ESA Accreditation and Security Assurance Manager (2 posts)
24 days ago
Vacancy in the Director General's Services.
ESA is an equal opportunity employer, committed to achieving diversity within the workforce and creating an inclusive working environment. We therefore welcome applications from all qualified candidates irrespective of gender, sexual orientation, ethnicity, beliefs, age, disability or other characteristics. Applications from women are encouraged.
This post is classified A2-A4 on the Coordinated Organisations’ salary scale.
ESRIN, Frascati, Italy
ESA Accreditation and Security Assurance Manager in the ESA Security Oﬃce (ESO), Department of Foresight, Strategy and Coordination, Director General’s Services. Reporting to the Head of the ESA Security Oﬃce as ESA Accreditation and Security Assurance Manager, you will be tasked with managing ESA’s critical security activities and space programmes within the frame of accreditation and security assurance domain in synergy and in support of relevant ESA Directorates.
You will contribute to the Agency’s development of an integrated centralised ESA security approach in terms of Accreditation and Security Assurance.
Your tasks and responsibilities will include:
- managing the security accreditation/certiﬁcation process for space programmes under ESA responsibility, up to their release for the accreditation/certiﬁcation statement;
- supporting the directorates in the accreditation/certiﬁcation process for space programmes under third-party responsibility, up to the preparation of the accreditation/certiﬁcation dossier to be presented and approved by a third-party accreditation board;
- ensuring, in both cases, that the accreditation strategy and process is coherent and harmonised among internal stakeholders and the related space projects with respect to the ESA security regulations, directives and strategy;
- coordinating the ESO team integrated within speciﬁc space projects, carrying out the overall accreditation/certiﬁcation process;
- coordinating the ESO team integrated within speciﬁc space projects performing security assurance supervising the correct development and implementation process;
- performing a risk analysis and threat assessment to evaluate, from the beginning, the space project-related security posture and potential residual risk;
- devising, for each space project, an accreditation/certiﬁcation strategy;
- performing a security assurance engineering analysis in line with the ESA security framework to establish and propose the basic system security technological posture and a minimum set of security requirements;
- establishing an accreditation/certiﬁcation qualiﬁcation plan, identifying the design solution and the requirements to be qualiﬁed against the accreditation process;
- performing audit and penetration tests to monitor and supervise the speciﬁc space project cyber security implementation level;
- performing a security analysis of any baseline deviation potentially aﬀecting the accreditation/certiﬁcation of the space system;
- supervising the correct implementation of the cyber security strategy for each of the space programmes providing support to the Head of ESO in all necessary security-related matters;
- providing support to the Head of ESO in maintaining the relationship with the EU institutions, ensuring coherence and harmonisation between the EU accreditation body and ESA accreditation process;
- maintaining the relationship with ESA directorates, ensuring coherence and harmonisation between the internal stakeholder security constraints and the ESO accreditation process;
- reviewing, from a security perspective, any partnerships with third parties and the establishment of related implementing cooperative frameworks;
- providing support to the Head of ESO in devising security-related cooperation strategies and joint objectives with ESA Member States, the European Union or other third parties involved in security;
- maintaining up-to-date knowledge of space and security in Member States and European institutions to remain informed of any evolutions that would be of relevance to ESA’s activities and programmes.
A master's in a relevant engineering discipline is required for this post.
You must have signiﬁcant professional experience in a similar technical role.
One or more of the following would be an asset:
- Experience with CMS (content management systems)
- Experience with ECM (enterprise content management)
- Experience with document management systems and technologies (such as Microsoft SharePoint)
- Experience with AI/ML in the domain of NLP (natural language processing)
For behavioural competencies expected from ESA staff in general, please refer to the ESA Competency Framework.
The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.
Applicants must be eligible to access technology and hardware which is subject to European and US export control regulations and for security clearance by their national security administrations.
The Agency may require applicants to undergo selection tests.
At the Agency we value diversity and we welcome people with disabilities. Whenever possible, we seek to accommodate individuals with disabilities by providing the necessary support at the workplace. The Human Resources Department can also provide assistance during the recruitment process. If you would like to discuss this further please contact us email [email protected].
Please note that applications are only considered from nationals of one of the following States: Austria, Belgium, the Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Luxembourg, the Netherlands, Norway, Poland, Portugal, Romania, Spain, Sweden, Switzerland, the United Kingdom and Canada, Latvia, Lithuania, Slovakia and Slovenia.
According to the ESA Convention, the recruitment of staff must take into account an adequate distribution of posts among nationals of the ESA Member States*. When short-listing for an interview, priority will first be given to internal candidates and secondly to external candidates from under-represented Member States*.
In accordance with the European Space Agency’s security procedures and as part of the selection process, successful candidates will be required to undergo basic screening before appointment conducted by an external background screening service.
In principle, recruitment will be within the advertised grade band (A2-A4). However, if the selected candidate has less than four years of relevant professional experience following the completion of the master’s degree, the position may be filled at A1 level.
*Member States, Associate Members or Cooperating States.