Security Analyst

Overview

On Site
Depends on Experience
Contract - W2
Contract - 12 Month(s)

Skills

Tableau
ad hoc reporting
data analysis
Qlik
business intelligence
ECM Operations
Excel
Cybersecurity
estimate costs
relationship
railway
aeronautics

Job Details

Cybersecurity Analyst/ Cybersecurity Engineer

Rochester, NY & Pittsburg, PA - Onsite

JD:

  • Analyze Program security needs (including laws and regulations), determine security objectives and main security risks strategy
  • Plan security activities within the development life cycle, estimate costs and duration, their impacts related to program execution, Identify training needs
  • Is responsible for Cost / Quality / Delay of Program Cybersecurity deliverables, as needed per Project / program context :
  • Cybersecurity context, and Cybersecurity Risk Analysis
  • Cybersecurity Architecture definition and requirement allocation
  • Cascading of requirement to suppliers, Manage Third Parties Risks,
  • Application of Cybersecurity Assurance Level
  • Definition of Cybersecurity Operating Procedures
  • Evaluation of the Project/Program achieved Cybersecurity level

 

  • Provide support during technical design meetings for cybersecurity activities
  • Obtain agreement from Program/Customer about on the set of security measures to be implemented
  • Manage vulnerabilities and Cybersecurity issues and actions plan,
  • Manage Program Cybersecurity related communication,
  • Report on Program Cybersecurity status
  • In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned
  • Promoting the Alstom Code of Ethics and adhering to the highest standards of ethical conduct

Experience: Mandatory:

  • Experience with direct responsibility for hands on architecture, design, development
  • Experience related to Cybersecurity in general, deployment experience of security technologies
  • Experience with Project Management

Desirable:

  • Experience in embedded or OT/ Industrial systems (railway / aeronautics ...)
  • Experience working with engineering teams

Competencies & Skills

  • Engineering Background
  • Knowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, APTA
  • Knowledge of some Cybersecurity solutions and areas
  • Methods of Cybersecurity risk analysis Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.
  • Knowledge of the main techniques for evaluating systems security