Project Cybersecurity Manager

Apply now »

Date: 25-Jan-2022

Location: Bangalore, KA, India

Company: Alstom

Req ID:200362 

We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 70000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.  

Job Title & Purpose

Job Title: EN-XY-04: Project Cybersecurity Manager (PCyM)


Purpose of the Job: Organize and manage Cybersecurity activities during Project (contract execution).


Position in the Organisation

Organisation Reporting


Hierarchical manager: Report to Cybersecurity Delivery Leader or Metier Manager

Functional reporting: Region Cybersecurity managers & Project Manager


Network & Links

  • Project team
  • Delivery management
  • Cybersecurity Engineer
  • Cybersecurity Shared service
  • Cybersecurity Management office
  • Customer Cybersecurity Manager
    Performance Measurement/KPI’s
  • No "NO GO" for Cybersecurity reasons in Gate Reviews
  • Quality of Cybersecurity deliverables, in time
  • Achievement of Project targeted level of Cybersecurity
  • Assessment findings: Low rework due to external or internal assessments
  • Vulnerability management is in place
  • Respect of Cybersecurity activities QCD commitment
  • Cybersecurity issues/incident resolution
    Key Job Authorities and Dimensions
  • Responsible of the QCD of its project Cybersecurity Work Package
  • Functional animation of Cybersecurity Engineer team (typically from 1 to 3)


  • The Project Cybersecurity Manager is the point of contact of the Project for cybersecurity related subjects. He/she is in charge of the following activities:
  • Establish the project Cybersecurity Management Plan
  • Analyze Project security needs (including laws and local regulations), determine security objectives and main security risks strategy
  • Plan security activities within development life cycle, estimate costs and duration, their impacts related to project execution, Identify training needs
  • Is responsible for Cost / Quality / Delay of Project Cybersecurity deliverables, as needed per  Project  context : 
    • Cybersecurity context, and Cybersecurity Risk Analysis
    • Cybersecurity Architecture definition and requirement allocation
    • Cascading of requirement to suppliers, Manage Third Parties Risks,
    • Application of Cybersecurity Assurance Level
    • Definition of Cybersecurity Operating Procedures
    • Evaluation of the Project achieved Cybersecurity level
  • Follow cybersecurity architecture and design during project execution which includes,
    • Aanalyses requirements and follow-up of technical solution in-line with cybersecurity design directives and project contractual requirements
    • Follow-up on design, implementation and maintain cybersecurity architecture on projects. Collaborate across traditional engineering functions.
    • Support evaluation of COTS products in line with project needs (e.g. syslogger, IDS, IPS, firewall, SIEM, etc.).
  • Participate to design reviews with cybersecurity point of view and challenge technical choices.
  • Obtain agreement from Project/Customer about on the set of security measures to be implemented
  • Manage vulnerabilities and Cybersecurity issues and actions plan,
  • Manage Project Cybersecurity related communication,
  • Report on Project Cybersecurity status
  • In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned
  • Promoting the Alstom Code of Ethics and adhering to the highest standards of ethical conduct.
    Job Specifications
    Educational Requirements:
    Educational Requirements: Engineering degree
    Desirable: Cybersecurity certification such as:  GICSP, CISSP, GSEC, CISM
  • Experience with direct responsibility for hands on architecture, design, development
  • Experience related to Cybersecurity in general, deployment experience of security technologies.
  • QCD Management
  • Desirable: Experience in embedded or industrial systems (railway / aeronautics ...)
    Competencies & Skills 
  • Engineering Background with 8+ years of experience. Previous hands on experience with architecture, design and development.
  • Knowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, NIS
  • Knowledge of some Cybersecurity solutions and areas (authentication and encryption, network access control, intrusion detection, etc.)
  • Methods of Cybersecurity risk analysis
  • Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.
  • Knowledge of security products and protocols
  • Knowledge of the main techniques for evaluating systems security
  • Strong documentation (written) and presentation (verbal) skills
  • Ability to communicate effectively with internal and external stakeholders.
  • Dynamic, autonomous. Creativity and ability to work in a complex environment.

Team size : 0
Innovation : Research, Patents etc

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.   



Job Type:​Experienced​

Job Segment: Manager, Project Manager, Management, Research, Technology