Job Descrption
Company Description
About Us
One team. Global challenges. Infinite opportunities. At Viasat, we’re on a mission to deliver connections with the capacity to change the world. For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries around the globe communicate. We’re looking for people who think big, act fearlessly, and create an inclusive environment that drives positive impact to join our team.
Job Description
What you'll Do
The Aviation Security Risk and Compliance Engineer will work within a small team within the Platforms and Software Services group who are responsible for software platforms, infrastructure, and development to support current and future demand for Inflight Connectivity Services.
As a Security Risk and Compliance Engineer, you will play a crucial role in ensuring the safety and security of our organization's systems and data. With the constant threat of cyber attacks and the ever-evolving regulatory landscape, your expertise in security risk management and compliance will help us maintain a robust security posture.
In this role, you will be responsible for identifying potential vulnerabilities and risks, conducting risk assessments, and implementing appropriate security controls. You will also be involved in reviewing and updating security policies and procedures, as well as collaborating with internal teams and external stakeholders to ensure security best practices and compliance with industry regulations and standards.
The role requires close working with industry partners including aircraft manufacturers (i.e. Airbus and Boeing), avionics suppliers and airlines. Representing Viasat as a technical expert in meetings with these partners/customers and must be capable of dealing confidently with experts in similar and adjacent disciplines.
If you are a detail-oriented professional with a strong analytical mindset and a passion for security, this is an excellent opportunity to contribute to the safety and success of our services. Join us and be part of a dynamic and rewarding environment where your skills will make a real difference.
The day-to-day
- Develop and maintain a comprehensive security risk management framework
- Write technical and business and compliance documentation/reports
- Provide subject matter expertise to project, delivery teams and Platform Operations teams
- Provide project driven support for Aircraft Network Security functions and help ensure these are delivered on time and within budget and complaint to applicable regulations by Steering and Auditing internal and external contributors
- Form strong technical relationships with peers at satcom avionic manufacturers, airframers, ESA, and Inmarsat service providers to help Manage for infrastructure implementation, verification, and change management security
- Contribution towards relevant internal standards and configuration templates
- Conduct regular risk assessments identifying vulnerabilities, threats and remediations
- Liaising with Cyber Security teams on reporting on network and security advisories
- Own & Audit the enforcement of security controls and measures to mitigate identified risks
- Review and recommend updates to security policies and/or procedures/standards to ensure compliance with industry regulations and best practices
- Collaborate with internal teams to establish security requirements for new systems and applications
- Monitor and analyse security incidents and perform incident response activities
- Work with others within the Technology and Operations teams to achieve above
Qualifications
What you'll Need
- You must be eligible to work in this location advertised
- In-depth knowledge of security frameworks, such as NIST, ISO 27001, and PCI DSS
- Proven experience in security risk management & compliance in ISO 27001, GDPR, PCI DSS
- Strong understanding of network security principles and practices
- Experience in conducting risk assessments and threat modelling
- Generally proficient in Linux operating systems (e.g., Red Hat, CentOS, Alma, ubuntu)
- Familiarity with security technologies, including firewalls, intrusion detection systems, and encryption techniques
- Ability to work in a team environment and be able to prioritise own schedule
- Ability to work under pressure and show flexibility when required
- Willingness to learn new skills and be self-motivate
- Professional certifications, such as CISSP, CISA, or CRISC, similar
- Experience in the identification and capture of IT functional and non-functional requirements for large, complex projects
- Strong inter-personal skills including the ability to establish & maintain relationships & trust
- Ability to work in a complex, international matrix organization alongside 3rd-parties
What Will Help You On The Job
- Demonstrable knowledge of national and international legislation & regulatory frameworks (EASA, ICAO, FAA etc) as well as the bodies that set the standards (BSi, LAA, CEN etc)
- Knowledge of aeronautical Air Traffic Service domain in areas such as standards (e.g. ARINC, RTCA, Eurocae), or Certification
- Proven experience in security risk management and compliance within the aviation industry
- Bachelor's degree in Computer Science, Information Security, or a related field
- Knowledge of ancillary network tools monitoring / troubleshooting tools like Wireshark would be advantageous
- Scripting knowledge
- Knowledge of PKI
- Knowledge of networking technology including routers, switches, and firewalls
- Good knowledge of software development and engineering techniques
- Knowledge of satellite communications systems
Additional Information
You must be eligible to work in this location advertised.
EEO statement
Viasat is proud to be an equal opportunity employer, seeking to create a welcoming and diverse environment. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, ancestry, physical or mental disability, medical condition, marital status, genetics, age, or veteran status or any other applicable legally protected status or characteristic.
Your CV has been submitted successfully.