Cybersecurity Engineer

Thales is a global technology leader trusted by governments, institutions, and enterprises to tackle their most demanding challenges. From quantum applications and artificial intelligence to cybersecurity and 6G innovation, our solutions empower critical decisions rooted in human intelligence. Operating at the forefront of aerospace and space, cybersecurity and digital identity, we’re driven by a mission to build a future we can all trust.

JOB OBJECTIVE

CPS Asia provides a range of cybersecurity services and solutions to our regional clients with a strong focus on Operational Technology. Our ambition is to scale up our existing business and increase our footprint in the region with a refreshed strategy and mandate to leverage our global capability and win new business in our core markets.

We are seeking a pragmatic, technically credible Work Package Manager to own end-to-end delivery of a cybersecurity solution work package within a larger programme. You will be accountable for scope, schedule, cost, quality and customer acceptance while coordinating multidisciplinary teams (cybersecurity engineers, systems engineers, test, deployment, suppliers) to safely deploy secure IT/OT solutions into operational environments (Aviation, Government, Defence and other critical infrastructure).

The role will require someone who is a problem solver, determined and enthusiastic. They will bring experience of implementing a wide variety of cybersecurity products and solutions within large complex system development. They will have the ability to apply cybersecurity principles and best practises to organisational requirements and be able to identify and remediate critical infrastructure systems that were designed without system security considerations.

The successful Candidate will enjoy a rewarding role full of new challenges and be part of a company that provides highly complex solutions in the most critical operational environments where robust safety and resilience standards are applied.

ROLES & RESPONSIBILITIES

• Full accountability for delivery of the assigned work package(s): scope, schedule, budget, quality, configuration and acceptance.

• Produce and maintain a detailed work package delivery plan (milestones, resource plans, delivery gates, acceptance criteria and deliverables).

• Lead, coordinate and motivate multidisciplinary delivery teams and third party suppliers to meet objectives and programme interfaces.

• Translate programme/contract requirements into actionable technical and delivery tasks; ensure traceability to acceptance criteria.

• Oversee integration of cybersecurity components into the wider system architecture; manage interfaces and resolve technical conflicts.

• Plan and manage verification, validation and qualification activities (integration testing, system validation, penetration testing, vulnerability management) and ensure evidence is produced for customer acceptance.

• Ensure secure deployment, cutover and transition to operations: deployment plans, runbooks, operational handover, training and customer acceptance.

• Proactively identify, assess and manage risks, issues and opportunities; implement mitigation and escalate appropriately.

• Maintain configuration management and control of technical deliverables, documentation, standard operating procedures and maintenance material.

• Act as primary customer point of contact for delivery matters; manage expectations and contractual obligations.

• Ensure compliance with applicable standards, regulations and programme requirements (for example ISO 27001, IEC 62443, IM8, CCoP, NIST frameworks as applicable).

• Champion continuous improvement in delivery practices, security posture and operational resilience.

• Support proposals, commercial discussions and scope changes when required.

WORK EXPERIENCE REQUIREMENTS

• Minimum of 5 - 7 years’ of experience in cybersecurity engineering or equivalent technical roles.

• Subject Matter Expert in any cybersecurity domain/products/vendors

• Experience in delivery for customers from Aviation, Government, Defence sectors

• Experience in conducting a cybersecurity risk management exercise

• Experience in administrating and troubleshoot Windows and/or Linux Operating Systems

• Familiar with the following concepts and technology

  • Cybersecurity concepts, technologies and terminology.

  • Computer networking concepts and protocols, network security methodologies (TCP/IP, segmentation, firewalls, IDS/IPS).

  • Cybersecurity standards, regulations and codes of practice (ISO 27001, IM8, CCoP, IEC 62443, NIST CSF as applicable).

  • Verification, validation and qualification processes.

  • IT Service Management (ITSM) and configuration management.

  • Secure Software Development Lifecycle (SSDLC) principles.

  • Operational Technology (OT), Critical Information Infrastructure and cyber-physical system considerations.

​QUALIFICATION, CERTIFICATION & EDUCATIONAL REQUIREMENTS

Mandatory (One or more of the following)

• Degree in Information Security (preferred) or Information Technology or Computer Science

• Certified Information Systems Security Professional (CISSP), or

• Certified Information Security Manager (CISM)

• Security+

• Project management certification (PMP, Prince2, APM)

Preferred

• Information Systems Security Architecture Professional (CISSP-ISSAP)

• Information Systems Security Engineering Professional (CISSP-ISSEP)

PREFERRED SKILLS

Technical Skills:

• Strong knowledge of cybersecurity principles, frameworks, and best practices 

• Proficiency with Identity and Access Management (IAM), Privileged Access Management (PAM), Privileged Identity Management (PIM), and Multi-Factor Authentication (MFA) solutions 

• Expertise in network security, network monitoring, and intrusion detection/prevention systems 

• Familiarity with Public Key Infrastructure (PKI), Certificate Authority (CA) operations, and digital certificates 

• Practical understanding of backup, recovery, and business continuity processes 

• Hands-on experience with Commercial Off-The-Shelf (COTS) security products deployment and customization 

• Proficiency in system development life cycle (SDLC) methodologies and secure software development practices 

• Experience in system integration and troubleshooting complex environments 

• Competency in developing and executing system test plans and validation procedures 

Project and Delivery Support Skills:

• Ability to translate customer requirements into actionable security solution designs 

• Experience supporting test and evaluation activities and coordinating with multiple teams 

• Risk and opportunity management during project implementation, including subcontractor coordination 

• Strong documentation skills for technical and procedural outputs 

• Capability to provide implementation guidance, training materials, and support to deployment teams 

• Familiarity with service delivery processes and quality assurance standards 

• Effective communication skills to liaise between engineering teams, delivery managers, and customers 

• Proactive problem-solving and incident management abilities 

• Time management and prioritization skills to handle multiple concurrent tasks efficiently 

Soft Skills:

• Collaboration and teamwork within cross-functional and multidisciplinary teams 

• Adaptability in fast-paced, evolving technological environments 

• Attention to detail and commitment to maintaining security and compliance standards 

• Customer-focused mindset and ability to manage expectations 

• Analytical thinking and decision-making under pressure

At Thales, we’re committed to fostering a workplace where respect, trust, collaboration, and passion drive everything we do. Here, you’ll feel empowered to bring your best self, thrive in a supportive culture, and love the work you do. Join us, and be part of a team reimagining technology to create solutions that truly make a difference – for a safer, greener, and more inclusive world.