Project Cybersecurity Manager (PCyM)
Alstom
Madrid, Sp
hace 2 días

We create smart innovations to meet the mobility challenges of now and the future. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses, autonomous subways, signalling and digital mobility solutions.

Joining us means joining a truly global community of 34 500 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.

Position

Project Cybersecurity Manager

Duration : Permanent

Location : Madrid

Introduction

Alstom is a leading supplier of rolling stock, control systems for trains and metros in France and worldwide. These solutions must evolve today to respond to the potential cyber-attacks that can occur on our systems.

All solutions, products and projects in progress are affected. Our Engineering Excellence Centers in Saint-Ouen, Bangalore, Melbourne FL, Sao Paulo, Charleroi and Bologna are moving towards a more digital approach and are looking for profiles that can analyze the risks involved, design cyber architectures and manage the cybersecurity activities on ongoing projects or programs.

  • Role
  • Reporting to the Alstom Central Organization, the Project Cybersecurity Manager role is to organize and manage the cybersecurity studies, design, verification and validation activities during the project execution.

    Organizational Reporting :

    The Project Cybersecurity Manager works in close relation with the Project Manager and the Cybersecurity Manager of the Regional Business Unit.

  • Responsabilities :
  • The Project Cybersecurity Manager (PCyM) is the point of contact of the Project for cybersecurity related subjects. The PCyM is in charge of the following activities :

  • Establish the Cybersecurity Management Plan (CyMP) of the Project
  • Ensure that applicable security requirements, security rules (including laws and local regulations), security guidelines, security information, etc.
  • are distributed to all personnel involved in the Project including personnel and subcontractors

  • Ensures availability of the necessary means (resource, competence and budget for the staffing of the cybersecurity activities in the Project)
  • Manage Cybersecurity Engineers : Cybersecurity Risks Analysts (CyRA) and Cybersecurity Designers (CyD); for the definition of the most efficient system architecture related to cybersecurity requirements of the contract
  • Validate with the Project Manager (PM), R&D Cybersecurity Manager and Cybersecurity Manager of the Regional Business Unit about targeted maximum residual risks level, cybersecurity risks to be addressed, security measures to be implemented
  • Verify that all parts of the Project organization, including subcontractors, perform their works according to the applicable security requirements, security rules, security guidelines, security information
  • Review the Cybersecurity Risk Analysis and the Cybersecurity Evaluation Report, evaluate project and business impacts of technical vulnerabilities identified as part of technological monitoring activities
  • Review deployment documents (Design, RAM, V&V) from a cybersecurity perspective
  • Define and follow-up action plans to close the cyber security issues
  • Ensure Cybersecurity awareness been propagated to Alstom team and suppliers
  • Organize the capture of experience feedback and the implementation of continuous improvement plans for Cybersecurity aspects Note that the PCyM is a member of the Change Control Board (CCB), in charge of evaluating Cybersecurity related impact of Change Request (CR) and following them up to closure.
  • Within the framework of specific projects, for the activities of descent and return of the V cycle :

  • Responsible for Cost / Quality / Delay Deliverables Cybersecurity
  • To be the technical interface with the customer for the Cybersecurity domain
  • Qualifications & Skills :

    Engineering Background

    Knowledge of main Cybersecurity standards and regulations, such as : ISO 2700X, 62443, NIST, NIS, French LPM

    Knowledge of some Cybersecurity solutions and areas

    Educational Requirements :

  • Mandatory : University / Engineer in degree level Master’s Degree
  • Desirable : Cybersecurity certification such as : GICSP, CISSP, GSEC, CISM,
  • Knowledge / Experience :

    Mandatory :

    Experience with direct responsibility for hands on architecture, design, development

    Experience related to Cybersecurity in general, deployment experience of security technologies.

    Desirable :

    Knowledge of Alstom Products & Solution Portfolio

    Experience in embedded or industrial systems (railway / aeronautics ...)

  • High level of English is a must
  • Knowledge of French is desirable
  • We believe that a diverse and inclusive workforce is a lever to running a sustainable and successful business. We are dedicated to creating an inclusive environment where all our employees are encouraged to reach their full potential, and individual differences are valued and respected.

    Reportar esta oferta
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación