Project Cybersecurity Manager
ALSTOM Grid
Req ID:457958
At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, more than 80 000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.
Join Alstom in this career-defining role as an OT / ICS Project Cybersecurity Manager based in Saint-Bruno, Canada.
Your objective in this role is to analyze Project security needs (including laws and local regulations) and determine security objectives and main security risk strategies. You will do this by working with a global team of engineers and project managers; in a diverse and inclusive environment.
Your responsibilities will include:
- Plan security activities within the development life cycle, estimate costs and duration, their impacts related to tender/project execution and identify training needs.
- Cybersecurity context and Cybersecurity Risk Analysis.
- Cybersecurity Architecture Definition and requirement allocation.
- Cascading requirements to suppliers, Managing Third Parties Risks.
- Application of Cybersecurity Assurance Level.
- Definition of Cybersecurity Operating Procedures.
- Evaluation of the Project achieved Cybersecurity level.
- Manage the budget of the project regarding Cybersecurity.
- Manage the subcontractors interface in his/her perimeter.
- Provide support during technical design meetings for cybersecurity activities.
- Report on Project Cybersecurity status.
- In case of external Cybersecurity audit, manage the relationship with auditors and establish lessons learned.
Education required:
- Bachelor's Degree in Engineering
- Cybersecurity certifications preferred
Experience required:
- 5+ years of experience related to Cybersecurity in general and deployment experience of security technologies.
- Experience working with industrial companies (OT, Industrial Control Cybersecurity).
- Experience with Project Management.
- Experience working with engineering teams.
- Experience reporting and communicating critical information to stakeholders.
Competencies & Skills required:
- Engineering Background.
- Good understanding of industrial cybersecurity architecture and principles.
- Knowledge of main Cybersecurity standards and regulations, such as ISO 2700X, NIST, NIS, and IEC 62443.
- Knowledge of Cybersecurity solutions and areas.
- Knowledge of conducting Risk analysis on industrial electronics or embedded systems.
- Architecture concepts and techniques of systems and networks, operating systems, and associated programming languages.
- Knowledge of the main techniques for evaluating systems security.
You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!
Important to note
As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. We’re committed to creating an inclusive workplace for everyone.
Job Type:Experienced