The Cybersecurity Engineer will work in a team within the Technology Services Directorate which is responsible for the management of AirNav Ireland's Operational Security Policy. They will be responsible for ensuring processes and procedures meet Safety and Security requirements in ATM/ANS and adhere to statutory and regulatory requirements.
Main Duties and Responsibilities Develop and manage the programme of work in adherence to the requirements of the NIS/NIS-2 Security directive. Identify any associated gaps and implement corrective action plans to comply with the requirements of Competent Authority and/or National Cyber Security Centre and implement associated policy, procedural and technical developments as required.Co-ordinate security requirements, enhancements or replacement, of systems and equipment to meet the security specifications and requirements of safety and business cases.Manage and ensure operational security policies and procedures meet ATM/ANS operational requirements and are maintained in accordance with industry best practice and in compliance with regulatory requirements.Provide guidance and support, in the management and provision of technical services and the secure design of ATM Networks & Systems, in line with industry best practice.Conduct risk assessments to ensure adherence to standards, guidelines, statutory and regulatory requirements.Develop and maintain good working relationships with all key stakeholders, regulatory and oversight bodies.Implement the security strategy through to solution design with hands-on configuration and troubleshooting.Work closely with, and provide oversight of, ATSEP Security training provided by third party (Training Consultants, third party equipment suppliers).Identify areas for improvement and pro-actively manage such initiatives to closure.Develop in-house capability to identify system restore and repair procedures for critical systems failure scenarios.Develop security lab areas in conjunction with engineering management.Develop and enhance Incident Response and recovery process and associated procedures.Develop strong governance processes to drive security designed solutions in consultation with the relevant engineering subject matter experts and management.Provide assistance and support to the Director and Domain Managers as required.Attend relevant fora as required.Other duties as may be assigned, where appropriate.Reports To: Networks & Security Domain Manager, Technical Services
Direct Reports: Not Applicable
Relationships Internal: Technical Services Engineering Management and Domain ATM Specialists, Safety Management Unit, SeMS and ICT Security and ATM CERT.
External: IAA, National Cyber Security Centre, Eurocontrol ATM Cert, CANSO, IANS, External Security Supplier Ecosystem including ATM Security System Suppliers, Security Consulting and Security Standards bodies.
PERSON SPECIFICATION Education, Knowledge, Experience & Skills A third level degree (engineering or related discipline)Minimum of three years' relevant Safety, compliance and/or regulatory experience working in a regulated industryExperience and knowledge of cybersecurity best practicesProficient in IT, including, as a minimum the use of MS Office (Word, Excel and PowerPoint)Excellent interpersonal and communication skillsProven ability to work independently and as part of a teamDemonstrable experience/knowledge of:
IP networks infrastructure (routers, switches, firewalls, IDS etc.)Working with regulatory authoritiesDrafting procedures to be used in a regulated environment.Compliance or quality monitoringThe organisation and structure of Air Traffic Management (ATM) / Air Navigation Services (ANS)National and EU/ICAO regulatory framework and its applicability to ATM/ANSAudit process and audit compliance toolsISO 27001 and its applicationKnowledge/experience of NIST CSF, CIS benchmark, and other cybersecurity standardsUse and development of tools/databases (e.g. DISA/STIG, MS Access)Delivery of training on procedures/processApplications (Cover letter & CV), giving full details of experience and suitability for the position, should be emailed to Siobhán Moran, Human Resources Directorate at ****** no later than 16:00hrs on Friday, 06th December 2024. Late applications will not be accepted.
AirNav Ireland is an Equal Opportunity Employer Abbreviations: ATM : Air Traffic Management, ANS: Air Navigation Services, ATSEP: Air Traffic Service Electronics Personnel
CANSO: Civil Air Navigation Services Organisation, CERT: Computer Emergency Response Team
CTBU: Cork Terminal Business Unit, EU: European Union
IAA: Irish Aviation Authority, IANS : Institute of Air Navigation Services, ICAO: International Civil Aviation Organisation
ICT: Information and Communications Technology, IP: Internet Protocol, ISO: International Standards Organisation
MPD: Managing Performance & Development, MS: Microsoft
NCR: Non-Compliance Recommendation, NIS: Network & Information Systems
NPA: Notice of Proposed Amendments
SeMS: Security Management System, STBU: Shannon Terminal Business Unit
#J-18808-Ljbffr