Cybersecurity Detection Designer
Lisbon (Airbus Portugal)
Airbus
Airbus pioneers sustainable aerospace for a safe and united world. Airbus designs, manufactures and delivers industry-leading commercial aircraft, helicopters, military transports, satellites, launchers and more.Job Description:
Responsibilities - your mission
In order to increase compliance regarding handling of sensitive data, Airbus Cyber Security has created a new product to manage this perimeter; the Data Compliance Center (DCC). Its main objective is to ensure that potential non-compliance of sensitive (e.g Internal Classification, Export Control) data transfers and hosting, has the corresponding detection, alerting and remediation in place.
As a Cybersecurity Detection Designer, you will be at the forefront of fortifying our data security and compliance efforts by crafting and improving Splunk Enterprise Security (Splunk ES) correlation searches and Security Orchestration, Automation, and Response (SOAR) playbooks. Collaborating closely with analysts and the broader team, your role is crucial in translating business requirements into effective detection and alerting use-cases while streamlining incident response.
Create Splunk correlation searches tailored to various use-cases, aligning them with specific business requirements and security objectives.
Continuously improve existing use-cases to enhance detection accuracy and reduce false positives.
Develop and refine automation playbooks within the SOAR platform, streamlining incident response processes.
Craft efficient response procedures for various use-cases, ensuring consistency and effectiveness.
Translate business requirements into detection and alerting use-cases that align with security and compliance goals by collaborating closely with business analysts
Utilize scripting, particularly Python, to enhance the functionality of detection mechanisms and automation workflows.
Collaborate with the framework teams to integrate SOAR capabilities into our security framework.
General Requirements - our ideal candidate will have
Proficiency in scripting or programming languages, particularly SQL and Python.
Knowledge of tools such as Git for version control
Knowledge of CI/CD pipelines and tools
Basic knowledge of Splunk or similar SIEM tools, with a willingness to learn and expand expertise.
Strong problem-solving skills and the ability to align technical solutions with business requirements.
Effective communication skills for collaborative work within cross-functional teams.
Detail-oriented and analytical mindset.
Eagerness to learn and adapt to evolving security technologies and methodologies.
Benefits - what’s in it for you
Diverse career opportunities within Airbus European core countries or in other regions around the world.
A hybrid working model, allowing you to combine onsite and offsite work.
A modern office at Parque das Nacoes, well connected to public transportation.
A motivated and fun crew to grow and build and shape the GBS together.
An intense and exciting onboarding experience.
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.
Company:
Airbus Portugal SAEmployment Type:
Permanent-------
Experience Level:
ProfessionalJob Family:
DigitalBy submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus.
Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.
Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to emsom@airbus.com.
At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation CI/CD Compliance Incident response Monitoring Python Scripting SIEM SOAR Splunk SQL
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open Staff Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Operations Analyst jobs
- Open Sr. Security Engineer jobs
- Open Security Consultant jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open ISO 27001-related jobs
- Open Threat intelligence-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open APIs-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open SaaS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs