Skip to content

Non-real-time Cyber-security Support to Real Time Activities of the SOC

  • Madrid, Comunidad de Madrid, Spain
  • Saint-Germain-en-Laye, Île-de-France, France
+1 more

Job description

We are looking for multiple people in support to Non-real-time Cyber-security Support to Real Time Activities of the SOC on behalf of and in support to our client for multiple locations in Europe: Prague, Saint-Germain-en-Laye (France), Madrid (Spain), Noordwijk (the Netherlands), Oberpfaffenhoffen (Germany), Fucino (Italy) and Toulouse (France). The selected candidate should show integrity and professionalism. Please note that the start date would be the beginning of April 2024 and that the engagement will be in two consecutive phases (within and after October 2024).

The activities below will include frequent access to classified security areas and systems. They may entail meetings in the other client's premises in Europe, EC premises in Brussels, ESA premises in Noordwijk – ESTEC (The Netherlands) or other European centres, Galileo Control Centres in Fucino (Italy) and Oberpfaffenhoffen (Germany) or other space programme sites across the world (for a few tasks).

Please note, the successful candidate will be employed by ATG Europe (or one of its subsidiaries). Furthermore, upon selection, they will be subject to a general security screening performed by an external provider (further information will be provided at interview stage).

The successful candidate will be tasked with, but not limited to:

  • Vulnerability management services;
    • Vulnerability management for the full life-cycle of the cyber-vulnerabilities of the systems under GSMC operations scope;
    • Support the definition of mitigation strategies to reduce the risk and propose adequate security measures;
    • Support the management of the network maps, ensure systematic examination of the operational infrastructure to detect and identify security deficiencies and new vulnerabilities;
    • Support to pentesting activities;
  • Forensics Analysis services;
    • Providing advice to the SOM on the availability and reliability of the digital evidence;
    • Definition of procedures to acquire digital evidence from multiple ICT platforms in a manner compliant with the legal regulations applicable to the Galileo Program and to ensure its chain of custody;
    • Providing advice on new tools and technologies in the field of digital forensics;
    • Execution of the forensic procedures when required;
    • Provide support to the SOM Operations team on any other tasks under its responsibility;
    • Keep SOM Forensics Analysis archive and related procedures up to date;
  • Malware Analysis services;
    • Reverse engineering of malicious code in order to understand its mechanics and behavior;
    • Identify and document malware characteristics in terms of Indicators of Compromise (IOCs) and their declination into updates to the configuration of the Galileo security infrastructure;
    • Working closely with the SOM specialist on Threat Analysis in supporting the threat landscape maintenance in terms of evolutions of Tactics, Techniques and Procedures (TTPs);
    • Keep SOM (Cyber SOC) Malware Analysis archive and related procedures up to date;
    • Support to R/T cyber operations and any other activity within the SOM Operational Team as deemed necessary;
  • Cyber Threat landscape analysis;
    • Collect the CTI products, including Open Source Intelligence (“OSINT”) sources, CERTs advisories and CTI feeds and reports to be processed for integration into Security
    • Operations Centre (SOC) systems, and produce regular threat intelligence reports, for threats that could be directed to the Union Space Program;
    • Contribute to the creation and improvement of the security correlation rules based on threat intelligence, vulnerability and security incident reports;
    • Support to the definition and maintenance of a threat intelligence reports methodology.

Job requirements

  • Master degree in Engineering or relevant field; Possibly Bachelor with solid experience as a fall back option;
  • Between 2 and 10 years of relevant working experience in security engineering for classified environments / defence;
  • Exposed to ISO27001 / 27002 certified environments and COMSEC information;
  • One or more of the fields of expertise are required:
    • Security Governance and risk management;
    • Security Audit and implementation;
    • Service and facility management;
    • Handling of classified documentation (EU, NATO);
    • Security accreditation;
    • Business development.
  • ISO27001 audit experience is an asset;
  • Fluency in English, both written and spoken;
  • Eligibility to work and live in the EU;
  • Eligibility for EU Personal Security Clearance is mandatory.

Please submit your application in English via the apply button below. Applications submitted in other languages will not be considered.


  • Madrid, Spain
  • Saint-Germain-en-Laye, France
+1 more


What do we offer?

In ATG Europe (or our subsidiaries) you will have the chance to work on the most interesting and technologically advanced projects in the space, big-science, and high-tech domains. You will enjoy the focused yet relaxed spirit and culture of our teams and the excellent working conditions our company provides. We firmly believe that development and growth perspectives are crucial to everyone’s career, and we therefore provide you with a personal development plan, regular assessment checkpoints and a dedicated training and education budget to support you, not only in your current work, but also paving the road to your next professional steps.

For those relocating in order to embrace a new career with us, we offer international relocation assistance in settling in your new home or finding the right school for your children and a relocation budget that is applicable to all ATG staff.

About ATG Europe

Today, ATG Europe is recognized as a leading provider of specialized engineering, scientific and technical services to the European Space, Big-Science, and high-tech industry. Our headquarters are located in Noordwijk, the Netherlands and we have subsidiaries in Germany, Ireland, Spain, Italy, and the UK. Besides these countries, ATG also operates in France, Czech Republic, Sweden, Norway, and Belgium.