Cybersecurity Consultant

Quebec - Canada

Monthly Salary: Not Disclosed

Experience Required: 10years

Posted on: Yesterday

Vacancies: 1 Vacancy

Job Summary

Experience with embedded systems (aerospace or automotive)
Knowledge of embedded security architecture principles (practical or theoretical)
Understanding of telecom protocols/standards (a strong asset)
Strong ability to analyze architectures and identify potential threats
Experience as a System Architect (a strong plus)
Minimum 3 years of experience in risk analysis (probability impact risk evaluation)
Experience with penetration testing (especially white box and gray box)
Ability to perform vulnerability analysis of COTS using sources like NIST Mandiant
Experience in a SOC (nice to have)
Strong report-writing skills for risk assessments
Excellent English (spoken and written)
Excellent French (spoken and written)
Strong interpersonal skills (stakeholder management influencing collaboration)
Must be Canadian American or European (export control requirement)
Work is deliverables-based (not full-day timezone overlap required but must attend meetings during French business hours)
Initial workload: 2533% potentially ramping up to full-time by year-end

Requirements

Experience with embedded systems (aeronautics or automotive sectors).
Knowledge of secure embedded architecture principles (ideally gained through practical experience though theoretical knowledge acquired during engineering studies for example may suffice) *note: this refers to embedded architecture not IT system architecture.*
Knowledge of specific telecommunication protocols or standards is a significant asset.
Strong analytical skills regarding system architectures to identify potential threats.
Experience as a System Architect would be a major advantage.
A minimum of 3 years of experience in risk analysis (calculating probability and impact and performing risk assessments) *note: while the specific methodology used here is internal to Airbus experience with other generic methodologiessuch as EBIOS or similar frameworkswould be highly valued.
Experience with penetration testing is a strong asset (particularly white-box and gray-box testing).
Proficiency in analyzing COTS (Commercial Off-the-Shelf) vulnerabilities (utilizing databases such as NIST or Mandiant) and assessing their impact on the systems in which they are embedded.
Experience working within a SOC (Security Operations Center) is a plus.
Excellent report-writing skills for risk assessments including the ability to use precise phrasing when evaluating specific risks.
Excellent command of English (both spoken and written).
Excellent command of French (both spoken and written).
Excellent interpersonal skills as the role involves frequent meetings and the need to reach compromises with various stakeholderssuch as external system suppliers design offices and subject matter expertswhom you must effectively sensitize to the importance of cybersecurity and guide toward accepting the constraints imposed by security regulations. Canadian American or European citizenship is required (due to export control regulations governing access to data from Airbus system suppliers).

Experience with embedded systems (aerospace or automotive)Knowledge of embedded security architecture principles (practical or theoretical)Understanding of telecom protocols/standards (a strong asset)Strong ability to analyze architectures and identify potential threatsExperience as a System Archite...

Experience with embedded systems (aerospace or automotive)
Knowledge of embedded security architecture principles (practical or theoretical)
Understanding of telecom protocols/standards (a strong asset)
Strong ability to analyze architectures and identify potential threats
Experience as a System Architect (a strong plus)
Minimum 3 years of experience in risk analysis (probability impact risk evaluation)
Experience with penetration testing (especially white box and gray box)
Ability to perform vulnerability analysis of COTS using sources like NIST Mandiant
Experience in a SOC (nice to have)
Strong report-writing skills for risk assessments
Excellent English (spoken and written)
Excellent French (spoken and written)
Strong interpersonal skills (stakeholder management influencing collaboration)
Must be Canadian American or European (export control requirement)
Work is deliverables-based (not full-day timezone overlap required but must attend meetings during French business hours)
Initial workload: 2533% potentially ramping up to full-time by year-end

Requirements

Experience with embedded systems (aeronautics or automotive sectors).
Knowledge of secure embedded architecture principles (ideally gained through practical experience though theoretical knowledge acquired during engineering studies for example may suffice) *note: this refers to embedded architecture not IT system architecture.*
Knowledge of specific telecommunication protocols or standards is a significant asset.
Strong analytical skills regarding system architectures to identify potential threats.
Experience as a System Architect would be a major advantage.
A minimum of 3 years of experience in risk analysis (calculating probability and impact and performing risk assessments) *note: while the specific methodology used here is internal to Airbus experience with other generic methodologiessuch as EBIOS or similar frameworkswould be highly valued.
Experience with penetration testing is a strong asset (particularly white-box and gray-box testing).
Proficiency in analyzing COTS (Commercial Off-the-Shelf) vulnerabilities (utilizing databases such as NIST or Mandiant) and assessing their impact on the systems in which they are embedded.
Experience working within a SOC (Security Operations Center) is a plus.
Excellent report-writing skills for risk assessments including the ability to use precise phrasing when evaluating specific risks.
Excellent command of English (both spoken and written).
Excellent command of French (both spoken and written).
Excellent interpersonal skills as the role involves frequent meetings and the need to reach compromises with various stakeholderssuch as external system suppliers design offices and subject matter expertswhom you must effectively sensitize to the importance of cybersecurity and guide toward accepting the constraints imposed by security regulations. Canadian American or European citizenship is required (due to export control regulations governing access to data from Airbus system suppliers).