Alstom is the UK & Ireland’s leading supplier of new trains and train services, and a leading signalling and rail infrastructure provider. Alstom have built, or are building, just under 40% of the UK mainline train fleet; as well as the entire fleets in service with London Underground and Dublin Luas.
We provide the widest range of smart solutions in the rail market, from innovative high-speed rolling stock, metros and trams to maintenance, modernisation, infrastructure and signalling.
Employing 6000 people, we design and build trains at Derby, the UK’s largest train factory; and operate major sites at Widnes, Crewe, Ilford and Plymouth, and 30 train services depots across the UK and Ireland.
Your future role
Take on a new challenge and apply your cybersecurity expertise in the new field of Digital Mobility. You’ll report to the Cybersecurity & Digital Integration Director UKI and work within a close-knit and agile team that is part of the rail industry’s largest and most successful cybersecurity organisation.
Care to make a difference? You'll be responsible for the delivery of cybersecurity objectives and deliverables to achieve security outcomes for customers that benefit the safety and resilience of the railway. Day-to-day, you’ll work closely with Project Cybersecurity Managers and teams across the business, including product cybersecurity specialists, quality, safety and engineering teams.
You’ll initially work on the GA Aventra Fleet Maintenance project and will support other projects as the need arises.
We’ll look to you for system and sub-system cybersecurity design, and assurance activities.
Specifically:
· Analysis of project security needs against applicable standards and regulations to identify target security levels and risk treatment strategies.
· Definition of cybersecurity architectures and design principles.
· Performing vulnerability scans, assuring cybersecurity controls, and planning and managing pentest activity
· Producing cybersecurity deliverables needed for project Gate Reviews.
· 3rd party management; and
· Providing support for cybersecurity activities during technical design meetings.
All about you
We understand that industrial cybersecurity is an emerging discipline, and we value passion and attitude over experience. We don’t expect you to have every single skill. Instead, we’ve listed some that we think will help you to succeed and grow in this role:
· Expertise (or a degree) in a relevant cybersecurity or technical discipline.
· Experience or good understanding of industrial network security and/or embedded systems.
· Knowledge of IACS security standards and a working knowledge of information security standards such as ISO2700x, NIST etc.
· Familiarity with security risk management and IACS reference security architectures; and
· A relevant cybersecurity certification.
On a more personal level, you will also need to be:
· Adaptable and open to change: IACS cybersecurity processes and standards are new and may be subject to change; others are in development. You will need to remain current and embrace the changes that the topic is bringing.
· Self-motivated with a desire to learn.
· Able to work independently; and
· A strong team player, with effective interpersonal skills.
Things you’ll enjoy
Join us on a life-long transformative journey – the rail family is here to stay, so you can grow and develop new skills and experiences throughout your career. You’ll also:
· Enjoy stability, challenges and a long-term career free from boring daily routines.
· Work with new security standards for rail signalling, such as IEC 62443, TS 50701 and IEC PT 63452.
· Utilise our Agile style of working to collaborate with transverse teams and helpful colleagues on innovative projects.
· Steer your career in whatever direction you choose across functions and countries.
· Benefit from our investment in your development, through award-winning learning and our Cybersecurity Academy.
· Progress towards other senior cybersecurity roles: e.g., Project Cybersecurity Manager, Delivery Head, Regional Cybersecurity Manager or Director; and
· Benefit from a fair and dynamic reward package that recognises your performance and potential, plus comprehensive and competitive benefits (pension, life ins., medical)
You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!
Profile:
Take on a new challenge and apply your cybersecurity expertise in the new field of Digital Mobility. You’ll report to the Cybersecurity & Digital Integration Director UKI and work within a close-knit and agile team that is part of the rail industry’s largest and most successful cybersecurity organisation.
Care to make a difference? You'll be responsible for the delivery of cybersecurity objectives and deliverables to achieve security outcomes for customers that benefit the safety and resilience of the railway. Day-to-day, you’ll work closely with Project Cybersecurity Managers and teams across the business, including product cybersecurity specialists, quality, safety and engineering teams