Cyber Security Project Manager Napoli

Cyber Security Project Manager
Napoli
Campania, Napoli

About Alstom**:

- We develop and market mobility solutions that provide the

- **sustainable foundations for the future of transportation**.

Alstom's products portfolio ranges from high-speed trains, metros, monorail, trams and e-buses to integrated systems, customized services, infrastructure, signalling and digital mobility solutions.

Join our global community and help us create smart and sustainable innovations to meet the mobility challenges of today and tomorrow.

- An agile, inclusive and responsible culture is the foundation of our company.

We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.

- **Why should you choose Alstom?

To access technical and managerial career paths and leverage advanced paradigms and other cutting-edge technologies.

**The Role**:

- He/she will be responsible for managing and coordinating the development team, architects and consulting companies, for projects involving the design, creation and maintenance of cybersecurity aspects of Alstom's solutions.

- The resource will act transversally on projects and programmes for both validating cybersecurity solutions and defining architectures, within the Signalling Division.

- The figure will be the interface with the core project teams, supporting and team in their implementation.

- In particular, the figure will have to:

- Be responsible for the security analysis of Alstom solutions and the definition of security requirements;

- Lead and/or contribute to activities such as Cybersecurity

- risk assessment;

- implementation of requirements;

- evaluation of developed solutions;

- vulnerability management;

- Manage internal and third party teams

- Provide technical guidance and oversight to the project/programme team, on cybersecurity architecture and technical implementation;

- Responding to and supporting any security related incidents and providing post-event analysis;

- Ensure the observation of cyber trends (new threats, new technologies, etc. )

related to the solutions provided;

**Educational and Professional Requirements**:

- University/ Engineer in degree level or equivalent experience-qualifications;

- 5-8 years' experience in IT/OT security and risk management with a focus on security, performance and reliability;

- Understanding of main cybersecurity standards and regulations, such as: ISA/IEC 62443, TS 50701, ISO 2700X, NIST, NIS;

- Knowledge of cybersecurity risk assessment methodology;

- Knowledge of defence in depth techniques;

- Knowledge of recognized techniques for evaluating systems security and Intrusion testing techniques;

- Understanding of third-party auditing and risk assessment;

- Understanding of OT System architecture is appreciated;

- Capacity to address high level (system) et low level (IT, Security technologies and Software design) and to design a cyber architecture is appreciated;

- Technical proficiency of Architecture concepts and techniques of systems and networks, operating systems and associated programming languages is appreciated;

- Cybersecurity certification such as ISA/IEC 62443 is appreciated;

- Experience in embedded or industrial systems and/or in System Engineering is appreciated;

- English excellent knowledge is mandatory;

- Ability to interact with a broad cross-section of personnel to explain and enforce security measures;

- Dynamic, autonomous.

Creativity and ability to work in a complex environment.

Synthesis spirit, excellent written and verbal communication skills complete the profile.