ESSP SAS

204 Employees

About the Company

ESSP’s core business is the provision of Pan-European space-based Communication, Navigation and Surveillance (CNS) services. As multi-service CNS provider, we operate complex space-based systems and deliver critical services under strict regulation conditions. ESSP (European Satellite Services Provider) shareholders are 7 key European Air Navigation Service Providers: • Skyguide - Schweizerische Aktiengesellschaft für zivile und militärische Flugsicherung (Switzerland) • DFS IBS - Deutsche Flugsicherung – International Business Services (Germany) • DSNA - Direction des Services de la Navigation Aérienne (France) • ENAIRE (Spain) • NATS - National Air Traffic Services (United Kingdom) • ENAV - L'Ente Nazionale Assistenza al Volo (Italy) • NAV Portugal E.P.E. – Navegação Aérea de Portugal (Portugal) ESSP is EGNOS Service Provider. EGNOS is the European regional satellite augmentation system (SBAS) used to improve the performance of global navigation satellite systems (GNSS). The company is based in Toulouse (France) and Madrid (Spain).

Listed Jobs

Company Name: ESSP SAS
Job Title: Security Evolutions Team Manager
Job Description: **Job Title:** Security Evolutions Team Manager **Role Summary:** Lead and manage the Security Evolutions Team to deliver high‑quality security architecture, governance, compliance, and risk‑analysis solutions supporting ESSP’s communication, navigation, and surveillance services. Act as a security specialist and key member of the enterprise security function, embedding risk‑aware practices across projects, operations, and third‑party engagements. **Expectations:** - Minimum 5 years experience in operational IT security, SOC operations, or cyber‑crisis management within space, aviation, or industrial sectors. - Proven team‑leadership experience. - Strong English proficiency (minimum B2). - Demonstrated ability to drive risk‑based decision making, stakeholder collaboration, and change management. **Key Responsibilities:** *Team Management* - Organize and lead the Security Evolutions Team; ensure delivery of risk assessments, security architectures, and compliance reports. - Identify training needs; maintain team expertise in risk‑assessment methodologies, governance, and compliance. - Ensure deliverables meet regulatory requirements and organizational objectives. *Security Specialist* - Design and optimize security architectures aligned with business goals and compliance frameworks (ISO 27001, NIST, GDPR, etc.). - Conduct qualitative/quantitative risk assessments, threat modeling, and risk treatment planning. - Develop and enforce security policies, standards, and controls; perform control assessments and gap analyses. - Lead third‑party risk evaluations, vendor assessments, and contract reviews. - Provide risk context and architectural guidance during incident response. *Enterprise Security Contributor* - Identify and escalate security risks in projects and operations. - Participate in change management, evaluating security implications of new technologies. - Support enterprise risk management and continuous improvement initiatives. **Required Skills:** - Team leadership, project & time management, stakeholder communication. - Strong analytical, problem‑solving, and critical‑thinking abilities. - Security Risk Analysis (qualitative/quantitative, threat modeling, risk treatment). - Security Architecture design for systems, networks, and applications. - Security Governance and compliance (ISO 27001, NIST, GDPR). - Third‑party risk management and vendor assessments. - Incident response support with risk context. - Preferred knowledge: Cloud security (AWS, Azure, GCP), Zero Trust, DevSecOps, IAM, secure SDLC. **Required Education & Certifications:** - Bachelor’s degree in Computer Science, Information Security, Engineering, or related field (or equivalent experience). - Relevant security certifications (e.g., CISSP, CISM, CISA, ISO 27001 Lead Implementer/Auditor, CompTIA Security+).

Company Name: ESSP SAS
Job Title: Corporate Security Coordinator - F/M
Job Description: **Job Title:** Corporate Security Coordinator - F/M **Role Summary:** Lead and coordinate security activities for ESSP’s critical IT, space, and aviation assets. Serve as the main security point of contact, managing cybersecurity projects from planning to closure while ensuring compliance with internal policies and external regulations. **Expectations:** - Deliver security requirements for assets located at Madrid and Toulouse sites. - Manage end‑to‑end cybersecurity project lifecycles, ensuring on‑time, on‑scope, on‑budget completion. - Maintain proactive risk oversight, issue resolution, and continuous improvement of security practices. **Key Responsibilities:** - Act as primary security PoC for all ESSP security initiatives. - Plan, execute, and close cybersecurity projects, coordinating with Security Operations, Engineering, GRC, and Internal Audit. - Conduct risk assessments, design/validate controls, and perform security reviews and audits (ISO 27001, NIST, GDPR, etc.). - Evaluate SOC, audit, and third‑party findings; recommend mitigations. - Represent security interests in cross‑functional meetings, governance forums, and incident‑response activities. - Promote security awareness and ensure stakeholder understanding of compliance obligations. **Required Skills:** - 5+ years operational IT security or SOC/Governance experience in space, aviation, or industry sectors. - Strong project management, stakeholder communication, and cross‑functional leadership. - Excellent analytical, problem‑solving, and independent work capabilities. - English (B2‑C1 CEFR), proficiency in MS Office (Word, Excel, PowerPoint, Project, Visio). **Specific Skills:** - Cybersecurity project management, risk assessment, and compliance. - Knowledge of security frameworks (ISO 27001, NIST, GDPR, PART‑IS). - Experience with security controls, audits, and continuous improvement loops. **Required Education & Certifications:** - Minimum of a bachelor’s degree in Computer Science, Information Security, or related field. - Professional certifications such as PMP, CISSP, CISM, or CRISC are strongly preferred. **Additional Advantageous Knowledge (optional):** - Space or aeronautical industry experience with ECSS, DO/ED standards. - Cloud, IoT, or embedded systems security in aerospace. - Familiarity with SDLC and DevSecOps practices.