Req ID: 448540
At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, more than 80 000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.
Imagine playing a central role in reducing the carbon footprint of Canada’s busiest public transit system and doing so with a consistently ranked Top Employer with a global reach. As part of the ONxpress consortium, Alstom is proudly working to transform the collective mobility of the Greater Toronto and Hamilton areas (GTHA) through the On-Corridor Works project, and we are hiring for hundreds of roles. The GO Expansion scope: new electric locomotives, fleet upgrades, train control systems, network electrification, signalling, telecommunications and digital systems, and much more.
Your responsibilities will include:
- Responsible of Alstom solution security analysis and of the definition of its security requirements and architecture.
- Understand the solution to be delivered and secured
- Design and document reliable security architecture resilient against cyberthreats (CADRA)
- Ensure update and upgrade delivered solution cybersecurity as needed
- Lead or contribute to activities such as:
- Cybersecurity risks assessment
- Cybersecurity requirement implementation
- Cybersecurity evaluation of the developed solution(s)
- Management of 3rd parties on Cybersecurity aspects
- Cybersecurity Vulnerability Management
- Provide technical guidance and supervision for the project/program team
- Participate to Project/Program Design Reviews
- Support engineering team answer design and technical difficulties related to cybersecurity implementation,
- Be referent for management and third parties on cybersecurity architecture and technical implementation.
- Ensure homogeneous cybersecurity implementation conform to Governance & Expertise policies.
- Respond and support to any security-related incidents and provide post-event analysis
- Ensure cyber trend watch (new threats, new techno, etc.) related to the delivered solution(s)
Optionally, on case by case:
Peer review of cybersecurity deliverables from other Projects/Programs
Contribute to technical proposals on bids/tenders
Contribute to Cybersecurity process and standard(s) definition
Member of Cybersecurity expertise network
Performance measurements
- Provide requested deliverable in time with adequate quality
- Relevancy of proposed cybersecurity solution
- Alignment with Alstom cybersecurity strategy and policies
- Contribution to peer reviews
Competencies & Skills - Bachelor's degree in Engineering
- Understanding of main cybersecurity standards and regulations, such as: ISA/IEC 62443, TS 50701, ISO 2700X, NIST, NIS
- Technical background with 5+ years of experience in IT solution design and deployment role
- Understanding of OT System architecture
- Knowledge of cybersecurity risk assessment methodology
- Knowledge of defence in depth techniques such as:
- Network security architecture development and definition
- Perimeter security controls such as firewalls, IDS/IPS, network access controls, and network segmentation
- Various aspects of network security such as routers, switches, and VLAN security
- Security concepts related to DNS, including routing, authentication, VPN, proxy services
- Capacity to address high level (system) et low level (IT, Security technologies and Software design) and to design a cyber architecture (zoning, services, …).
- Knowledge of recognized techniques for evaluating systems security and Intrusion testing techniques.
- Understanding of third-party auditing and risk assessment
- Ability to interact with a broad cross-section of personnel to explain and enforce security measures
- Dynamic, autonomous. Creativity and ability to work in a complex environment.
- Synthesis spirit, excellent written and verbal communication skills
You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!
Important to note
As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. We’re committed to creating an inclusive workplace for everyone.
Job Type: Experienced