Network Security Architect

Apply now »

Date: 23-Jul-2022

Location: Bangalore, KA, India

Company: Alstom

Req ID:339001 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 70000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.  


Reporting directly to the Network Security and OT Operations Manager, the Network Security architect will be in charge of design and review  for all Network Security Services of Alstom in context of all New business requirements,transformation and new technologies deployment.

Enhances security team accomplishments and competence by planning delivery of solutions; answering technical and procedural questions for less experienced team members; teaching improved processes;mentoring team members

He/She should perform in depth diagnostics and troubleshooting using required Networking tools mainly focused on Firewalls, Load balancers, WAF,IPS, Zscaler Cloud proxy, ZTNA (Zero trust network access)

He/She should assist Alstom business users with End to End testing or Troubleshooting of Networking related to Network Security Services

He /She should be able to reproduce end user issues to verify problems and document steps as Knowledgebase for other Support teams and Operations teams in Alstom Network services.

He/She should ensure any actions performed is in compliance with Alstom IS Security policy regulations.


Key Responsibilities & Accountabilities:

  • Cross domains:
    • Gather, collect and formalize business requirements from different representatives (business partners, clients, partners, projects, business solutions …)
    • Convert business requirements into technical specifications with formalized use cases
    • Write and review High and Low-Level Design documents ensuring interoperability, scalability and security compliance
    • Define and write Acceptance Testing plan.
    • Contribute to and validate project scoping
    • Ensure handover to projects teams and validate project progress gates.
    • Evaluate new technology solutions for an integration to the roadmap, in collaboration with Business Partners, Projects, Operations and architects members.
    • Support operations teams with regard to
      • P1 incidents acting as expert,
      • Non- Standard Service Requests fulfillment,
      • Capacity and availability Planning,
      • Service Catalog
      • Change Management
    • Develop, change and improve processes
    • Manage risks and opportunities
    • Delegate activities and manage contractors
    • Act as architect go to person for internal and external stakeholders like partners
  • New Business:
    • Review and validate proposed architectures
    • Define or update existing patterns to accelerate project delivery
  • Transformation:
    • Analyze technology and market trends
    • Own and share a technology vision
    • Define and drive the transformation roadmap
    • Define b-case and ensure value realization
    • Compare options, share pros and cons and arbitrate
    • Support some critical or strategic transformation projects
  • M&A:
    • Understand M&A milestones and expectations
    • Develop an M&A strategy and architecture to answer business needs
    • Ensure Day 1 readiness
    • Post Go Live support



  • Act as accountable for all Services while service is managed by third party and controlled by operations
  • Find the right tradeoff between make or buy and deliver or delegate/control
  • Manage changing priorities
  • Help the operation team to manage the Network security services issues in order to ensure business continuity


Qualifications & Skills:


  • Graduated with an engineering degree, in Information Technology, you have more than 8 years of experience in Network and Network Security services, and more the 3 years as an architect
  • He/she  have worked for global companies either as a service provider or as a customer, ideally both roles



AGILE - Act quickly, anticipate, learn and adapt continuously

INCLUSIVE - Embrace differences and work as a team

RESPONSIBLE - Keep our commitments towards internal and external stakeholders (employees, customers,passengers, society)




  • He/She have very good technical skills on different topics and are curious
  • He/She demonstrate good communication, efficiency and ability to execute and  result oriented and show intellectual curiosity and creativity. Leadership is key.
  • Be familiar with the following domains:
    • DDI (DNS, DHCP, IP Plan) basics
    • IDS/IPS : McAfee and Cisco Firepower
    • Remote access: VPN, ZTNA, Pulse one
    • Load balancers – AVI, F5,Pulse
    • Cloud Network (ZSCALER, AZURE Networking)
    • WAF – AVI, F5
    • OWASP understanding
    • ISO 27001 basic controls for architecture solutions.



Should have good experience working on Firewalls, and operational management.

Azure Cloud Network Component understanding

Should Have Hands on Experience on Firewalls/Proxies

Good understanding of security tools and mechanisms (IDS/IPS, antivirus, anti-malware, authentication mechanisms, DNS, IPAM, PKI, encryption, etc.)

Knowledge of ISO 27002 Security Controls.

Network Security understanding of all components required for Organization security.

Language Skills: Proficient in English language

IT Skills: MS office tools (Word, Excel, PowerPoint) for Reporting

Able to identify and document specific security issues, propose resolution options, and interpret matters from the perspective of involved stakeholders

Excellent written/verbal/communication, listening and facilitation skills

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.   



Job Type:​Experienced​

Job Segment: Network, Cisco, Change Management, Technology, Management