Loading...

Project Cyber Security Manager Tier

Apply now »

Date: 21-Sep-2021

Location: Bangalore, India

Company: Alstom

Req ID:174586 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 75 000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.  

Purpose of the job:

Organize and manage Cybersecurity activities during Project (contract execution).

 

Organization structure (job belongs to..)

Reports directly to:

Reports to Cybersecurity Delivery Manager or Metier Manager

Other reporting to:                

Report functionally to

  • Region Cybersecurity managers
  • Project Manager

 

Network & Links

Internal

  • Project team
  • Delivery management
  • Cybersecurity Engineer
  • Cybersecurity Shared service
  • ybersecurity Management office

External

  • Customer Cybersecurity Manager

ACCOUNTABILITIES & AUTHORITIES

ACCOUNTABILITIES & AUTHORITIES

 

Key accountabilities:

The Project Cybersecurity Manager is the point of contact of the Project for cybersecurity related subjects. He is in charge of the following activities:

  • Establish the project Cybersecurity Management Plan
  • Analyze Project security needs (including laws and local regulations), determine security objectives and main security risks strategy
  • Plan security activities within development life cycle, estimate costs and duration, their impacts related to project execution, Identify training needs
  • Is responsible for Cost / Quality / Delay of Project Cybersecurity deliverables, as needed per  Project  context :  
    • Cybersecurity context, and Cybersecurity Risk Analysis
    • Cybersecurity Architecture definition and requirement allocation
    • Cascading of requirement to suppliers,  Manage Third Parties Risks,
    • Application of  Cybersecurity Assurance Level
    • Definition of Cybersecurity Operating Procedures
    • Evaluation of  the Project achieved Cybersecurity level
  • Follow cybersecurity architecture and design during project execution which includes,
    • Analyse requirements and follow-up of technical solution in-line with cybersecurity design directives and project contractual requirements
    • Follow-up on design, implementation and maintain cybersecurity architecture on projects. Collaborate across traditional engineering functions.
    • Support evaluation of COTS products in line with project needs (e.g. syslogger, IDS, IPS, firewall, SIEM, etc.).
  • Participate to design reviews with cybersecurity point of view and challenge technical choices.
  • Obtain agreement from Project/Customer about on the set of security measures to be implemented
  • Manage vulnerabilities and Cybersecurity issues and actions plan,
  • Manage Project Cybersecurity related communication,
  • Report on Project Cybersecurity status
  • Promoting the Alstom Code of Ethics and adhering to the highest standards of ethical conduct.

Key Job Authorities and Dimensions

  • Responsible of the QCD of its project Cybersecurity Work Package
  • Functional animation of Cybersecurity Engineer team (typically from 1 to 5)

 

Performance measurements:  

  • No "NO GO" for Cybersecurity reasons in Gate Reviews
  • Quality of Cybersecurity deliverables, in time
  • Achievement of Project targeted level of Cybersecurity
  • Assessment findings : Low rework due to external or internal assessments
  • Vulnerability management is in place
  • Respect of Cybersecurity activities QCD commitment

Cybersecurity issues/incident resolution

 

EXPERIENCE PREREQUISITES & REQUIRED COMPETENCES

 

Educational Requirements

Mandatory:

 University/ Engineer in degree level

Desirable:

Cybersecurity certification such as:  GICSP, CISSP, GSEC, CISM

 

Experience

Mandatory:

  • Experience with direct responsibility for hands on architecture, design, development
  • Experience related to Cybersecurity in general, deployment experience of security technologies.
  • QCD Management

Desirable:

  • Knowledge of Alstom Products & Solution Portfolio
  • Experience in embedded or industrial systems (railway / aeronautics ...)

Competencies & Skills  

  • Engineering Background with 12+ years of experience. Previous hands on experience with architecture, design and development.
  • Knowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, NIS
  • Knowledge of some Cybersecurity solutions and areas (authentication and encryption, network access control, intrusion detection, etc.)
  • Methods of Cybersecurity risk analysis
  • Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.
  • Knowledge of security products and protocols
  • Knowledge of the main techniques for evaluating systems security
  • Strong documentation (written) and presentation (verbal) skills
  • Ability to communicate effectively with internal and external stakeholders.
  • Dynamic, autonomous. Creativity and ability to work in a complex environment

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.   

 

 

Job Type:​Experienced​


Job Segment: Manager, Project Manager, Management, Technology