Présentation

Description de l'emploi :

Airbus Commercial Aircraft is looking for a Cyber Monitoring SOC Specialist (L3) (f/m) to join our Cyber Security Operations Centre (the SOC) based in Toulouse, France.

You will be part of a team developing cyber threats detection rules and elaborating appropriate response scenarios to protect the entire Airbus Group against malicious cyber attacks . As part of the Detection and Response team, you will be involved in understanding the Airbus IS solutions and infrastructure, gathering the cybersecurity requirements to protect the IS solution and ultimately designing the related detection rules.

As a SOC L3 Analyst, your scope of application will include working with leading experts to protect Airbus against an ever evolving cyber threat and be part of the corporate digital security office combining; IT, industrial manufacturing, product, and people security.

Your working environment:

Global capital of aeronautics and European capital for space research, Toulouse is a dynamic city in the southwest of France served by an international airport. Ideally located between the Mediterranean sea and the Atlantic ocean and close to the Pyrenees mountains, it offers plenty of options for outdoor activities!

How we care for you:

• Financial rewards: Attractive salary, agreements on success and profit sharing schemes, employee savings plan abounded by Airbus and employee stock purchase plan on a voluntary basis.
• Work / Life Balance: Extra days-off for special occasions, holiday transfer option, a Staff council offering many social, cultural and sport activities and other services.
• Wellbeing / Health: Complementary health insurance coverage (disability, invalidity, death) . Depending on the site: health services center, concierge services, gym, carpooling application.
• Individual development: Great upskilling opportunities and development prospects with unlimited access to +10.000 e-learning courses to develop your employability, certifications, expert career path, accelerated development programmes, national and international mobility.

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.

You will be part of a multicultural team, with a significant scale, and on a worldwide perimeter including all Airbus Divisions and Affiliates.

Your challenges:

The SOC Mission is to:

• Ensure the monitoring, detection, and analysis of potential intrusions in real time and through historical trending on security-relevant data sources.
• Response to confirmed incidents, by directing use of timely and appropriate countermeasures.
• Providing situational awareness and reporting on cybersecurity status, incidents.

Within the position, you will be a Level 3 analyst of the SOC, belonging to the RUN team. Your mission is to :

• You will be accountable to design, implement, integrate measures to detect and responds Cyber Threats (ie. Advanced Persistent Threats, fraud) against Airbus to reduce company risks.
• You will support the Cyber Security department by providing operational platform and tools that follow best practices to ensure adherence to IM standard.
• Define SOC framework and processes to efficiently measure company risks.
• Design, measure and improve SOC detections and ensure its consistency/efficiency.
• Measure risk reduction and quality of service provided by SOC.
• Analyze, qualify and respond to cyber security incidents and conduct investigations.
• Build new tools and techniques to compress human-intensive tasks.
• Analyze/Crunch data to improve SOC detections strategy.
• Keep up to date with threats, anticipate needs and further evolutions.
• Be accountable for platform maintenance and upgrade, Propose and lead improvements in terms of architecture, network quality and processes.

You will report to the SOC Product Manager and interface with Country Security Officers having a direct link with all the others sites around the world (US, China, India, Middle East …) .

You will work with a wide variety of people from different internal organizational units, bringing them together to manifest controls that reflect workable compromises as well as proactive responses to current and future information security risks.

Your boarding pass:

• You have at least 3 years of experience in Cybersecurity and an educational background in IT / Information Security.
• Any certification (CISSP, CISM, ..) would be a plus.
• Experience in Data Systems Architecture.
• Experience with SPLUNK Enterprise Security, Splunk search Processing Language (SPL) .
• Knowledge in SOC referentials such as Sigma, Stix Taxii, MITRE ATT&CK.
• Good knowledge in Log Management.
• Good knowledge development in Python would be a plus.
• Previous experience working with Agile / SAFE methodologies would be a plus.
• Ability to understand technical details, capture the essence to communicate them.
• High level of autonomy and pragmatism is required.
• Negotiation level in English.

This position requires a security clearance or will require being eligible for clearance by the recognized authorities.

Not a 100% match? No worries! Airbus supports your personal growth with customized development solutions.

Take your career to a new level and apply online now!

Cet emploi exige une connaissance des risques de conformité potentiels et un engagement à agir avec intégrité, comme base de la réussite, de la réputation et de la croissance durable de la société.

Unité légale :

Type de contrat :

Niveau d'expérience :

Famille d'emplois :

En soumettant votre CV ou votre candidature, vous autorisez Airbus à utiliser et stocker des informations vous concernant à des fins de suivi de votre candidature ou de futurs emplois. Ces informations ne seront utilisées que par Airbus.
Airbus s'engage à assurer la diversité de sa main-d'œuvre et à créer un environnement de travail inclusif. Nous accueillons toutes les candidatures, quels que soient le milieu social et culturel, l'âge, le genre, l'invalidité, l'orientation sexuelle ou les croyances religieuses des postulants.

Airbus est depuis toujours attaché à l'égalité des chances pour tous. En tant que tel, nous ne demanderons jamais aucun type d’avance de frais dans le cadre d'un processus de recrutement. Toute usurpation d'identité d'Airbus à cette fin doit être signalée à emsom@airbus.com.

Chez Airbus, nous vous aidons à travailler, à vous connecter et à collaborer plus facilement et de manière plus flexible. Dans la mesure du possible, nous favorisons les modalités de travail flexibles pour stimuler la pensée innovante.