Industrial Cybersecurity Specialist (IM)

Airbus is an international pioneer in the aerospace industry. We are a leader in designing, manufacturing and delivering aerospace products, services and solutions to customers on a global scale. We aim for a better-connected, safer and more prosperous world.

A commercial aircraft manufacturer, with Space and Defense as well as Helicopters Divisions, Airbus is the largest aeronautics and space company in Europe and a worldwide leader.

Airbus has built on its strong European heritage to become truly international with roughly 180 locations and 12,000 direct suppliers globally. The company has aircraft and helicopter final assembly lines across Asia, Europe and the Americas, and has achieved a more than sixfold order book increase since 2000.

Position Summary: The Industrial Cybersecurity Specialist collaborates with all IM domains, with Corporate Security, and with our plants and assembly lines to make the traditional as well as the new digitized means of Aircraft production (Industrial Information and Communication Technology systems, Operational Technology (OT) systems and Industrial Automation and Control Systems (IACS) more resilient to cyber attacks.

Primary Responsibilities:

• New and Enhanced Solution Delivery 60%

• Work with the international IM Cyber Security team (DS) to tailor and adapt existing security software and services for industrial and OT needs and customer requirements, with focus on - but not limited to - working with the SOC team in the area of industrial cyber monitoring and with the network and connectivity teams in the area of industrial network security
• Work with all industrial IM product teams to deliver secure Industrial IT and OT solutions
• Support projects to improve (or recover) security/compliance levels of IM industrial solutions
• Carry out continued identification of industrial customer cyber security needs
• Carry out site lead of industrial cyber solutions and service implementation and improvement projects in cooperation with IM products, plant business, plant focal points
• Contribute to the overall industrial cyber security vision and to the IM Industrial Security roadmap

• Service Operations, Management, and Monitoring 30%

• Measure (metrics/KPIs) security and compliance levels of IM industrial solutions
• Manage his/her resource needs and contribute to the team's budget planning

Additional Responsibilities:

Other duties as assigned: 10%

Qualified Experience / Skills / Training:

Education:

• Required: Degree in either Systems Engineering, Manufacturing Engineering/Automation, Industrial Security/Operational Technology , Information Technology, Manufacturing Automation, or equivalent combination of education and experience

Licensure/Certifications:

Preferred: One or more of the following certifications:

• ITIL

• GIAC Security Essentials Certification

• GIAC Security Leadership Certification

• ISACA Certified Information Security Manager

• Microsoft Certified Systems Engineer: Security

• (ISC)2 SCCP

• (ISC)2 CISSP

• (ISC)2 ISSAP

• Active Directory or SCCM related technologies

Knowledge, Skills, Demonstrated Capabilities:

• Proven analytical and problem-solving abilities.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Good written, oral, and interpersonal communication skills.
• Ability to conduct research into IT security issues and products as required.
• Ability to present ideas in business-friendly and user-friendly language.
• Highly self-motivated and directed.
• Keen attention to detail.
• Team-oriented and skilled in working within a collaborative environment.

Communication Skills (Spoken, Written, Influencing, Proficiency in Other Languages):

• Required: Proficiency in English
• Required: Proficiency in French (Mirabel location only)
• Preferred: Proficiency in French, German, or Spanish

Technical Systems Proficiency:

• Very good understanding of Operational Technology, ICS/IACS, automation systems, shop floor processes and requirements in shop floor environments

• IT security professional (certification, references) experience in information systems security technology, ideally with focusexperience in cyber incident detection and response, is an asset

• Proven (certification, references) experience in operational technology (OT) is an asset

Travel Required:

• 10-20% Domestic and International

Eligibility:

• N/A

Clearance:

• N/A

Decision Making, Complexity:

• Maintain up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
• Select and acquire additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise's existing procurement processes.
• Oversee the deployment, integration and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise's security documents specifically.
• Coordinate product upgrades with multi-national teams and local change boards
• May survey customers to determine the quality of products and services in an effort to improve delivery
• Focus on one location but decisions and support could involve other North American sites

Organizational information:

Direct Reports:

Exempt: 0

Non-exempt: 0

Job Dimensions, Contributions to Success:

• Report to Manager, NA IM Industrial Cybersecurity
• Manage Cybersecurity software deployed to factory environments
• Maintain strong relationship and alignment with Product Service Line owners in Europe
• Influences decisions and solutions on both services and products
• Interfaces with local, national, and international peers within the IM organization and management teams
• Collaboratively informs IM managers / business partners on any service or product changes
• Update the Head of Cybersecurity on progress related to annual goals and objectives

Nature of Contacts:

Member Of The North America Im Cybersecurity Team

- Direct Work Relationship With Im Product Managers Of Providing Hardware, Software And Services

To Industrial Business Customers

- Direct Working Relationships With Im Shop Floor Solution Teams. Im Plant Ecosystem And Managers

- Working Relationship With Business Function Security Partners

- Working Relationship With Plant Incident And Risk Management Roles And Stakeholders

- Working Relationships with business project managers, architects and technical experts

Physical Requirements:

Includes: Lifting, Carrying, Pushing/Pulling, Sitting, Standing, Squatting/Kneeling, Walking, Speaking, Hearing, Vision, Manual Dexterity, Travel. Include estimated time or percentage for each factor and maximum weight for lifting.

The employee must frequently lift and/or move up to 10 pounds and/or move up to 25 pounds.

Equal Opportunity: Airbus in America provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or genetics. In addition to federal law requirements, Airbus in America complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

As a matter of policy, Airbus does not sponsor visas for US positions unless specified. Only applicants with current work authorization will be considered.

Airbus in America expressly prohibits any form of workplace harassment based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. Improper interference with the ability of Airbus's employees to perform their job duties may result in discipline up to and including discharge.