Cyber Security Engineer

Job Requisition ID: 19641

Date Posted: 16 June 2025

Closing Date: 7 July 2025 23:59 CET/CEST

Publication: Internal & External

Type of Contract: Fixed-Term

Directorate: Technology, Engineering and Quality

Workplace:

Noordwijk, NL

Grade Band: A2 - A4

This is a non-renewable post for a limited duration of 4 years.

Location
ESTEC, Noordwijk, Netherlands

Description

Cyber Security Engineer in the System Security Section, End-to-End Systems Division, Systems Department, Directorate of Technology, Engineering and Quality.

The System Security Section is responsible for the end-to-end system security engineering of the Agency’s missions, projects and activities in the space, ground and user segments, and for the communication links at system, subsystem, element and equipment level. It covers the missions from the study phase to the definition of requirements, design, development, security integration/verification, and security service preparation, across the full stack, from the physical to the application layer.

To serve these functions, the System Security Section defines and implements the associated technology research and development (R&D) and studies, as well as the required security engineering standards.

Using security laboratory facilities, the System Security Section performs vulnerability assessments at all levels under its responsibility, proposing detection methods, mitigation and protection measures, using security assessment tools and equipment.

The System Security Section also provides functional support to ESA missions and projects in the area of security engineering and cyber security.

Duties

Your tasks and responsibilities will include:

participating in programme reviews of projects, assessing the security design, implementation, qualification and validation, to ensure development is in line with relevant programme cyber security requirements.
reviewing and contributing to system security architecture and system security requirements.
analysing and accessing security-related requests for deviations/requests for waivers and recommending ways forward.
reviewing the design, proposed implementations and technologies, identifying potential vulnerabilities, analysing their exploitability and their impact, and proposing the appropriate mitigations and required countermeasures.
following up the implementation of the mitigation actions (either internally or with industry/partners).
contributing to the security risk assessment of programmes under the coordination of the ESA Security Office (security assurance function).
coordinating with the ESA Security Office on the security risk, vulnerability assessment and threat analysis, in order to follow up the related design and development implementation.
supporting the ESA Security Office (security assurance function) within any project for the preparation of the security accreditation/certification data package.
organising vulnerability assessment and penetration testing campaigns, assessing the findings, proposing mitigations, and analysing collected evidence of fixed and mitigated vulnerabilities.
supporting the development and maintenance of various technical documents (security requirements, security management plans, etc.).
following up system integration, testing, verification and validation, assessing compliance with the security requirements and proposing treatment plans.
fostering new security application areas for multidisciplinary activities, placing emphasis on innovative concepts, cutting-edge technologies and system architectures in the field of cyber security.
proposing and supervising/following up, as a Technical Officer, R&D activities in the area of security for space systems and missions.
participating in the follow-up of industrial contracts related to the procurement of expertise, technology development, laboratory tools, equipment, etc.
acting as a Project/System Security Officer (PSSO) if needed.
supporting laboratory activities as required.
continuously monitoring technological trends and evolutions in the scientific fields relevant to this position.

Technical competencies

Technical expertise in cyber security

Very good knowledge of the architecture and technologies of security monitoring systems

Good knowledge of cyber security standards, hardening guidelines and security best practices

Good knowledge and experience of vulnerability analysis

Good knowledge of modern secure network protocols

Behavioural competencies

Result Orientation

Operational Efficiency

Fostering Cooperation

Relationship Management

Continuous Improvement

Forward Thinking

For more information, please refer to the ESA Core Behavioural Competencies guidebook

Education

A master's degree in cyber security, computer science/informatics or a related engineering discipline is required for this post.

Diversity, Equity and Inclusiveness
ESA is an equal opportunity employer, committed to achieving diversity within the workforce and creating an inclusive working environment. We therefore welcome applications from all qualified candidates irrespective of gender, sexual orientation, ethnicity, beliefs, age, disability or other characteristics. Applications from women are encouraged.

At the Agency we value diversity, and we welcome people with disabilities. Whenever possible, we seek to accommodate individuals with disabilities by providing the necessary support at the workplace. The Human Resources Department can also provide assistance during the recruitment process. If you would like to discuss this further, please contact us via email at contact.human.resources@esa.int.

Important Information and Disclaimer
In principle, recruitment will be within the advertised grade band (A2-A4). However, if the selected candidate has less than four years of relevant professional experience following the completion of the master’s degree, the position may be filled at A1 level.

Applicants must be eligible to access information, technology, and hardware which is subject to European or US export control and sanctions regulations & eligible to acquire the security clearance by their national security administrations.

During the recruitment process, the Agency may request applicants to undergo selection tests. Additionally, successful candidates will need to undergo basic screening before appointment, which will be conducted by an external background screening service, in compliance with the European Space Agency's security procedures.

Note that ESA is in the process of transitioning to a Matrix setup, which could lead to organisational changes affecting this position.

The information published on ESA’s careers website regarding working conditions is correct at the time of publication. It is not intended to be exhaustive and may not address all questions you would have.

Nationality and Languages
Please note that applications are only considered from nationals of one of the following States: Austria, Belgium, Czechia, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Ireland, Italy, Luxembourg, the Netherlands, Norway, Poland, Portugal, Romania, Slovenia, Spain, Sweden, Switzerland, the United Kingdom and Canada, Latvia, Lithuania and Slovakia.

According to the ESA Convention, the recruitment of staff must take into account an adequate distribution of posts among nationals of the ESA Member States*. When short-listing for an interview, priority will first be given to internal candidates and secondly to external candidates from under-represented Member States*.

The working languages of the Agency are English and French. A good knowledge of one of these is required. Knowledge of another Member State language would be an asset.

*Member States, Associate Members or Cooperating States.