Cybersecurity Manager - Projects Job in Alstom

Req ID:72528

We create smart innovations to meet the mobility challenges oftoday and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric busesand driverless trains, as well asinfrastructure, signalling and digital mobility solutions. Joining us meansjoininga truly global community ofmore than36 300 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.

About Alstom in India

Alstom has established a strong presence in India. Currently, the company is executing metro projects in several Indian cities including Chennai, Kochi and Lucknow where it is supplying Rolling Stock manufactured out its state of the art facility at SriCity in Andhra Pradesh. In the Mainline space, Alstom is executing Signaling & Power Supply Systems for the 343 Km. section on World Bank funded Eastern Dedicated Freight Corridor. Phase 1 in the construction of the new electric locomotive factory for manufacturing and supply of 800 units of 12000HP locomotives is also complete at Madhepura, Bihar while the depot at Saharanpur, Uttar Pradesh is ready to commence operation. Alstom has set up an Engineering Centre of Excellence in Bengaluru, and this coupled with a strong manufacturing base as well as localized supply chains, is uniquely positioned to serve customers across the globe. Today, Alstom in India employs close to 3600 people and in line with Government of Indias Make in India policy initiative, Alstom has been investing heavily in the country in producing world class rolling stock, components, design, research and development to not only serve the domestic market, but also rest of the world. India

Organisational Reporting

Reports to Cybersecurity Delivery Manager

Network & Links

Internal

• Project team
• Delivery management
• Cybersecurity Engineer
• Cybersecurity Shared service
• Cybersecurity Management office
  
  External
• Report functionally to Customer Cybersecurity Manager

Purpose of the Job

Organize and manage Cybersecurity activities during Project

RESPONSIBILITIES:

The Project Cybersecurity Manager is the point of contact of the Project for cybersecurity related subjects.

• Establish the project Cybersecurity Management Plan
• Ensure that applicable security requirements, security rules (including laws and local regulations), security guidelines, security information, etc. are distributed to project stakeholders and ensure compliance.
• Plan security activities and manage the definition of the most efficient system architecture related to cybersecurity requirements of the contract.
• Obtain agreement from internal stakeholders about targeted maximum residual risks level, cybersecurity risks to be addressed (risk management) and security measures to be implemented.
• Review of Cybersecurity Risk Analysis and Evaluation Report, evaluate project and business impacts of technical vulnerabilities identified as part of technological monitoring activities
• Review deployment documents (Design, RAM, V&V) from a cybersecurity perspective
• Define and follow-up action plans to close the cyber security issues
• Ensure Cybersecurity awareness been propagated to Alstom team and suppliers
• Organize the capture of experience feedback and the implementation of continuous improvement plans for Cybersecurity aspects

- Member of the Change Control Board (CCB), in charge of evaluating Cybersecurity related impact of Change Request (CR) and following them up to closure

- Responsible for Cost / Quality / Delay Deliverables Cybersecurity for allocated projects

- To be the technical interface with the customer for the Cybersecurity domain

Qualifications & Skills:

Qualification-

Mandatory:

University/ Engineer in degree level

Desirable:

Cybersecurity certification such as: GICSP, CISSP, GSEC, CISM

Skills required

- 12+ years total experience in information technology and security. Experience with direct responsibility for hands on architecture, design, development.

- Experience related to management of cybersecurity in general, deployment experience of security technologies.

- Management of Quality, cost and delivery

- Methods of Cybersecurity risk analysis

- Knowledge of some information security areas such as risk/vulnerability assessment, threats, recovery, risk & compliance reporting, identity management, intrusion detection/prevention, etc.

- Knowledge of cybersecurity standards (ISO 2700X, IEC 62443, NIST, etc.)

- Familiarity with security products and protocols.

- Knowledge of industry best practices, methodologies, tools, etc. in the field of cybersecurity

- Strong documentation (written) and presentation (verbal) skills

- Ability to collaborate across traditional engineering functions.

- Ability to communicate effectively with customers, vendors and internal stakeholders.

- Cybersecurity certifications desirable (GICSP, CISSP, GSEC, CISM)

- Dynamic, autonomous.Ability to work in a complex and cross functional environment.

Language Skills: Proficient in English language

• IT Skills: MS office tools (Word, Excel, PowerPoint)

Measurement

• No "NO GO" for Cybersecurity reasons in Gate Reviews
• Quality of Cybersecurity deliverables, in time
• Achievement of Project targeted level of Cybersecurity
• Assessment findings: Low rework due to external or internal assessments
• Vulnerability management is in place
• Respect of Cybersecurity activities QCD commitment
• Cybersecurity issues/incident resolution

We welcome applications from all backgrounds regardless of gender, age, disability or ethnicity. We recognise that embracing flexibility is the smarter way of working. Please speak with us about your individual needs.

An agile, inclusive and responsiblecultureis the foundation of ourcompanywhere diverse people are offered excellent opportunities to grow, learn and advanceintheir careers.We are committed toencouragingour employeesto reach their full potential,while valuing and respecting them as individuals.

Job Type:?Experienced?