Ground Facility Security Support Engineer

Project ESTRACK Facilities & Services

Start Date




Submission Deadline



Darmstadt - ESOC

Technical Requirements

The GNDF ISMS is a security management framework to manage the information security for the MOI Ground Facilities (GNDF) operations services domain in compliance with ESA Security Directives following ISO 27001 standard. The primary goal of the ISMS is to ensure that all personnel involved with the use and management of the organisation's information assets have an understanding of the information security policy, standards, procedures and other requirements to an acceptable level.

The Ground Facilities ISMS covers the ESTRACK Facilities & Services provided by ESA owned Core Network ESTRACK Stations/ECC, commercial services provided from the Augmented Network e.g. KSAT/SSC and the cross-support services provided from the Cooperative Network of our institutional partners like NASA, CNES, JAXA It also covers the provision of OCC Facilities and related services.

Academic Requirements

Bachelor or higher degree in a technical field related to security management.

Candidates should have several years of experience in security management and with the corresponding standards. Experience regarding the certification process would be considered as an asset.

The proven ability of candidates to work independently in a technically complex and multinational environment is a prerequisite.

Please sumit your CV not later than Oct 31, 2011.

Specific Requirements

MOI GNDF ISMS Operational Engineering Support shall support various tasks to be performed within the GNDF ISMS Domain. The tasks can be grouped as follows:
Continuous monitoring, enhancement and maintenance of theGNDF Domain internal processes:

  • Configuration,Inventory and Asset Management
  • Change and Release Management
  • Incident and Problem Management
  • Risk management
  • Customer Interfaces
  • Service Provider Interfaces
  • Help Desk Function
  • To this end, ITIL awareness is required. Furthermore, some previous exposure to and knowledge of the GNDF Domain would be advantageous.

Periodically review and update of MOI GNDF ISMS documentation:

  • MOI Services under the MOI GNDF ISMS
  • MOI ISMS Processes
  • MOI ISMS Roles and responsibilities
  • MOI ISMS assets
  • MOI ISMS guidelines, procedures, checklists
  • MOI risk assessment & MOI risk management
  • MOI risk treatment plans
  • RelevantSecurity Plans

Support the MOI GNDF ISMS Manager and MOI GNDF PSSO for Management Reviews, including regular MOI GNDF ISMS status reports

Support during audits:

  • Internal Audits, typically every six months
  • External Audits, typically once a year

Continuously support MOI ISMS Training and Awareness process:

  • Assess training requirements for various target groups
  • Define training content accordingly
  • Provide training as necessary

Maintain, monitor and guard the MOI GNDF infrastructure to guarantee:

  • Confidentiality
  • Integrity
  • Availability

Provide feedback on improvements and non-compliances

Ensure QMS and ISMS cross-references are accurate

Provide support in incident handling and enforcing SECOPS procedures

First line GNDF ISMS user support

The main objective is to ensure the operational build-up towards certification of the GNDF ISMS according to ISO 27001 and/or any accreditation for supported missions. Accordingly it is expected that support staff is familiar with ISO 27001/27002 and general INFOSEC security concepts.

  Apply for this positions