IT Security Specialist

Company Serco is a leading Space Services Provider with thousands of skilled resources that has supported over 50 space missions on behalf of more than 10 Space or Government agencies around the globe, including the ESA and NASA. Serco offers space capability across the full space lifecycle from satellite testing to launch services, LEOP to spacecraft operations, space surveillance to data management, and supporting downstream application development. Job Overview At Serco, we take pride in being a trusted partner of ESA and other European space stakeholders. Our teams are made up of passionate professionals dedicated to excellence, knowledge‑sharing, and meaningful impact. Main Responsibilities Definition, documentation, and implementation of Security Operation Procedures (SECOPS) in compliance with Customer requirements, IT Infrastructure team practices, and the procedures provided by the Cloud provider, incl uding: User management and password policy defi nitionSecrets management (certificates, encryption keys, etc.)Backup and restore procedures for service assetsSecurity assessments and vulnerability an alysisSecurity patching of Operating SystemSecure erasure and disposal proc eduresContribution to the definition, consolidation, maintenance, and renewal of the Security Management Plan, in line with Customer requir ementsDefinition of the Security Risk Assessment Process and the associated verification con trols.Contribution to the definition, consolidation, and execution of the Security Verification Plan, including the collection of all verification evidence to produce a comprehensive security verification r eport.Support during security audits on managed infrastructure and on security opera tions.Execution of routine security operations, including frequent vulnerability analyses and CIS benchma rking.Contributing to the definition of security measures required to meet Customer requirements and participating in the production and review of security documentation in collaboration with consortium par tners.Acting as Security Manager in specific projects, with full responsibility for producing security documentation, defining the required security measures and technical solutions, and ensuring the right balance between compliance with requirements and the operational impact on the infrastru Qualifications Very strong knowledge of security risk assessment methodologies (e.g., EBIOS, ISO 27000) and a proven track record of hands‑on impleme ntation.Deep understanding and experience in defining and implementing Security Operations Procedures ( SECOPS).Excellent command of English, especially strong writing skills for producing technical and formal docume ntation.Proficient in the deployment, configuration, and operation of SIEM tools (open‑source or ente rprise).Very solid knowledge of network protection measures (firewalls, IDS/IPS, URL fil tering).Clear understanding of Common Vulnerabilities and Exposures (CVE), including exploit procedures, likelihood, and impact a nalysis.Good knowledge of hardening techniques for Linux, Docker, and Pos tgreSQL.Familiarity with the OWASP Top 10 vulnerabilities and effective mitigation str ategies.Ability to work effectively in English within an internation al team.Strong autonomy, self‑motivation, excellent communication skills, and a convincing, collaborative pers onality.Demonstrated ability to think outside the box and propose innovative so lutions.Engineering or technical university degree, plus cybersecurity certification(s) or equivalent practical exp erience.Between 1 to 3 years of proven experience in the field of Cyber SecurityIs an assett having matured experience/supported/worked on datacenter and complex IT environments and/or setting up Virtual environments both on Physical and Cloud Pl atforms.Excellent written and oral command of English (B1/B2)Capability of integration in an international/multicultural environment, rapid self‑starting capability and experience in team working are ma ndatory.Capacity of achieving schedule and mil estones.Capacity of working under p Package Description Competitive Salar yGreat career opportunitie sCorporate Benefits Packag eInternational environmen tHybrid wor Seniority Level Mid‑Senior level Employment Type Full‑time Job Function Information Technology Industries IT Services and IT Consulting and Government Relations Services #J-18808-Ljbffr