Cybersecurity Engineer

Full time Data Engineering Big Data Software Engineering Cybersecurity

Job Description

The European Broadcasting Union EBU is looking for a Cybersecurity Engineer.

ABOUT SECURITY4MEDIA

Security4Media is a cross-industry association gathering stakeholders across the media sector including broadcasters, content and service providers, media system vendors, service providers, R&D organizations. The aim of Security4Media is to improve Cybersecurity and Trust in Media.It has initially 2 committees: Cybersecurity and Content Provenance committees.

The Cybersecurity committee supports media and vendors in implementing cybersecurity best practices and reaching similar levels of security maturity as in IT. It assists media and vendors in identifying vulnerabilities in products and systems, speed-up remediation and streamline the vulnerability management process to mitigate risk of exploits by attackers. For that purpose, Security4Media goal is to become a CVE (Common Vulnerability and Exposure) Numbering authority as commonly defined in the IT and SW industry.

Security4Media members share threat intelligence and early warning to the industry where and new vulnerabilities are identified. Goal of Security4Media is also to incentivize media and vendors to improve their cybersecurity by obtaining Security4Media labels.

Security4Media is an independent non-for-profit association with its own legal identity, funding and governance.

PRINCIPAL RESPONSIBILITIES OF THIS POSITION

The Cybersecurity Engineer has a key role in delivering the association’s technical services relating to cybersecurity. The position covers several key areas:

  • Cybersecurity Audits: Conduct regular audits of the general IT of member organizations to identify and mitigate security risks.
  • Scanning and PenTesting: Perform on-demand scanning and pentesting, collaborate with customers and vendors to minimize risks of exploitation and remediate to found vulnerabilities.
  • CVE Numbering Authority: Establish and manage a CVE Numbering Authority (CNA) to streamline vulnerability tracking and reporting.
  • Security4Media Labels: Contribute to the development and implementation of a labeling system to recognize organizations with strong cybersecurity practices.
  • Oversee technical projects, coordinate with internal and external stakeholders, and report on project progress.
  • Technical Leadership: Stay up-to-date with industry trends, provide technical guidance, and contribute to the development of best practices.
  • Stakeholder Engagement: Represent Security4Media at industry events, build relationships with members and partners, and communicate effectively with diverse audiences.
  • Administrative Tasks: Manage administrative duties, including website updates, membership management, and meeting coordination.

YOUR SKILLS AND EXPERIENCES

Technical skills

  • 2-5 years of professional experience in cybersecurity
  • Experience in scanning general IT ( attack surface mapping, Subdomain and DNS takeovers, DNS server misconfiguration, email authentication etc)
  • Experience in pentesting IP-based systems
  • Strong technical background, particularly in Software Development, Information System Security and Privacy, and TCP/IP Networking

Soft skills

  • Strong project coordination
  • Excellent communication and interpersonal skills
  • Ability to work independently and as part of a team

Added Values :

  • Background in media
  • Fundamentals on ST2110 Media workflows and IP/Cloud media infrastructures

LANGUAGE – Excellent written and oral skills in English

TOOLS - Proficient with tools for Vulnerability Assessments, (Web-)Application-Testing and Firmwares and Protocols analysis (e.g. Burpsuite, Nmap, Wireshark, Ghidra, gdb)

ONCE ON BOARD YOU WILL

Be part of an outstanding diverse and inclusive multicultural and international team.
Work with accomplished and engaging professionals coming from a wide variety of backgrounds and covering an impressive range of professions both in and outside of the broadcasting realm.

ABOUT THE EBU

Discover more about the EBU at www.ebu.ch.

ADDITIONAL INFORMATION
More info in the job description attached.
We will not accept any applications after the closing date and we will contact only the candidates who correspond to the requirements.
The EBU is an equal opportunities employer committed to building an inclusive workplace where everyone feels heard, safe and valued through a culture free of discrimination, we welcome applications from all communities.
ONLY APPLICATIONS VIA OUR RECRUITMENT PORTAL WILL BE CONSIDERED.