The European Union Agency for the Space Programme (EUSPA) is an operational EU Agency that provides safe and secure European satellite navigation services, promotes the commercialization of Galileo, EGNOS, and Copernicus data and services. It also coordinates the EU’s forthcoming governmental satellite communications programme GOVSATCOM. EUSPA is also responsible for the security accreditation of all the Components of the EU Space Programme. For more information on the EUSPA and the EU Space Programme, click here.
A core task for EUSPA is security of the EU Space Program. The Security Authority (SAU) Department proactively contributes to the fulfilment of the missions of the Agency by providing the security expertise in order to (1) ensure that the components of the Space Program are defined, implemented and exploited securely, (2) achieve successful security accreditation of the components of the Program, (3) ensure a wide, secure and sustainable use of the services provided by the different components, (4) ensure the protection of classified information’s.
In particular, the GSMC Local Security Office (GSMC LSO) implements and monitors the correct implementation of the applicable security rules, as laid down in Commission Decision (EU, Euratom) 2015/444. In coordination with the Central Security Office (CSO) and the Security Offices of the other Agency sites, the GSMC Local Security Office supports the functions of the Security Authority of the Agency ensuring the on-site implementation of the security rules, managing the GSMC EU Classified Information (EUCI) Registries and COMSEC accounts, supporting the performance of the GSMC operations and in maintaining the accreditation of the Agency’s infrastructure and IT assets deployed at the GSMC sites.
The place of employment for this position is Saint-Germain-en-Laye, one of the more affluent suburbs of Paris. With its historic museum and impressive castle, the city is less than 32 kms from romantic Paris and even less from the football stadium Parc des Princes, the home of Paris Saint-Germain club.
We are looking for a Local Information Security Officer (LISO) to join the security team in the Galileo Security Monitoring Centre located in France (GSMC-FR). The LISO is the main point of contact with the IT security team and performs the responsibilities independently from system owners and data owners. The jobholder shall report to the GSMC Local Security Office Team Leader and will support the activities related to the security of the GSMC Communication and Information Systems (CIS).
The jobholder’s tasks and responsibilities include (without limitation) and subject to adjustment by his/her line manager:
The LISO will be also responsible to enforce the IT security of the information system (IS) of the building of the GSMC [i.e. the Access Control System (ACS) and Building Management System (BMS)] and enforcement of the rules set out by the French legislation, and related requirements of the French National Informatics Security Agency (ANSSI) for vital information systems IT (‘Système d’information d’importance vitale’).
In that framework, the LISO should:
Language use: The above tasks and responsibilities will be conducted in the English language, however relevant interactions with the local authorities require the knowledge of the French language.
As a member of the GSMC Local Security Office, the LISO may at times be required to support other team members in their duties, especially in tasks regarding the management of EUCI, management of physical security, raising general security awareness of the EUSPA staff, assistance to the COMSEC Officer or Crypto Custodian in the handling of cryptographic key material. In that case, appropriate additional training will be provided should the need to support these roles arise.
The Local Information Security Officer shall be available for regular on-call duties outside normal working hours (availability by phone with ability to come back to the site within predefined elapsed times that will be established to meet operational external requirements). The duties associated with such ‘on-call’ shall be of a nature similar to those of the main duties of the post, but will also include a wider set of activities aimed at ensuring the security and technical availability of the site focussing on feared events and their related initial reaction procedures.
The jobholder may be required to obtain and maintain a certification for the related duties.
The selection procedure is open to applicants who satisfy the following eligibility criteria, on the closing date for application:
European Union Agency for the Space Programme - EUSPA