Airbus is an international pioneer in the aerospace industry. We are a leader in designing, manufacturing and delivering aerospace products, services and solutions to customers on a global scale. We aim for a better-connected, safer and more prosperous world.
A commercial aircraft manufacturer, with Space and Defence as well as Helicopters Divisions, Airbus is the largest aeronautics and space company in Europe and a worldwide leader.
Airbus has built on its strong European heritage to become truly international - with roughly 180 locations and 12,000 direct suppliers globally. The company has aircraft and helicopter final assembly lines across Asia, Europe and the Americas, and has achieved a more than sixfold order book increase since 2000.
Position Summary:
The IM Cyber Architect in Airbus North America (USA, Canada and Mexico) is responsible for ensuring the security by design of all IT solutions of Airbus (Commercial Aircraft, Airbus Canada Limited Partnership and Helicopters Divisions).
S/he will design, manage or approve the design of IM Security Products. He will produce guidance, patterns and standards to ensure that all architects of Airbus North America are designing business solutions according to the best security practices.
S/he will be part of the architecture board of Airbus North America.
S/he will ensure IM Security Products and Services Solution Design and contribute to major Security or Data Governance related projects.
This position is open to having someone based out of an Airbus US primary location (Herndon, VA; Miami, FL; Wichita, KS; Mobile, AL; Denver, CO; Newport Beach, CA) or fully remote work set up
Primary Responsibilities:
[Cyber Security Product Design]: 35%
- Lead Architecture Design of Security, Compliance or Data Governance driven projects.
- Produce or assess the solution design of cyber security products. Orchestrate all architectural layers... functional, data, application, infrastructure, network, security etc..., collaborating with any / all internal and external resources sufficient to produce architecture design documents.
- Responsible and accountable from an end-to-end perspective of the solution design consistency in both the global and local overall IM landscape in line with Enterprise Architecture Governance
- Contributes to Business Requirement Dossiers and delivers Architecture Dossiers for Security related projects.
- Define and organize Security Tests as relevant (on IM projects with Security stakes / on existing landscape based on risks and needs) and orchestrate the consecutive action plans.
- Provides support to the Security Operating Center (RUN).
- Performs AS IS assessment of the existing security controls and measures in place
- Ensure reporting about Cyber Architecture activities
[Ensure Security By Design]: 50%
- Acts as IM Security advisor to Solution Architects, Project and Product Managers [products Owners/Customers.
- Ensure that Solutions Architecture Designs are aligned with the Corporate Security requirements, with the Product Security requirements as well as with Business strategy.
- Ensure that policies, standards, and processes are correctly implemented over the information system and IM solution lifecycle.
- Ensure IM landscape Integration and Operational viability of new products, defining and supporting Operation Conditions of Success (means, skills, process ...) with Product / Project teams" to guarantee Product Robustness, Scalability, Performance and Security
- Acts as cyberSecurity reviewer and validator for Solutions design (Business Requirement Dossiers, Architecture Dossiers, LLD, Security Dossier, Business Impact Analysis ...).
- Manage being responsible for the delivery of a cyber architects contractor team.
- Define and promote best practices for product design from a security perspective.
- Consolidate Security and Data Governance requirements.
- Define or consolidate architecture solution standards, design rules and patterns into the North America Architecture Framework. Promote those framework elements to the Airbus North America Architect community.
- Lead Security Architecture chapter of the the Architecture Boards
- Acts as visionary to proactively assist in defining the direction for future projects.
- Produce and promote deployment of Cyber Security Roadmap in accordance with the Head of Cyber Security Domain and Enterprise Architecture management.
- Contribute to Solution Architecture processes improvement
- Contribute to Airbus North-America Region IM Masterplan and Governance
- Leads, challenges and coordinates discussions with stakeholders relative to security architecture.
- Liaise with the Architecture and Security team in Europe to contribute to the design/development of applications and prepare the deployment and support viability
- Take active part of architecture network in North America and Europe
[Innovation and Digital Transformation]: 15%
- Performs security technological watch and manages related risks, opportunities and threats analysis.
- Contribute to Data Governance Network and Partner with Data Architects across Airbus.
- Contribute to IM Digital Transformation proposing new Design Models, new Technologies to always better serve Business and provide added-Value
Qualified Experience / Skills / Training:
Education:
- Degree in Information Technology or an equivalent combination of education and experience
Experience:
- At least 10 years of experience in Information Management (IM)
- At least 5 years of experience in Cyber Security
- Recommended : At least 5 years of experience Solution Architecture
- Experienced with waterfall, agile and other project management methodologies
- Understanding of Airbus IM standards, project and services methodologies and procedures is a plus
Knowledge, Skills, Demonstrated Capabilities:
- In depth knowledge in Cyber Security and Data protection.
- NIST Risk Management Framework
- At least 2 Cyber Security Certifications ( DoD 8570 IAT Level III, ANSSI, ISC, GIAC, CISSP, CASP+...)
- Data Privacy policies and Cloud Data laws GDPR, CCPA, Cloud Act....
- Solid experience with CMMC
- Experience with the implementation of Zero-Trust principles
- Must be able to obtain and maintain a DOE Clearance and successfully pass a thorough Government background screening process requiring the completion of detailed forms and fingerprinting
- Experiences in IT and Digital technologies
Communication Skills (Spoken, Written, Influencing, Proficiency in Other Languages):
- Strong communication (oral and written), interpersonal, and facilitation skills
- Fluency in English is mandatory, Spanish, German or French language skills are a plus
Technical Systems Proficiency:
- Identity and Access Management, Encryption, SIEM, Bastion, VPN, Firewall, Proxy
- Linux, Cloud AWS/Azure, Openshift, Microservice, Web Application, Hosting, Network,
Travel Required: 15%
- Yes both Domestic & International.
US Citizenship required
Behavioral Success Factors:
- Experience in working with multicultural teams.
- Ability to adapt in a changing environment.
- Able to work closely and effectively with business and IM management
- Inspires trust, demonstrates flexibility, encourages frequent open communications and welcomes feedback
- Experience in agile leadership and agile project management
Organizational information:
- This position reports to the Head of Solution Architecture Airbus North America
Job Dimensions, Contributions to Success:
- This role spans more than 25 sites, across 3 countries, 5 divisions including international integration and interfaces with France, Germany and the United Kingdom.
- IT Landscape consisting of:
- 8 Data Centers
- 27 Service Lines (with 100+ sub-services)
- 300+ applications and tools and ~3,000 users
As a leader in our field, Airbus in America provides relocation assistance for qualified positions and a comprehensive compensation and benefits package.
Airbus in America provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetics, pregnancy, marital status, veteran status or other legally protected status. In addition to federal law requirements, Airbus in America complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, demotion, termination, layoff, recall, transfer, leaves of absence, compensation, benefits and training.
Airbus in America expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, genetics, pregnancy, marital status, veteran status or other legally protected status. Improper interference with the ability of Airbus' employees to perform their job duties may result in discipline up to and including discharge.
As a matter of policy, Airbus does not sponsor visas for US positions unless specified. Only applicants with current work authorization will be considered.
Airbus does not offer tenured or guaranteed employment. Either the company or the employee can terminate the employment relationship at any time, with or without cause, with or without notice.