Program Cybersecurity Manager

Apply now »

Date: 19-Jun-2021

Location: Bangalore, KA, India

Company: Alstom

Req ID:113413 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 36 300 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.  

About Alstom in India

Alstom has established a strong presence in India. Currently, the company is executing metro projects in several Indian cities including Chennai, Kochi and Lucknow where it is supplying Rolling Stock manufactured out its state of the art facility at SriCity in Andhra Pradesh. In the Mainline space, Alstom is executing Signaling & Power Supply Systems for the 343 Km. section on World Bank funded Eastern Dedicated Freight Corridor. Phase 1 in the construction of the new electric locomotive factory for manufacturing and supply of 800 units of 12000HP locomotives is also complete at Madhepura, Bihar while the depot at Saharanpur, Uttar Pradesh is ready to commence operation. Alstom has set up an Engineering Centre of Excellence in Bengaluru, and this coupled with a strong manufacturing base as well as localized supply chains, is uniquely positioned to serve customers across the globe. Today, Alstom in India employs close to 3600 people and in line with Government of India’s ‘Make in India’ policy initiative, Alstom has been investing heavily in the country in producing world class rolling stock, components, design, research and development to not only serve the domestic market, but also rest of the world. India


Purpose of the Job -


- To organize and manage the cybersecurity studies, design and verification & validation activities for Metro Rail projects executed by Alstom

- Manage internal and external stakeholders on a project in the area of cybersecurity.

- Interface with global Alstom cybersecurity management team.


Organisational Reporting -

- Project Manager (functional) and to Department Head (hierarchical)


Network & Links -

- In contact with the Cybersecurity Management Office.

- Integrated within Project management Team


Job Description -


- The Program Cybersecurity Manager is the point of contact of the Program for cybersecurity related subjects. He is in charge of the following activities:

  • Analyse Program security needs (including laws and local regulations), determine security objectives and main security risks strategy
  • Plan security activities within development life cycle, estimate costs and duration, their impacts related to program execution.
  • Obtain agreement from Program about on the set of security measures to be implemented
  • Is responsible for Cost / Quality / Delay of Program Cybersecurity deliverables, as below : 
  • Cybersecurity Management Plan and maintain Risk Registry
  • Cybersecurity Architecture Definition and Requirement Allocation
  • Supplier capability assessment and COTS evaluation reports
  • Application of Cybersecurity Assurance Level
  • Produce Cybersecurity evaluation plan and report
  • Definition of Cybersecurity Operating Procedures
  • Evaluation of the Program achieved Cybersecurity level
  • Provide support during technical design meetings for cybersecurity activities
  • Manage vulnerabilities and Cybersecurity issues and actions plan,
  • Manage Program Cybersecurity related communication,
  • Report on Program Cybersecurity status
  • In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned


Skills and Experience -


  • 10+ years total relevant experience.
    • Data protection (Data at rest protection, Data in transit protection, Data loss prevention)
    • Hardening (Integrity & Authenticity verification, Mobile media Protection, ..)
    • Architecture (System Secure Architecture, Network Protection & Partitioning, Wireless access, Remote Access Management, Secure Administration, Platform Physical Security)
    • Detection & Response capacity (Asset management & discovery, Anti-malware, DoS detection, Log / Event / Alarm Management, Intrusion Detection/Prevention systems, Incident Response Management capabilities)
    • Cryptography Management
    • Vulnerability and Patch Management
  • General knowledge on standards related to Cybersecurity : ISO 2700x, IEC 62443, NIST, NIS.
  • Network architectures (main technical principles).
  • Good knowledge in software architecture, in particular regarding O.S (especially Linux).
  • Knowledge about risk assessment is a “plus”.
  • Project/Program management skills (Quality, Cost and Delivery)
  • Knowledge of industry best practices, methodologies, tools, etc. in the field of cybersecurity
  • Strong documentation (written) and presentation (verbal) skills
  • Ability to communicate effectively with internal stakeholders.
  • Cybersecurity certifications desirable (GICSP, CISSP, GSEC, CISM)
  • Dynamic, autonomous. Ability to work in a complex and cross functional environment


We welcome applications from all backgrounds regardless of gender, age, disability or ethnicity. We recognise that embracing flexibility is the smarter way of working.

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.   



Job Type:​Experienced​

Job Segment: Bank, Banking, Network, Program Manager, Manager, Finance, Technology, Management