Trusted Jobs

Group 58Group 56check - FontAwesomeGroup 57Page 1Group 12

Job Description

The European Union Agency for the Space Programme (EUSPA) is an operational EU Agency that provides safe and secure European satellite navigation services, promotes the commercialization of Galileo, EGNOS, and Copernicus data and services. It also coordinates the EU’s forthcoming governmental satellite communications programme GOVSATCOM. EUSPA is also responsible for the security accreditation of all the Components of the EU Space Programme. For more information on the EUSPA and the EU Space Programme, click here.

A core task for EUSPA is security of the EU Space Program. The Security Authority (SAU) Department proactively contributes to the fulfilment of the missions of the Agency by providing the security expertise in order to (1) ensure that the components of the Space Program are defined, implemented and exploited securely, (2) achieve successful security accreditation of the components of the Program, (3) ensure a wide, secure and sustainable use of the services provided by the different components, (4) ensure the protection of classified information’s.

In particular, the GSMC Local Security Office (GSMC LSO) implements and monitors the correct implementation of the applicable security rules, as laid down in Commission Decision (EU, Euratom) 2015/444. In coordination with the Central Security Office (CSO) and the Security Offices of the other Agency sites, the GSMC Local Security Office supports the functions of the Security Authority of the Agency ensuring the on-site implementation of the security rules, managing the GSMC EU Classified Information (EUCI) Registries and COMSEC accounts, supporting the performance of the GSMC operations and in maintaining the accreditation of the Agency’s infrastructure and IT assets deployed at the GSMC sites.

The place of employment for this position is Saint-Germain-en-Laye, one of the more affluent suburbs of Paris. With its historic museum and impressive castle, the city is less than 32 kms from romantic Paris and even less from the football stadium Parc des Princes, the home of Paris Saint-Germain club. 

Qualifications We Are Looking For

We are looking for a Local Information Security Officer (LISO) to join the security team in the Galileo Security Monitoring Centre located in France (GSMC-FR). The LISO is the main point of contact with the IT security team and performs the responsibilities independently from system owners and data owners. The jobholder shall report to the GSMC Local Security Office Team Leader and will support the activities related to the security of the GSMC Communication and Information Systems (CIS).

The jobholder’s tasks and responsibilities include (without limitation) and subject to adjustment by his/her line manager:

  • Proactively identify and inform system owners, data owners and other roles with IT security responsibilities in GSMC about the IT security policy;
  • Liaise on IT-security-related issues in GSMC with the department responsible for the ICT as part of the LISO network;
  • Maintain an overview of the information security risk management process and of the development and implementation of information system security plans;
  • Advise data owners, system owners and heads of GSMC business units on IT-security-related issues;
  • Cooperate with the department responsible for the ICT in disseminating good IT security practices and propose specific awareness-raising and training programmes;
  • Report on IT security, identify shortfalls and improvements to GSMC business units;
  • Cooperate with the Local Security Officer (LSO) and the EUSPA HQ LISO as well as with the Data Protection Officer (DPO) and support the implementation of the CIS processes related to the data protection;
  • Ensure that an inventory of all classified CIS is kept and updated, with a description of the security requirements and a maintenance of the evidence demonstrating compliance to those requirements;
  • Organise compliance inspections, audits or other supervisory/monitoring instruments as necessary in order to verify that CIS service providers and system suppliers establish and implement the security measures required under security plans;
  • Contribute to the accreditation process of the EUSPA CIS handling EUCI, including the organisation of the reviews required for the accreditation process, in support of the EUSPA Security Accreditation Authority;
  • Report and contribute to handling breaches of security and compromise of sensitive or classified information; also responsible for collaborating with formal investigations as required;
  • Perform the activities related to the access control for the IT systems on the GSMC sites and maintain the access control registry;
  • Perform the audit of the IT systems according to the SecOps requirements;
  • Keep abreast of technology developments, threats and protection measures in the field of security pertaining to CIS;
  • Contribute to business continuity plans of the GSMC in areas related to his/her responsibilities.

The LISO will be also responsible to enforce the IT security of the information system (IS) of the building of the GSMC [i.e. the Access Control System (ACS) and Building Management System (BMS)] and enforcement of the rules set out by the French legislation, and related requirements of the French National Informatics Security Agency (ANSSI) for vital information systems IT (‘Système d’information d’importance vitale’).

In that framework, the LISO should:

  • Plan actions to implement the Information System Security Policy (PSSI);
  • Keep updated all application documents (process, procedures, etc.) of the PSSI;
  • Participate to Cyber and Configuration Control Board;
  • Act as system administrator for IS of the building of GSMC-FR;
  • Liaise and work closely with system maintainer and secmon provider;

Language use: The above tasks and responsibilities will be conducted in the English language, however relevant interactions with the local authorities require the knowledge of the French language.

As a member of the GSMC Local Security Office, the LISO may at times be required to support other team members in their duties, especially in tasks regarding the management of EUCI, management of physical security, raising general security awareness of the EUSPA staff, assistance to the COMSEC Officer or Crypto Custodian in the handling of cryptographic key material. In that case, appropriate additional training will be provided should the need to support these roles arise.

The Local Information Security Officer shall be available for regular on-call duties outside normal working hours (availability by phone with ability to come back to the site within predefined elapsed times that will be established to meet operational external requirements). The duties associated with such ‘on-call’ shall be of a nature similar to those of the main duties of the post, but will also include a wider set of activities aimed at ensuring the security and technical availability of the site focussing on feared events and their related initial reaction procedures.

The jobholder may be required to obtain and maintain a certification for the related duties.

Recruitment Process

The selection procedure is open to applicants who satisfy the following eligibility criteria, on the closing date for application:

  1. Have a level of education which corresponds to completed university studies of at least three years attested by a diploma
  2. Be a national of a Member State of the European Union, Iceland or Norway      
  3. Be entitled to his or her full rights as citizen
  4. Have fulfilled any obligations imposed by the applicable laws concerning military service
  5. Meet the character requirements for the duties involved
  6. Have a thorough knowledge of one of the languages of the European Union and a satisfactory knowledge of another language of the European Union to the extent necessary for the performance of his/her duties
  7. Be physically fit to perform the duties linked to the post

Apply Now

The Company

Trusted employer badge

European Union Agency for the Space Programme - EUSPA

4,3 (4 reviews)
100% Recommended

International Institution

Czech Republic

About The Job

Location:
Saint-Germain-en-Laye , France
Contract type:
Full Time
Deadline:
Expires 15 SEP 2022
Department:
Security Authority

Apply Now