Job Description:

Accountabilities

The job holder is accountable for the IM security related technical activities and managing cyber security tools, products and solutions.

• The missions are defined by the Head of Cyber Security in China.

Experienced cybersecurity technical expert, managing subcontractors and liaising with the teams in Europe:

• Responsible for vulnerability management for all IT assets (endpoints, servers, cloud, applications) in Airbus China: 

  • apply technical mitigation or remediation to the vulnerabilities, as per Airbus security policies, 

  • delegate tasks to the cybersecurity (3 subcontractors), Infrastructure and Digital Workspace teams to guarantee swift execution,

  • perform data analysis using monitoring tools, and drumbeat the team in those tasks,

  • ensure high priority vulnerabilities are handled quickly and efficiently, possibly outside of working hours, 

  • operate basic cyber intelligence monitoring of new threats, in complement to Airbus SOC, receiving news for example directly from vendors of impacted products or from professional media,

• Act as the main cybersecurity operational technical expert for Airbus China, 

  • provide security expertise supported by an extensive knowledge of Airbus multiple policies, work instructions and hardening guides, 

  • ensure Airbus security standards are well implemented and audited in all entities and projects,

  • share expertise to new recruits of Airbus China,

  • support the expert teams in Airbus Europe as technical referent,

  • contribute to internal and external cybersecurity projects, 

• Manage Airbus China security compliance for all types of IT assets:

  • create reports,

  • write additional powershell or Ansible scripts when needed,

  • ensure policies are well implemented and controlled, 

  • drumbeat the team, to ensure compliance is above 90 and 

  • coordinate resolution of issues with the teams in Europe.

• Responsible for the cybersecurity tools such as EDR, SIEM, vulnerabability scanners and Data Leakage Prevention (DLP) tools:

  • ensure they are optimally deployed and operate as per policies,

  • improve the coverage of these tools.

• Manage the deployment and coverage of SOC in Airbus China to monitor, detect and analyze cyber threats, ensuring all assets are covered.

• Perform cybersecurity audits within Airbus China, including affiliate companies and suppliers:

  • identify security risks and weaknesses, 

  • deliver assessment reports,

  • make relevant recommendations,

  • follow-up remediation with the management teams of these entities.

• Perform Privilege Access Management (PAM) for the users and administrator accounts:

  • ensure unauthorized or noncompliant access are removed,delegate tasks as required.

Ensure security vulnerabilities are handled as per the defined company policy and processes of Airbus.

• Ensure cybersecurity tools and products are deployed in Airbus China and are functioning as per defined standards and policies of Airbus.

• Provide security technical expertise on cybersecurity projects.

Other outputs defined by the Head of cybersecurity in China.

Qualifications

• Education: Bachelor degree, major in computer science, information technology or related field.

• Experience: At least 5 years experience in a similar role, preferably in a multinational company.

• Professional certifications such as CISSP or OCSP are a plus.

• Abilities

The Coachable, observable and measurable skills and competencies critical to the successful performance of the job

• Hand-on experience of security tools such as EDR (Endpoint Detection and Response), SIEM (Security Information and Event Management), Bitlocker, CASB (Cloud Access Security Broker), Data Leakage Protection (DLP) and vulnerability scanning.

• Programming skills are preferred (Javascript, Google AppScript, Powershell, Python, etc).

• Familiarity with security frameworks and risk management methodologies.

• Knowledge of patch management, firewalls, Intrusion Detection and Prevention systems (IDPS).

• Familiarity with PKI (public key infrastructure) and cryptographic protocols (e.g. SSL/TLS)

• Familiarity with general IT knowledge including modern Windows and Linux systems, network protocols, infrastructure, cloud computing platforms, etc.

• An analytical mind with excellent problem-solving ability.

• Outstanding communication and organization skills.

• Decision-making skills.

• Good written & oral English and Chinese skills.

• Able to work under pressure.

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.

Company:

Employment Type:

-------

Experience Level:

Job Family:

By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom&64;airbus.com.

At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.