Airborne Cyber Security Evaluator - Advanced - M/F/D - Airbus Operations SAS
- Other
description du poste
Job Description:
Who are we?
Airbus applies the highest standards for product safety and security. The increasing connectivity of our aircraft and the digitalization of our products have opened the door to new threats and hence to a growing need for security evaluation activities.
To face these challenges, our team, embedded in the Flight and Integration Test Center, acts as the first attacker to anticipate the threats our airborne products could face. Composed of specialists combining multiple competencies in avionics, networks, radio transmissions, operating systems, cryptography and more. This transnational team is recognized company-wide for its unique expertise combining avionics and security skills.
To extend our activities and scope, we are currently looking for a Cyber Security Evaluator (m/f/d) for airborne products, based in Toulouse (31), France. Your main role is to perform security evaluations on airborne products and systems and to identify security weaknesses before their entry into service or affecting the in-service aircraft. As our environment is constantly evolving, you also contribute actively to the continuous improvement of our activities by exploring new attack techniques, tracking new technologies, developing scripts and tools supporting the security evaluation of airborne products.
Are you ready for this challenge?
What you will do with us as Airborne Products Cyber Security Evaluator (m/f/d):
- To develop and perform adversarial security evaluations against Airbus airborne products and related services in our laboratory test environments.
- To evaluate the security of our products and systems, gathering system or multi-system configuration items and performing configuration reviews.
- To contribute to the design, development, implementation and integration of Airbus airborne products applying an attacker mindset and sharing technical expertise with system designers and developers.
- To identify weaknesses and/or vulnerabilities on hardware & software by using diverse techniques and tools.
- To compile technical reports and presentations to describe findings, to recommend fixes and to support the security risk analysis process.
- To contribute to research and development to explore innovative ways to evaluate Airbus products security.
- To develop tools and test means to test airborne systems.
Travel for business in Europe and intercontinental is also part of the activity.
We are looking for candidates with one or several of the following skills and qualities, please do not hesitate to apply for the position even if you don t fulfill the list below:
- Experience:
- Industrial experience in cyber security evaluations and penetration testing.
- Advanced knowledge of computer science. A diploma in Cyber Security will be appreciated but not mandatory.
- Reverse engineering of binaries and/or low-level programming experience
- Experience with Real Time Operating Systems.
- Experience in CTF (Capture The Flag) challenges is appreciated.
- Software development skills to support security evaluations (tooling, etc).
- Industrial experience in cyber security evaluations and penetration testing.
- Hard skills:
- Vulnerability research techniques (on source or object code): static analysis, dynamic analysis (fuzzing, concolic execution, ). network-related attack techniques (scan, spoofing, MitM, ).
- Languages: C , C , Rust, Ada, Python, Java, shell,
- Network protocols for wired and wireless communications,
- Deep knowledge on Linux-based systems,
- Architectures: ARM, PowerPC, x86(_64), FPGA.
- Radio Frequency skills are appreciated. Knowledge of GPS/GNSS, 4G/5G is a plus.
- Vulnerability research techniques (on source or object code): static analysis, dynamic analysis (fuzzing, concolic execution, ). network-related attack techniques (scan, spoofing, MitM, ).
- Soft skills:
- Ability to communicate effectively and comprehensively to present complex technical approaches and findings.
- Strong analytical and organizational skills with good communication skills in English.
- Ability to communicate effectively and comprehensively to present complex technical approaches and findings.
Why join us?
1 - Work on adversarial security evaluation for the Airbus airborne product portfolio, incl. aircraft and helicopter equipment and be an active contributor to the safety and security of aviation.
2 - Work in a multicultural environment, on a growing spectrum of activities, on a worldwide perimeter, within a team of security evaluation specialists.
3 - You will have the opportunity to apply your expertise, to develop your skills, competencies and your personal project. You will attend some specialized Cyber Security conferences.
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company s success, reputation and sustainable growth.
Company:
Airbus Operations SAS
Employment Type:
Permanent
-
Classe Emploi (France): Classe G14
Experience Level:
Professional
Job Family:
Cyber Security
By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.
Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to .
At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.