Cyber Security and Forensics Specialist (3 posts)
European Space Agency - ESA
Cyber Security and Forensics Specialist (3 posts) Job Requisition ID: 20632 Date Posted: 11 June 2026 Closing Date: 2 July 2026 23:59 CET/CEST Publication: Internal & External Type of Appointment: Local Staff Directorate: Resources and Services Workplace: Frascati, IT Redu, BE Grade Band: G5 - G6 This is a 4-year appointment, which can be extended for an indefinite duration depending on performance. Location ESRIN, Frascati, Italy or ESEC, Redu, Belgium Description As Cyber Security and Forensics Specialist, you will be a senior member of ESACERT, ESA’s Computer Emergency Response Team. ESACERT is one of the services provided by the central IT Department at ESA. It is part of the IT Security Section, which in turn is part of the Security and Shared Infrastructure Services Division. ESACERT forms an important part of ESA’s Cyber Security Operations, together with C-SOC. While C-SOC has a focus on continuous monitoring, detection, initial and automated response, ESACERT focuses on incident response, forensic analysis, threat intelligence, pen testing, incident response procedure definitions and investigations. Duties Your tasks and responsibilities will include:
- acting as technical incident handling coordinator for medium- and high-severity security incidents;
- prioritising, executing or coordinating the required incident response actions aligned with main stakeholders such as security officers, system owners, system administrators, business owners and the ESA Security Office;
- ensuring proper registration of all incident handling steps in incident handling reports and providing timely updates to stakeholders;
- defining proper recovery plans agreed with stakeholders and ensuring they are properly understood and tracked;
- participating in lessons learned exercises feeding back into overall security governance processes in view of continuous improvement;
- defining and/or contributing to security awareness sessions/campaigns;
- leveraging threat intelligence: deriving actions or campaigns and delivering reports to various stakeholders;
- executing or coordinating and assessing Security Testing Campaigns (penetration tests, source code analysis, threat hunting, …) and defining and following up on the resulting actions;
- defining and continuously improving incident handling procedures and playbooks in strong collaboration with C-SOC;
- acting as a forensics specialist supporting investigations (triggered by Internal Audit, Human Resources, Legal);
- supporting any other task assigned to ESACERT;
- acting as advisor on cyber security and related technical matters that may be referred to you;
- contributing to the IT Security Section’s work and objectives;
- any other related tasks.
Offerta di lavoro pubblicata 2 mesi fa