Network and Security Engineer

ALTEC is involved in the design, implementation and operations of several Ground Segment projects in close collaboration with the European Space Agency (ESA) and the Italian Space Agency (ASI). Today ALTEC is operating dedicated centers for the support to the International Space Station (ISS) in strict collaboration with NASA Mission Control Center in Houston and the ESA Columbus Control Center in Germany, as well as dedicated centers for the data processing of scientific data based on HPC implementation, such as the GAIA Data Processing Center – Turin (DPCT), the Euclid Science Data Center Italy (SDC-IT), the Solar Orbiter METIS Operations Facility. In parallel the ExoMars ROCC and the Space Rider P/L and Landing Control Center are under implementation.

Network interconnection and information security are of fundamental importance in all these contexts and are often managed with all international and national partners, applying cutting-edge solutions and processes. The same applies to the corporate network and security infrastructure, which share technologies, solutions, processes, and procedures, ensuring a common approach within ALTEC’s operational perimeter.

ALTEC’s Information Systems group is also responsible for managing network and security aspects. The scope includes all mission operations and data processing centers and the company’s IT infrastructure. Activities involve applying the processes established by the ISO 27001:2022 information security standard, in line with NIS2 security requirements, and often involve close coordination with international counterparts.

Duties

As network and security administrator, you will be part of the ALTEC Security Operations Center team, and in this role you will:

• collaborate with the Company Security Organization to manage network and security aspects for all mission operations and data processing centers, as well as the one related to the Company itself, following the established policies and procedures of the security framework based on ISO 27001:2022 (in line with the NIS2 security requirements);
• support the implementation of the end-to-end security life cycle from execution of the security risk analysis, security requirement establishment, the architecture definition up to their verification and operational utilization in coordination with the Ground System Engineering unit;
• support the periodic vulnerability scan and the associated development and implementation of the remediation plans, with the appropriate development of the associated documentation;
• support the continuous monitoring of the entire network and security infrastructure using the established tools and procedures. This will include also the management of network and security systems / tools in terms of configuration, update and/or technological evolution;
• identify and apply security best practices, document them and support their diffusion inside the company
• support the security incident management team, as necessary.

Considering the strong integration of security with both data system and SW, the role will include some additional tasks in support of specific IT Infrastructure Engineering, with clear focus on security aspects implementation, such as:

• support the management of the overall IT infrastructure;
• support the management of the virtualization infrastructure (based on VMware software and ProxMox) and container-based environments such as Kubernetes;
• support management of operating systems (Linux and Windows) in terms of hardening, updates, evolution, etc. both on virtual machine and physical one.