ATR - Cybersecurity Manager (H/F) - AVIONS DE TRANSPORT REGIONAL (ATR) GIE

We are looking for a Cybersecurity Manager to join our CISO and Future Developments Directorate. The role will provide technical expertise and hands‑on support across ATR’s cybersecurity activities, contributing to governance, engineering, IT, suppliers, compliance, and operations while maintaining a technical focus suitable for a junior engineer (3‑5 years of experience).

Key Responsibilities

• ISMS Operational Support
  • Produce and maintain ISMS documentation (procedures, control evidence, records, KPIs) in support of the ISMS Officer.
  • Support internal audits and compliance assessments led by the ISMS Officer.
  • Contribute to the monitoring of cybersecurity controls and remediation follow‑up.
  • Assist in preparing evidence for EASA, OSAC, DSAC audits and inspections.
  • Support the implementation and continuous improvement of ISMS processes.
• Cyber Risk Assessment & Analysis
  • Perform SRA analyses under the supervision of the ISMS Officer and Deputy CISO.
  • Identify threats, vulnerabilities, and applicable security controls.
  • Contribute to the maintenance of the Information Security Risk Register.
  • Support mitigation tracking and documentation.
  • Prepare technical summaries and recommendations.
• Security‑by‑Design Support (Engineering, Programs, IT)
  • Support cybersecurity‑by‑design activities for Engineering and IT projects.
  • Assist in defining technical cybersecurity requirements for aircraft systems, IT solutions, digital projects, and suppliers.
  • Contribute to design reviews and ensure traceability of requirements.
  • Perform security evaluations, provide technical inputs, and support integration tasks.
  • Act as a Product Security Officer, contributing to product‑level cybersecurity analyses.
• Supplier Security & Procurement Support
  • Conduct supplier cybersecurity assessments (questionnaires, evidence checks, scorecards).
  • Support Procurement in integrating cybersecurity requirements into RFPs and contracts.
  • Perform follow‑up of supplier compliance deliverables.
  • Contribute to Make/Buy analysis by providing technical insights.
• Awareness, Training & Cyber Culture
  • Prepare material for cybersecurity awareness campaigns and support their delivery.
  • Contribute to internal communication content (guidelines, quick‑reference materials).
  • Provide technical coaching to project teams when requested.
• Incident Response & Technical Investigations
  • Support IT during cybersecurity incident diagnostics and evidence gathering, contributing to containment, analysis, and documentation.
  • Identify, analyse, and qualify vulnerabilities (systems, applications, configurations, supplier deliverables).
  • Support vulnerability triage and remediation follow‑up with IT and Engineering teams.
  • Contribute to root cause analyses and lessons learned documentation.
  • Assist in improving detection and response processes.

Qualifications & Experience

• Networks & Protocols: TCP/IP, firewalls, proxies, VPN.
• Operating Systems: Windows Server and Linux security.
• Security Tools: SIEM, IDS/IPS, EDR/XDR, WAF, PKI solutions.
• Cryptography: encryption and key management principles.
• Scripting: basic skills in Python, Bash/Shell or PowerShell.
• Cloud Security: familiarity with AWS, Azure or GCP security mechanisms.
• Product Security: ability to contribute to cybersecurity evaluations for ATR products and systems.
• 3–5 years’ experience in cybersecurity, IT security, or systems/software engineering.
• Basic understanding of ISO 27001, Part‑IS, NIS2, NIST CSF.
• Strong analytical and problem‑solving mindset.
• Willingness to learn aviation cybersecurity.
• Ability to work transversely with Engineering, IT, Programs, Procurement.
• Fluent in English; French is desirable.

Benefits

• Highly competitive compensation package (profit and success sharing, employee savings plan).
• Work‑life balance (remote working, 6th week of paid leave, additional days off for family events).
• Well‑being / health (supplementary health & welfare coverage).
• Career paths enabling employees to develop their skills and build a professional project.
• Wide choice of development programs for soft and hard skills.
• Family and employee events (CSE) and trips provided by ATR and Airbus CSE.

ATR is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief.

This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company’s success, reputation and sustainable growth.