About the role
Imagine being the person standing between cutting edge aerospace innovation and the cyber threats trying to slow it down. As IT Security Engineer at Destinus you join the internal IT admin team to design implement and operate security controls that protect a distributed cloud first environment built for speed and engineering excellence. You make sure our aerospace and defence critical technologies operate securely under strict national security requirements while still enabling teams to move fast and build boldly. Working side by side with IT engineering and the Global Information Security Manager you translate cyber security policies into practical technical solutions ensure compliance with security standards proactively reduce risk and lead effective responses when incidents occur.
At Destinus, we are revolutionizing the defense industry with cutting-edge Unmanned Aerial Vehicles (UAVs). Our innovative technologies are designed to meet the unique demands of modern defense operations, delivering unparalleled speed, precision, and cost effectiveness. Destinus partners with government agencies and defense organizations worldwide to provide advanced solutions for mission-critical operations, enabling a new era of efficiency and technological superiority. Join us in shaping the future of defense with groundbreaking aerospace innovations.
What You´ll Do
- Security architecture and strategy
- Develop and implement IT security policies, standards, and procedures, evolving IT and cloud environments toward cybersecurity best practices and zero-trust principles.
- Translate risk assessments, ISMS requirements, and regulatory obligations (ISO 27001, NIST, export control/defence standards) into technical controls.
- Contribute to cybersecurity roadmaps aligned with group strategy, including migration from a Google-centric to a Microsoft-based architecture.
- Cloud and enterprise security engineering
- Design and implement cybersecurity baselines for Microsoft 365, Entra ID, Intune, AWS, and on-prem Unix and Microsoft systems, integrated with existing environments.
- Define and maintain secure configurations for identity and access management, conditional access, logging, and monitoring across cloud and on-prem platforms.
- Collaborate with IT and engineering teams to harden Windows, macOS, and Linux endpoints using EDR, MDM, and configuration management tools.
- Monitoring, detection, and incident response
- Implement and tune SIEM/SOAR detections (e.g., Microsoft XDR or equivalent) covering key attack surfaces.
- Define logging, alerting, and runbooks for IT support and operations teams.
- Lead or support investigations of complex cybersecurity incidents, including root-cause analysis and remediation.
- Coordinate with the IT SOC team.
- Security operations and projects
- Own end-to-end delivery of major security initiatives, including scoping, solution design, implementation planning, and success metrics.
- Collaborate with IT on network segmentation, VPNs, and secure connectivity for offices, labs, and cloud workloads.
- Support vulnerability management and patching by providing prioritization and remediation guidance.
- Contribute to supplier and SaaS security assessments for tools used by Destinus.
- Deliver security awareness training and create user instructions.
- Governance, collaboration, and awareness
- Provide technical input to policies, standards, and procedures for IT, cloud, and endpoint security.
- Work with the Global Information Security Manager on ISO 27001, Part-IS, aviation/defence compliance, and customer audit support.
- Act as a cybersecurity subject-matter expert for engineering teams, promoting secure-by-design practices in software and hardware development beyond IT.
