ESO Corporate Security Assurance Manager

Location

ESA Brussels Office, Brussels, Belgium or ESTEC, Noordwijk, Netherlands or ESRIN, Frascati, Italy.

Description

ESO Corporate Security Assurance Manager in the ESA Security Office (ESO), Directorate of Resources and Services. Under the direct supervision of the Head of the ESA Security Office, you, as ESO Corporate Security Assurance Manager, will be responsible for all corporate security assurance activities described in the ESA Security Regulation and Directives, coordinating the ESO Corporate Security Assurance Team. You will carry out your duties in coordination with the relevant representatives of the various ESA directorates, and in synergy with the Infosec and Cyber Security Panel Member State representatives.

Duties

As ESO Corporate Security Assurance Manager, you will help strengthen the resilience and robustness of all security infrastructure, networks, security-critical systems and applications at corporate and directorate level. You will ensure appropriate security certification and accreditation processes, perform continuous security inspections and audits, in line with the Council-approved ESA Security Master Plan, deliver security training and awareness campaigns, perform security incident handling, and highlight vulnerabilities, risks and remediation actions in the field of corporate and directorate security assurance.

Your tasks and responsibilities are defined in the relevant sections of the ESA Security Regulation and ESA Security Directives. Your role will also include the following management and coordination duties:

• coordinating the ESO Corporate Security Assurance Team;
• managing the ESA Information Protection Pillar;
• coordinating the Infosec and Corporate Cyber Security Pillar, as set out in the ESA Security Directives and Regulations;
• managing ESA’s security agreements and arrangements with third parties;
• coordinating the ESA Physical Security Pillar;
• coordinating the ESA Personnel Security Pillar;
• managing, on behalf of the Head of ESO, the Security Trade Control compliance audits, inspections and reports, in coordination with the SCT Manager;
• managing a dedicated budget for corporate security assurance activities related to training, workshops, awareness campaigns and vulnerability assessments.

In particular:

• supervising the correct ESA-wide implementation of the corporate security assurance principles defined in the ESA Security Regulation and Directives;
• managing the generation and the approval of the ESA Generic and Specific Programme/Project Security Instructions and the related Security Classification Guide for all ESA Security Programmes;
• managing the security assurance lifecycle for information protection across ESA;
• managing the generation and follow-up of all ESA security agreements and arrangements between ESA and third parties;
• managing personnel security activities with the Personnel and Physical Security Officer, ensuring the proper security screening of ESA staff working in security activities and providing specific training, testing and examinations, as well as organising ESA-wide security awareness campaigns;
• managing physical security activities with the Personnel and Physical Security Officer, ensuring proper security audits, inspections and accreditation of ESA security-critical sites and infrastructure, as set out in the ESA Security Master Plan;
• managing the Infosec activities with the Infosec and Information Protection Officer, ensuring proper security inspections, audits, certification and accreditation of the security networks, applications and systems at corporate and directorate level;
• supporting the Head of ESO in managing Security Trade Control compliance, in coordination with the ESA STC Manager;
• managing the activities to be presented at the Infosec and Cyber Security Panel and at the Industrial Security Panel;
• performing regular reporting to the ESA Security Committee;
• managing a dedicated budget for training and awareness campaigns and for vulnerability assessments performed by specialised external companies.

Technical competencies

General knowledge of the ESA and EU security frameworkIn-depth knowledge of the accreditation process In-depth knowledge of high-security assurance requirements In-depth knowledge of security risk management frameworks and processes

Behavioural competencies

Result Orientation
Operational Efficiency
Fostering Cooperation
Relationship Management
Continuous Improvement
Forward Thinking

For more information, please refer to ESA Core Behavioural Competencies guidebook

Education and professional experience

A master’s degree in a relevant domain is required for this post together with 4 years of relevant professional experience. Alternatively, candidates with a bachelor’s degree, complemented by an additional four (4) years of relevant professional experience can be considered.

Additional requirements

• The potential to coordinate individuals or a team of experts;
• The ability to organise their activities and ensure a motivating work environment;
• Strong leadership capabilities, with proven relationship management and communication skills;
• The ability to drive your team’s performance, developing your people by encouraging learning, delegating responsibility and giving regular and constructive feedback;
• Strong problem-solving skills to deal with day-to-day operational challenges, together with demonstrated planning and organisational skills;
• Strong results orientation with the ability to set priorities and present practical solutions both orally and in writing;
• The ability to manage challenging situations proactively and constructively and to be customer-focused;
• People coordination experience would be an asset, as would international experience, i.e. outside your home country, as well as experience in diverse functional areas relevant to ESA activities.

Diversity, Equity and Inclusiveness
ESA is an equal opportunity employer, committed to achieving diversity within the workforce and creating an inclusive working environment. We therefore welcome applications from all qualified candidates irrespective of gender, sexual orientation, ethnicity, religious beliefs, age, disability or other characteristics.

At the Agency we value diversity, and we welcome people with disabilities. Whenever possible, we seek to accommodate individuals with disabilities by providing the necessary support at the workplace. The Human Resources Department can also provide assistance during the recruitment process. If you would like to discuss this further, please contact us via email at contact.human.resources@esa.int.

Important Information and Disclaimer
In principle, recruitment will be within the advertised grade band (A2-A4). However, if the selected candidate has less than four years of relevant professional experience following the completion of the master’s degree, the position may be filled at A1 level.

Applicants must be eligible to access information, technology, and hardware which is subject to European or US export control and sanctions regulations & eligible to acquire the security clearance by their national security administrations.

During the recruitment process, the Agency may request applicants to undergo selection tests. Additionally, successful candidates will need to undergo basic screening before appointment, which will be conducted by an external background screening service, in compliance with the European Space Agency's security procedures.

Note that ESA is in the process of transitioning to a Matrix setup, which could lead to organisational changes affecting this position.

The information published on ESA’s careers website regarding working conditions is correct at the time of publication. It is not intended to be exhaustive and may not address all questions you would have.

Nationality and Languages
Please note that applications are only considered from nationals of one of the following States: Austria, Belgium, Czechia, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Luxembourg, the Netherlands, Norway, Poland, Portugal, Romania, Slovenia, Spain, Sweden, Switzerland, the United Kingdom and Canada, Cyprus, Latvia, Lithuania and Slovakia.

According to the ESA Convention, staff shall be recruited on the basis of their qualifications, taking into account an adequate distribution of posts among nationals of the Member States.

The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.