our purpose is to deliver air travel* to people, communities and businesses in an *innovative, sustainable and modern way.*
If you strive for excellence, are driven by *ambition*, *trust *and *respect* as we are, then get your career off to a flighting start with ATR!
*Our leadership profile:*
* People Centric Entrepreneurial Inspiring Exemplary Innovative Humble *
* At ATR y **ou will work with passionate colleagues to make a difference in a human size company with attractive advantages! *
We are looking for a *ATR Cybersecurity Coordination * to come onboard in our *Digital transformation team*
* Your Mission *
You will be under the responsibility of the IS infrastructure & Architecture Manager and will mainly manage the cybersecurity scope.
*Career Path: Expert*
* Risk assessment and development of security strategies: Conduct regular assessments of information security risks, using qualitative and/or quantitative methods. Develop security strategies in collaboration with internal teams and stakeholders. Propose corrective measures
* Implementing Security Policies and Procedures: Develop and implement security policies and procedures across the organization. Ensure policies and procedures are compliant with cybersecurity regulations (PSSI) and best practices.
* Develop and execute comprehensive, innovative cyber risk services to identify and mitigate vulnerabilities, ensuring the uninterrupted operation of our information systems
* Security Incident Management: Develop security incident management plans and coordinate incident response activities. Conduct security incident investigations and provide detailed reports.
* Coordinate all cybersecurity activities towards our subcontractors.
Main activities will be:
* Detection:
* Manage SOC tools for event collection, access to security platforms, search for suspicious events, alert management, security incident monitoring workflows.
* Define and implement detection method, notification and escalation processes. He will be part of the process.
* Ensure relations and coordination with the CERT (Computer Emergency Response Team), SOC (Security Operational Center) and MCS ((Maintain safety conditions) to coordinate the various security operational teams.
* Response:
* Manage the response to cyber incidents.
* Define and implement automation response with EDR/XDR.
* Perform threat hunting: perform malware analysis in the context of threat.
* Manage the response to cyber incidents.
* Monitoring and control
* Implement, manage, control and report on vulnerability management processes (identification, assessment, prioritization and remediation).
* Analyze vulnerability scan reports and coordinate corrective actions with technical teams.
* Monitor security patches and secure configurations
* Ensure the proper execution of SOC activities in accordance with contractual commitments, by relying on the teams in place (service delivery manager, Project Manager, architects, administrators, SOC analysts, etc.),
* Guarantee the quality of the service SOC & MCS
* Technical Architect
* Act as a technical security referent in support of the project: contribute to detecting and monitoring the risks of cloud/onPremise security architecture and configuration models (IaaS, PaaS, CaaS) Cyber Security check
* Organize and/or participate to security audits or control activities of security requirements in the various phases of construction and evolution environments.
* Contribute to carrying out risk analyzes to support project teams in understanding and taking into account security requirements
* Define and implement security control scenarios with ATR SIEM, EDR & tools.
* Contribute to the establishment of a Cybersecurity culture within ATR organizations: 'Security Using Game', training, awareness and security brainstorming workshops...
* As member of infrastructure team, he may participate to several projects not directly related to security.
* About you *
- more than 10 years' Experience
- English Fluent
* Our Technical Environment: *
* Cloud: AZURE, M365
* SIEM: Splunk, Sentinel
* EDR/XDR: Defender, Trellix
* Scripting: Python, Bash, Shell...
* Programing: Python, JavaScript
* Containers: Docker, Podman, Kubernetes
* Methods: ITIL, Agile
* Security: SAML, PKI, SonarQube, Proxy, MFA, Nexus, Kerberos, Oauth, Deep Security, McAfee, 801.1X
* Standard: ISO/IEC 27001, NIST Security Framework
* Soft Skills *
- Proactive, creative, inventive,
- Curious and attentive to news solutions, way of working in all areas,
- Autonomous,
- Able to train and convince a team,
- Faculties of advanced analysis,
- Good relationship,
- Negotiation skills,
- Organized
... but above all, you are ready to take off with us to keep connecting communities and businesses and provide the best possible products and support to our customers!
* Our Recruitment Process *
* *Arab *will contact you
* Innovative and digital assessment
* To get to know you better: interview with *Frederic JACQUES* then with *Mehdi *Hr Recruiter
* What we offer *
* Highly competitive compensation package * (profit and success sharing, employee savings plan...)
* Work-life balance * (remote working, 6th week of paid leave, additional days off for family events...)
* Well-being / health * (supplementary health & welfare coverage...)
* Career paths * enabling employees to develop their skills and build a professional project
* Wide choice of development programs * for soft and hard skills
* CSE: * ATR (family and employee events) and Airbus CSE (travel, vacation camps ...)
* Diversity* *and inclusion*: Over 1200 men & women with more than 35 different nationalities work together in our teams !
ATR is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.
* A propos d'ATR *
ATR est le *premier constructeur mondial d'avions régionaux* et propose une nouvelle génération de turbopropulseurs. Nous sommes une *filiale de deux poids lourds de l'aéronautique européenne, Airbus et Leonardo. *
Des plus grandes villes du monde aux régions les plus reculées de notre planète, *notre objectif est d'assurer le transport aérien* des personnes, des communautés et des entreprises d'une manière innovante, durable et moderne.
Si vous recherchez l'excellence, si vous êtes animé par *l'ambition,* la *confiance* et le *respect,* alors faites décoller votre carrière avec ATR *! *
*Notre Leadership Profile : *
*Centré(e) sur l'humain un esprit entrepreneur inspirant(e) exemplaire innovant(e) humble*
*Vous travaillerez avec des collègues passionnés pour faire la différence dans une entreprise à taille humaine avec des avantages attractifs ! *
Nous recherchons un *coordinateur Cybersecurité *pour rejoindre notre équipe *Digital.*
* Votre mission *
Vous serez sous la responsabilité du responsable de l'infrastructure et de l'architecture SI et vous gérerez principalement le périmètre de la cybersécurité.
*Career Path: Expert*
*Évaluation des risques et élaboration de stratégies de sécurité* : Effectuer des évaluations régulières des risques liés à la sécurité de l'information, en utilisant des méthodes qualitatives et/ou quantitatives. Élaborer des stratégies de sécurité en collaboration avec les équipes internes et les parties prenantes. Proposer des mesures correctives.
* *Mise en œuvre des politiques et procédures de sécurité* : Développer et mettre en œuvre des politiques et procédures de sécurité au sein de l'organisation. S'assurer que les politiques et procédures sont conformes aux réglementations en matière de cybersécurité (PSSI) et aux meilleures pratiques.
* *Développement et exécution de services de gestion des risques cybernétiques complets et innovants* pour identifier et atténuer les vulnérabilités, assurant…
* About us *
ATR is the *world's number one aircraft manufacturer in regional aviation* providing a new generation of turboprops. We are a joint venture between *two European aeronautical heavyweights, Airbus and Leonardo. *
From the world's largest cities to our planet's most remote regions*, our purpose is to deliver air travel* to people, communities and businesses in an *innovative, sustainable and modern way.*
If you strive for excellence, are driven by *ambition*, *trust *and *respect* as we are, then get your career off to a flighting start with ATR!
*Our leadership profile:*
* People Centric Entrepreneurial Inspiring Exemplary Innovative Humble *
* At ATR y **ou will work with passionate colleagues to make a difference in a human size company with attractive advantages! *
We are looking for a *ATR Cybersecurity Coordination * to come onboard in our *Digital transformation team*
* Your Mission *
You will be under the responsibility of the IS infrastructure & Architecture Manager and will mainly manage the cybersecurity scope.
*Career Path: Expert*
* Risk assessment and development of security strategies: Conduct regular assessments of information security risks, using qualitative and/or quantitative methods. Develop security strategies in collaboration with internal teams and stakeholders. Propose corrective measures
* Implementing Security Policies and Procedures: Develop and implement security policies and procedures across the organization. Ensure policies and procedures are compliant with cybersecurity regulations (PSSI) and best practices.
* Develop and execute comprehensive, innovative cyber risk services to identify and mitigate vulnerabilities, ensuring the uninterrupted operation of our information systems
* Security Incident Management: Develop security incident management plans and coordinate incident response activities. Conduct security incident investigations and provide detailed reports.
* Coordinate all cybersecurity activities towards our subcontractors.
Main activities will be:
* Detection:
* Manage SOC tools for event collection, access to security platforms, search for suspicious events, alert management, security incident monitoring workflows.
* Define and implement detection method, notification and escalation processes. He will be part of the process.
* Ensure relations and coordination with the CERT (Computer Emergency Response Team), SOC (Security Operational Center) and MCS ((Maintain safety conditions) to coordinate the various security operational teams.
* Response:
* Manage the response to cyber incidents.
* Define and implement automation response with EDR/XDR.
* Perform threat hunting: perform malware analysis in the context of threat.
* Manage the response to cyber incidents.
* Monitoring and control
* Implement, manage, control and report on vulnerability management processes (identification, assessment, prioritization and remediation).
* Analyze vulnerability scan reports and coordinate corrective actions with technical teams.
* Monitor security patches and secure configurations
* Ensure the proper execution of SOC activities in accordance with contractual commitments, by relying on the teams in place (service delivery manager, Project Manager, architects, administrators, SOC analysts, etc.),
* Guarantee the quality of the service SOC & MCS
* Technical Architect
* Act as a technical security referent in support of the project: contribute to detecting and monitoring the risks of cloud/onPremise security architecture and configuration models (IaaS, PaaS, CaaS) Cyber Security check
* Organize and/or participate to security audits or control activities of security requirements in the various phases of construction and evolution environments.
* Contribute to carrying out risk analyzes to support project teams in understanding and taking into account security requirements
* Define and implement security control scenarios with ATR SIEM, EDR & tools.
* Contribute to the establishment of a Cybersecurity culture within ATR organizations: 'Security Using Game', training, awareness and security brainstorming workshops...
* As member of infrastructure team, he may participate to several projects not directly related to security.
* About you *
- more than 10 years' Experience
- English Fluent
* Our Technical Environment: *
* Cloud: AZURE, M365
* SIEM: Splunk, Sentinel
* EDR/XDR: Defender, Trellix
* Scripting: Python, Bash, Shell...
* Programing: Python, JavaScript
* Containers: Docker, Podman, Kubernetes
* Methods: ITIL, Agile
* Security: SAML, PKI, SonarQube, Proxy, MFA, Nexus, Kerberos, Oauth, Deep Security, McAfee, 801.1X
* Standard: ISO/IEC 27001, NIST Security Framework
* Soft Skills *
- Proactive, creative, inventive,
- Curious and attentive to news solutions, way of working in all areas,
- Autonomous,
- Able to train and convince a team,
- Faculties of advanced analysis,
- Good relationship,
- Negotiation skills,
- Organized
... but above all, you are ready to take off with us to keep connecting communities and businesses and provide the best possible products and support to our customers!
* Our Recruitment Process *
* *Arab *will contact you
* Innovative and digital assessment
* To get to know you better: interview with *Frederic JACQUES* then with *Mehdi *Hr Recruiter
* What we offer *
* Highly competitive compensation package * (profit and success sharing, employee savings plan...)
* Work-life balance * (remote working, 6th week of paid leave, additional days off for family events...)
* Well-being / health * (supplementary health & welfare coverage...)
* Career paths * enabling employees to develop their skills and build a professional project
* Wide choice of development programs * for soft and hard skills
* CSE: * ATR (family and employee events) and Airbus CSE (travel, vacation camps ...)
* Diversity* *and inclusion*: Over 1200 men & women with more than 35 different nationalities work together in our teams !
ATR is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.
* A propos d'ATR *
ATR est le *premier constructeur mondial d'avions régionaux* et propose une nouvelle génération de turbopropulseurs. Nous sommes une *filiale de deux poids lourds de l'aéronautique européenne, Airbus et Leonardo. *
Des plus grandes villes du monde aux régions les plus reculées de notre planète, *notre objectif est d'assurer le transport aérien* des personnes, des communautés et des entreprises d'une manière innovante, durable et moderne.
Si vous recherchez l'excellence, si vous êtes animé par *l'ambition,* la *confiance* et le *respect,* alors faites décoller votre carrière avec ATR *! *
*Notre Leadership Profile : *
*Centré(e) sur l'humain un esprit entrepreneur inspirant(e) exemplaire innovant(e) humble*
*Vous travaillerez avec des collègues passionnés pour faire la différence dans une entreprise à taille humaine avec des avantages attractifs ! *
Nous recherchons un *coordinateur Cybersecurité *pour rejoindre notre équipe *Digital.*
* Votre mission *
Vous serez sous la responsabilité du responsable de l'infrastructure et de l'architecture SI et vous gérerez principalement le périmètre de la cybersécurité.
*Career Path: Expert*
*Évaluation des risques et élaboration de stratégies de sécurité* : Effectuer des évaluations régulières des risques liés à la sécurité de l'information, en utilisant des méthodes qualitatives et/ou quantitatives. Élaborer des stratégies de sécurité en collaboration avec les équipes internes et les parties prenantes. Proposer des mesures correctives.
* *Mise en œuvre des politiques et procédures de sécurité* : Développer et mettre en œuvre des politiques et procédures de sécurité au sein de l'organisation. S'assurer que les politiques et procédures sont conformes aux réglementations en matière de cybersécurité (PSSI) et aux meilleures pratiques.
* *Développement et exécution de services de gestion des risques cybernétiques complets et innovants* pour identifier et atténuer les vulnérabilités, assurant…
Référence : JR10315410