Project Cybersecurity Manager
Job Description
Req ID:416125
Leading societies to a low carbon future, Alstom develops and markets mobility solutions that provide the sustainable foundations for the future of transportation. Our product portfolio ranges from high-speed trains, metros, monorail, and trams to integrated systems, customised services, infrastructure, signalling and digital mobility solutions. Joining us means joining a caring, responsible, and innovative company where more than 70,000 people lead the way to greener and smarter mobility, worldwide
Key accountabilities:
- Analyze Project / Program security needs (including laws and local regulations), determine security objectives and main security risks strategy
- Plan security activities within development life cycle, estimate costs and duration, their impacts related to project program execution, Identify training needs
- Is responsible for Cost / Quality / Delay of Project/Program Cybersecurity deliverables, as needed per Project / program context :
- Cybersecurity context, and Cybersecurity Risk Analysis
- Cybersecurity Architecture definition and requirement allocation
- Cascading of requirement to suppliers, Manage Third Parties Risks,
- Application of Cybersecurity Assurance Level
- Definition of Cybersecurity Operating Procedures
- Evaluation of the Project/Program achieved Cybersecurity level
- Provide support during technical design meetings for cybersecurity activities
- Obtain agreement from Project/Program/Customer about on the set of security measures to be implemented
- Manage vulnerabilities and Cybersecurity issues and actions plan,
- Manage Program / Project Cybersecurity related communication,
- Report on Program / Project Cybersecurity status
- In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned
- Promoting the Alstom Code of Ethics and adhering to the highest standards of ethical conduct.
Requirements:
Mandatory:
- University/ Engineer in degree level
- Experience with direct responsibility for hands on architecture, design, development
- Experience related to Cybersecurity in general, deployment experience of security technologies.
- QCD Management
Desirable:
- Cybersecurity certification such as: GICSP, CISSP, GSEC, CISM
- Knowledge of Alstom Products & Solution Portfolio
- Experience in embedded or industrial systems (railway / aeronautics …)
Competencies & Skills
- Engineering Background
- Knowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, NIS, French LPM
- Knowledge of some Cybersecurity solutions and areas
- Methods of Cybersecurity risk analysis
- Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.
- Knowledge of the main techniques for evaluating systems security
- Dynamic, autonomous. Creativity and ability to work in a complex environment.
Alstom is the leading company in the mobility sector, solving the most interesting challenges for tomorrow’s mobility. That’s why we value inquisitive and innovative people who are passionate about working together to reinvent mobility, making it smarter and more sustainable. Day after day, we are building an agile, inclusive and responsible culture, where a diverse group of people are offered opportunities to learn, grow and advance in their careers, with options across functions and geographic locations. Are you ready to join a truly international community of great people on a challenging journey with a tangible impact and purpose?
Equal opportunity statement:
Alstom is an equal opportunity employer committed to creating an inclusive working environment where all our employees are encouraged to reach their full potential, and individual differences are valued and respected. All qualified applicants are considered for employment without regard to race, colour, religion, gender, sexual orientation, gender identity, age, national origin, disability status, or any other characteristic protected by local law.
Job Type:Experienced
