Trusted Jobs

Job Description

The European Union Agency for the Space Programme (EUSPA) is an operational EU Agency that provides safe and secure European satellite navigation services, promotes the commercialisation of Galileo, EGNOS, and Copernicus data and services. It also coordinates the EU’s forthcoming governmental satellite communications programme GOVSATCOM. EUSPA is also responsible for the security accreditation of all the Components of the EU Space Programme. For more information on the EUSPA and the EU Space Programme, click here.

The Information and Communication Technology & Facility Management and Logistics Department (ITF) is proactively contributing to the fulfilment of the Agency’s mission, particularly regarding all matters related to the management of the information and communication systems. Among other tasks the ITF Department is coordinating and managing the Information and Communications Technology (ICT) function, including planning and managing the implementation, operation, development, optimisation and maintenance of the ICT infrastructure for both unclassified systems and systems processing EU classified information up to SECRET UE and across all EUSPA sites and remote offices (currently Prague, Saint Germain-en-Laye, Toulouse, Brussels, Noordwijk and Madrid).

The current vacancy is for a position situated at the Agency’s headquarters in the heart of Europe – Prague – with excellent connection to numerous major European cities. The capital of the Czech Republic, in the banks of the Vltava River, is famous for its cultural life, renowned musical life, historic buildings, magical bridges, and recognised museums and monuments.

Qualifications We Are Looking For

We are looking for a highly motivated and proactive ICT Security Governance and Risk Manager to join the ITF Department.  

The jobholder will report directly to the Head of the ITF Department or his/her assignee and the tasks and responsibilities shall, in particular but not exclusively, include the following:

• Ensure the preparation, verification and compliance checks of security procedures, processes and guidelines based on EU regulations for information systems on all security classification levels from EU Unclassified to EU Secret;
• Ensure preparation of all needed inputs for the meetings of EUSPA Information Security Steering Board;
• Perform risk assessments for ICT projects by analysing current and future risks, identifying potential risks and highlight the residual risks that are affecting the agency or project stakeholders; propose risk mitigation measures;
• Contribute to the development and maintenance of the overall EUSPA’s ICT Security Strategy with long term objectives, including activities to be performed in the years ahead;
• Contribute to the maintenance of EUSPA ICT Security Policy, and develop and maintain review standards and guidelines aligned with Annex A of the ISO 27001 standard and other corporate frameworks of the EUSPA;
• Monitor the implementation of the ICT security policies, standards and guidelines to ensure ongoing compliance. Issue annual security evaluation forms or questionnaires on chosen topics of interest that shall be used to update the ICT Security Strategy and ICT Security Policy on those topics;
• Ensure that appropriate ICT security risk assessments and ICT security plans have been made and implemented;
• Contribute to the business impact assessment to identify the ICT security needs based on the required levels of confidentiality, integrity and availability of the ICT system;
• Maintain the overall lifecycle of the ITF Department risk register;
• Act as contract manager or contract owner of assigned contracts;
• Participate in drafting relevant policies, standards and procedures (ICT security, ICT Operations and other baselines);
• Contribute to the preparation of security accreditation files, as well as regularly interacting with the Agency’s Security Authority;
• Liaise with other departments, notably in the area of Administration, to ensure the execution of related corporate tasks, such as planning, reporting, administration, financial & budget management, risk management.

Recruitment Process

The selection procedure is open to applicants who satisfy the following eligibility criteria, on the closing date for application:

1. A level of education which corresponds to completed university studies attested by a diploma when the normal period of university education is four years or more
   OR
   A level of education which corresponds to completed university studies attested by a diploma and at least one year of appropriate professional experience when the normal period of university education is three years
2. In addition to the above, appropriate professional experience of at least six years after obtaining the required diploma
3. Be a national of a Member State of the European Union, Iceland or Norway
4. Be entitled to his or her full rights as a citizen
5. Have fulfilled any obligations imposed by the applicable laws concerning military service
6. Meet the character requirements for the duties involved
7. Have a thorough knowledge of one of the languages of the European Union and a satisfactory knowledge of another language of the European Union to the extent necessary for the performance of his/her duties
8. Be physically fit to perform the duties linked to the post

this job offer is not open for applications