Cybersecurity Operations Unit - Cybersecurity Assurance

The Directorate-General for Information Technologies and Cybersecurity (DG ITEC) is a trusted partner that empowers the European Parliament by delivering digitally advanced, secure, resilient, compliant and sustainable information and communications technology (ICT) services.

The Directorate for ICT Infrastructure and Security Operations (INSO), present in both Brussels and Luxembourg, supports the work of Cybersecurity Operations Unit (CYBEROPS).

Within the CYBEROPS unit, the Cybersecurity Assurance Service (CYBERSAS) is in charge of providing proactive security assurance services, i.e. defining corresponding processes, identifying ICT vulnerabilities, analysing associated risk implications and recommending mitigation measures to prevent the vulnerabilities potentially exploited by malicious actors. This encompasses performing vulnerability assessments, penetration tests and red team exercises.

The trainee will be part of the Cybersecurity Operations Unit (CYBEROPS) - Cybersecurity Assurance Service (CYBERSAS) and will focus on vulnerability management’s processes and tools improvements. The selected person will also work with the team members on penetration tests.

Assignments: The trainee should design and develop custom automated tools and scripts to streamline and enhance various cybersecurity processes, such as Cyber Attack Surface monitor, vulnerability scanning and vulnerability monitoring process.

Concretely, the trainee will assist team members in the following tasks:

• Analyse test results and document findings within the vulnerability management and escalation processes;
• Conduct penetration testing of systems and applications to identify and assess security vulnerabilities;
• Provide recommendations for security hardening;
• Stay up to date with the latest cybersecurity vulnerabilities and advisories;
• Create comprehensive reports on security test results;
• Maintaining up-to-date knowledge of security trends, threats, and mitigation strategies;
• Implement SecDevOps processes and monitor the progress of implementation.

You have:

• A relevant degree;
• Good knowledge of cybersecurity principles, including network security, application security, and secure coding practices;
• The ability to work effectively both independently and within a team;
• A desire to continuously improve and stay up-to-date with the latest security threats and mitigation strategies;
• Interest in understanding how various disciplines interact and collaborate to achieve a common vision;
• Interest in gaining a comprehensive practical understanding of multiple technical disciplines;
• Creative thinking and passion to work on innovations;
• Good verbal and written communication skills.

The European Parliament is dedicated to fostering an inclusive and equitable workplace. We welcome all candidates, regardless of their geographical, racial or ethnic origin, political or religious beliefs, age, disability, gender identity, sexual orientation, socioeconomic background, civil status, or family situation.