Cybersecurity Engineer

•  Dublin ATCC or Shannon, Co Clare

   Closing date: 3/01/2025
   

JOB DESCRIPTION:

Job Purpose

The Cybersecurity Engineer will work in a team within the Technology Services Directorate which is responsible for the management of AirNav Ireland’s Operational Security Policy. They will be responsible for designing, implementing, and maintaining robust security measures that protect computer networks and data used in ATM systems. This involves conducting thorough risk assessments, identifying potential vulnerabilities, and implementing effective security controls.

Main Duties and Responsibilities

• Implement security requirements, enhancements or replacement, of systems and equipment to meet the security specifications and requirements of safety and business cases.
• Implement the security strategy through to solution design with hands-on configuration and troubleshooting.
• Provide guidance and support, in the management and provision of technical services and the secure design of ATM Networks & Systems, in line with industry best practice.
• Conduct risk assessments to ensure adherence to standards, guidelines, statutory and regulatory requirements.
• Investigate occurrences and provide recommendations for prevention in future to inform the incident response strategy.
• Develop and maintain good working relationships with all key stakeholders, regulatory and oversight bodies.
• Ensure the Operational Security Policy meets ATM/ANS operational requirements and is in accordance with industry best practices and in compliance with Regulatory requirements.
• Develop and manage the programme of work in adherence to the requirements of the NIS/NIS-2 Security directive. Identify any associated gaps and implement corrective action plans to comply with the requirements of Competent Authority and/or National Cyber Security Centre and implement associated policy, procedural and technical developments as required.
• Work closely with, and provide oversight of, ATSEP Security training provided by third party (Training Consultants, third party equipment suppliers).
• Identify areas for improvement and pro-actively manage such initiatives to closure.
• Develop in-house capability to identify system restore and repair procedures for critical systems failure scenarios.
• Develop security lab areas in conjunction with engineering management.
• Develop and enhance Incident Response and recovery process and associated procedures.
• Develop strong governance processes to drive security designed solutions in consultation with the relevant engineering subject matter experts and management.
• Provide assistance and support to the Director and Domain Managers as required.
• Attend relevant fora as required.
• Other duties as may be assigned, where appropriate.