Randstad Italia Inhouse Services is currently recruiting a Security Engineer for an international client based in Frascati (RM).
The postholder, reporting to the Head of the Security Office and supporting the Security Engineering Manager, will be tasked with security engineering within the scope of the activities of the Security Office, in coordination with the Security Office team members and in particular will be responsible for:
Provide guidance and recommendation, as required, to Programmes/Projects in the area of Security Management, Security Risk Management, Controls and Countermeasures with respect to the applicability of the Security Regulations and Directives;
Generate or review the Programme/Project Security Risk Assessment for each relevant Milestone of the Project/Programme;
Contribute to definition of the Security Requirements to grant the level of assurance of a Mission in terms of availability, integrity and confidentiality of the information, based on the outcome of the security risk analysis and the review of existing project documentation;
Review the relevant documentation, in terms of the System Security Requirements, the System Security Design and its achievement of the Mission Requirements to an appropriate level of protection;
Monitor the correct implementation of the system/segment, SSRS, security measures, design, and qualification, with the target to control, or decrease, the residual risk of the configuration(s) of the system(s) to be deployed;
Support the Accreditation/Certification process during the complete lifecycle of Projects, preparing the certification/accreditation files to be submitted to the Certification/Accreditation bodies.
The ideal candidate should be in possession of:
Knowledge of Security Risk Management (i.e. security risk assessment, threat assessment, risk analysis and continuity management methodologies) of INFOSEC systems (application of standards, and recognised techniques like OCTAVE, SABSA, MEHARI, EBIOS);
Experience with IT Security from the perspective of secure development, secure evaluation/test, security audit or security accreditation and implementation of security with Information Security standards such as ISO27000 series;
Knowledge of Cyber Security risk evaluation, mitigation or response (operational or development) and cyber risk assessment.
Experience with Security Threat Intelligence and Security Threat Modelling techniques and uses;
Technical expertise in System Engineering, in Design and Development, system end-to-end;
Experience in cyber risk assessment, hardening or operational response for complex engineering systems would be an asset;
Knowledge of the Space Accreditation and Certification process;
Proficiency in the English language (spoken and written), knowledge of other Member States’ languages is an asset;
Applicants should have a Masters Degree in a relevant discipline and a relevant professional experience in working on complex engineering systems in an engineering and/or security risk management capacity.
They also have excellent communication and interpersonal skills, flexibility, organisation and ability to work under pressure, delivering results both autonomously and as part of a team within the boundaries of assigned tasks.
The successful candidates will be offered a very competitive salary package.