Hybrid | Dun Laoghaire, Co. Dublin | Full-time or Part-time | Flexible Hours

We have an exciting new opportunity for a new full-time or part-time, flexible, hybrid role in a busy aeronautical telecommunications software company based in Dun Laoghaire, Co Dublin. You are passionate about cyber security and you have experience in deploying/maintaining an ISO27001 ISMS system.

The Cyber Security Engineer will work with the Airtel team of software and quality engineers and take ownership of the Airtel Company and the Product Security Policy. They will be responsible for ensuring processes and procedures meet Safety and Security requirements in Airtel and adhere to statutory and regulatory requirements. This involves conducting risk assessments, defining the software security approach, identifying potential vulnerabilities, and implementing effective security controls.

• Co-ordinate security requirements, enhancements or replacement, of systems and equipment to meet the security specifications and requirements of safety and business cases.
• Ensure the Product Security Policy meets EASA ATM/ANS operational requirements and is in accordance with industry best practices and in compliance with Regulatory requirements.
• Provide guidance and support, in the management and provision of technical services and the secure design of ATM Networks & Systems, in line with industry best practice.
• Conduct risk assessments to ensure adherence to standards, guidelines, statutory and regulatory requirements.
• Investigate security incidents and provide recommendations for their future prevention, to inform the incident response strategy.
• Develop and maintain good working relationships with all key stakeholders, regulatory and oversight bodies.
• Implement the security strategy through top solution design with hands-on configuration and troubleshooting.
• Identify areas for improvement and proactively manage such initiatives to closure.
• Develop in-house capability to identify system restore and repair procedures for critical systems failure scenarios.
• Develop disaster recovery scenarios and test them.
• Develop security lab areas in conjunction with engineering management.
• Develop a secure infrastructure, including the server room, in conjunction with engineering management.
• Develop and enhance the Incident Response and Recovery process and associated procedures.
• Develop strong governance processes to drive security designed solutions in consultation with the relevant engineering subject matter experts and management.
• Develop software security coding standards/process, working closely with Airtel software engineers.
• Manage Airtel Information Management System (ISMS) policies and processes to ISO27001.
• Attend relevant fora as required.
• Other duties as may be assigned, where appropriate.
• Develop and manage the work program to adhere to the applicable aviation security regulations.
• Oversee, work closely with, manage, liaise, evaluate and maintain the relationship with relevant authorities.
• Manage ISMS Management review process and report on ISMS performance.

• Understands and conforms to the Quality Management System in Airtel ATN.
• Contributes to process improvements particularly in Information Management System Management.

• Take ownership of personal development.
• Mentor Airtel staff in cyber security awareness.
• Mentor Airtel Software Engineers in Safe software as required.
• Sit on interview panels as a subject matter expert.
• Seeks expert advice from inside and outside the company as and when necessary to complement own expertise.
• Keep up to date with new cyber security methodologies.

Essential

• A third level degree (Computer Science, System Engineering or related discipline).
• Safety, compliance and/or regulatory experience working with cyber security responsibilities.
• Experience of and ability to work in a GRC (Governance/Risk/Compliance) role.
• Demonstrable experience or knowledge of cyber security best practices, security controls (firewalls, IDS and data encryption algorithms), IP networks infrastructure (routers, switches).
• Strong analytical and problem-solving skills.
• Ability to think critically and identify risks.
• Excellent interpersonal and communication skills.
• Proven ability to work independently and as part of a team.
• Excellent customer focus.
• ISO27001 experience.

Desirable

• Demonstrable experience/knowledge of:
• Risk assessment process.
• Working with regulatory authorities.
• Drafting procedures to be used in a regulated environment.
• Compliance or quality monitoring.
• National and EU/ICAO regulatory framework and its applicability to ATM/ANS.
• Audit process and audit compliance tools.
• Knowledge/experience of NIST CSF, CIS benchmark, and other cybersecurity standards.
• Delivery of training on procedures/process.

Note: This job description is not intended to be all-inclusive. Employee may perform other related duties as required to meet the ongoing needs of Airtel