Project Cybersecurity Architect

Apply now »

Date: 26-Nov-2022

Location: Bangalore, KA, IN

Company: Alstom

Req ID:342793 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 75 000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.  

Key Accountabilities:

  • Responsible of Alstom solution security analysis and of the definition of its security requirements and architecture.
    • Understand the solution to be delivered and secured
    • Design and document reliable security architecture resilient against cyberthreats (CADRA)
    • Ensure update and upgrade delivered solution cybersecurity as needed
  • Lead and Contribute to activities such as:  
    • Cybersecurity risks assessment
    • Cybersecurity requirement implementation
    • Cybersecurity evaluation of the developed solution(s)
    • Management of 3rd parties on Cybersecurity aspects
    • Cybersecurity Vulnerability Management
  • Provide technical guidance and supervision for the project/program team
    • participate to Project/Program Design Reviews
    • support engineering team answer design and technical difficulties related to cybersecurity implementation,
    • be referent for management and third parties on cybersecurity architecture and technical implementation.
    • Ensure homogeneous cybersecurity implementation conform to Governance & Expertise policies.
  • Respond and support to any security-related incidents and provide post-event analysis
  • Ensure cyber trend watch (new threats, new techno, etc.)  related to the delivered solution(s)

Key Job Authorities and Dimensions

  • Responsible for cybersecurity architecture at system and sub-system level
  • Cybersecurity Design Reviews
  • Ensure cybersecurity control implementation in design
  • Functional animation of Cybersecurity Engineer team (typically from 1 to 5)
  • Provide requested deliverable in time with adequate quality
  • Alignment with Alstom cybersecurity strategy and policies
  • Contribution to Peer Reviews

Performance measurements:  

  • No "NO GO" for Cybersecurity reasons in Gate Reviews
  • Quality of Cybersecurity deliverables, in time
  • Achievement of Project/Program targeted level of Cybersecurity
  • Assessment findings : Low rework due to external or internal assessments
  • Vulnerability management is in place
  • Respect of Cybersecurity activities QCD commitment
  • Cybersecurity issues : quality of impact analysis, issue resolution

 

Educational/ Experience Requirements  

  • University/ Engineer in degree level
  • Experience with direct responsibility for hands on architecture, design, development
  • Experience related to Cybersecurity in general, deployment experience of security technologies.
  • QCD Management

 

Competencies & Skills  

  • Engineering Background
  • Understanding of main cybersecurity standards and regulations, such as: ISA/IEC 62443, TS 50701, ISO 2700X, NIST, NIS
  • Understanding of OT System architecture
  • Knowledge of cybersecurity risk assessment methodology
  • Knowledge of defence in depth techniques such as:
    • Network security architecture development and definition
    • Perimeter security controls such as firewalls, IDS/IPS, network access controls, and network segmentation
    • Various aspects of network security such as routers, switches, and VLAN security
    • Security concepts related to DNS, including routing, authentication, VPN, proxy services
  • Capacity to address high level (system) et low level (IT, Security technologies and Software design) and to design a cyber architecture (zoning, services, …).
  • Knowledge of recognized techniques for evaluating systems security and Intrusion testing techniques.
  • Understanding of third-party auditing and risk assessment
  • Ability to interact with a broad cross-section of personnel to explain and enforce security measures
  • Dynamic, autonomous. Creativity and ability to work in a complex environment.
  • Synthesis spirit, excellent written and verbal communication skills

 

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.   

 

 

Job Type:​Experienced​


Job Segment: Testing, Technology