Cyber Security Compliance Engineer - London, United Kingdom - Viasat
Description
For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries around the globe communicate.The Aviation Security Risk and Compliance Engineer will work within a small team within the Platforms and Software Services group who are responsible for software platforms, infrastructure, and development to support current and future demand for Inflight Connectivity Services.
As a Security Risk and Compliance Engineer, you will play a crucial role in ensuring the safety and security of our organization's systems and data.
With the constant threat of cyber attacks and the ever-evolving regulatory landscape, your expertise in security risk management and compliance will help us maintain a robust security posture.
In this role, you will be responsible for identifying potential vulnerabilities and risks, conducting risk assessments, and implementing appropriate security controls.
You will also be involved in reviewing and updating security policies and procedures, as well as collaborating with internal teams and external stakeholders to ensure security best practices and compliance with industry regulations and standards.
The role requires close working with industry partners including aircraft manufacturers (i.e. Airbus and Boeing), avionics suppliers and airlines. Develop and maintain a comprehensive security risk management frameworkWrite technical and business and compliance documentation/reports
Provide subject matter expertise to project, delivery teams and Platform Operations teams
Provide project driven support for Aircraft Network Security functions and help ensure these are delivered on time and within budget and complaint to applicable regulations by Steering and Auditing internal and external contributors
Form strong technical relationships with peers at satcom avionic manufacturers, airframers, ESA, and Inmarsat service providers to help Manage for infrastructure implementation, verification, and change management security
Contribution towards relevant internal standards and configuration templates
Conduct regular risk assessments identifying vulnerabilities, threats and remediations
Liaising with Cyber Security teams on reporting on network and security advisories
Own & Audit the enforcement of security controls and measures to mitigate identified risks
Review and recommend updates to security policies and/or procedures/standards to ensure compliance with industry regulations and best practices
Proven experience in security risk management & compliance in ISO 27001, GDPR, PCI DSS
Strong understanding of network security principles and practices
Experience in conducting risk assessments and threat modelling
Generally proficient in Linux operating systems (e.g., Experience in the identification and capture of IT functional and non-functional requirements for large, complex projects
What Will Help You On The Job
Demonstrable knowledge of national and international legislation & regulatory frameworks (EASA, ICAO, FAA etc) as well as the bodies that set the standards (BSi, LAA, CEN etc)
Proven experience in security risk management and compliance within the aviation industry
Bachelor's degree in Computer Science, Information Security, or a related field
Knowledge of ancillary network tools monitoring / troubleshooting tools like Wireshark would be advantageous
Knowledge of networking technology including routers, switches, and firewalls
Good knowledge of software development and engineering techniques
All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.