Cybersecurity Governance Analyst

At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, 80,000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.

Could you be the full-time Information Cybersecurity Governance Analyst in Bangalore we’re looking for?

Your future role

Take on a new challenge and apply your expertise in information security management and governance in a cutting-edge field. You’ll work alongside collaborative and innovative teammates.

You'll play a key role in ensuring the implementation and maintenance of an Information Security Management System (ISMS) aligned with ISO 27001 standards. Day-to-day, you’ll work closely with teams across the business (such as Information Security, SecOps, Solution Architecture, and Product & Solutions Cybersecurity teams), oversee internal audits, manage security controls, and ensure compliance with information security regulations, and much more.

You’ll specifically take care of conducting risk assessments and developing security policies, but also contribute to the ISO 27001 certification project and improve the integration of security measures into organizational processes.

We’ll look to you for:

• Assessing, evaluating, and making recommendations regarding the adequacy of security controls.

• Ensuring Digital Transformation activities meet defined requirements, policies, and regulations.

• Coordinating and tracking audits, including scope, timelines, and outcomes.

• Contributing to the maintenance and improvement of the information security policies framework.

• Monitoring and ensuring the application of governance policies and processes.

• Supporting security architects in implementing measures to reduce security debt.

• Collaborating on the preparation of audits and ISO 27001 certification activities.

All about you

We value passion and attitude over experience. That’s why we don’t expect you to have every single skill. Instead, we’ve listed some that we think will help you succeed and grow in this role:

• Bachelor’s/Master’s degree in a relevant field.

• 2 to 5 years of advanced IT experience, particularly in information security governance, risk management, and ISO 27001 implementation.

• Knowledge of information security standards and regulations such as ISO27001, ISO27005, and MITRE.

• Experience in developing security standards and guidelines based on best practices and industry standards.

• Strong communication skills, with the ability to adapt technical messages for diverse audiences.

• Ability to collaborate effectively across teams and build partnerships in a diverse workplace.

• Proficiency in planning, coordinating, and managing projects with diverse teams.

• Experience with European regulations such as EU GDPR and NIS2 is a plus.

• Certifications in FAIR Risk Management, ISAE3000/SOC2, or IEC 62443 are desirable.

• Experience in the transportation or railway industries is a plus.

Things you’ll enjoy Join us on a life-long transformative journey – the rail industry is here to stay, so you can grow and develop new skills and experiences throughout your career. You’ll also:

• Enjoy stability, challenges, and a long-term career free from boring daily routines.

• Work with new security standards for rail signalling.

• Collaborate with transverse teams and helpful colleagues.

• Contribute to innovative projects that make a difference.

• Utilise our flexible and inclusive working environment.

• Steer your career in whatever direction you choose across functions and countries.

• Benefit from our investment in your development, through award-winning learning opportunities.

• Progress towards senior roles in information security and governance.

• Benefit from a fair and dynamic reward package that recognises your performance and potential, plus comprehensive and competitive social coverage (life, medical, pension).

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

Important to note

As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. We’re committed to creating an inclusive workplace for everyone.