Overview
On Site
Depends on Experience
Contract - W2
Contract - 12 Month(s)
Skills
Tableau
ad hoc reporting
data analysis
Qlik
business intelligence
ECM Operations
Excel
Cybersecurity
estimate costs
relationship
railway
aeronautics
Job Details
Cybersecurity Analyst/ Cybersecurity Engineer
Rochester, NY & Pittsburg, PA - Onsite
JD:
- Analyze Program security needs (including laws and regulations), determine security objectives and main security risks strategy
- Plan security activities within the development life cycle, estimate costs and duration, their impacts related to program execution, Identify training needs
- Is responsible for Cost / Quality / Delay of Program Cybersecurity deliverables, as needed per Project / program context :
- Cybersecurity context, and Cybersecurity Risk Analysis
- Cybersecurity Architecture definition and requirement allocation
- Cascading of requirement to suppliers, Manage Third Parties Risks,
- Application of Cybersecurity Assurance Level
- Definition of Cybersecurity Operating Procedures
- Evaluation of the Project/Program achieved Cybersecurity level
- Provide support during technical design meetings for cybersecurity activities
- Obtain agreement from Program/Customer about on the set of security measures to be implemented
- Manage vulnerabilities and Cybersecurity issues and actions plan,
- Manage Program Cybersecurity related communication,
- Report on Program Cybersecurity status
- In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned
- Promoting the Alstom Code of Ethics and adhering to the highest standards of ethical conduct
Experience: Mandatory:
- Experience with direct responsibility for hands on architecture, design, development
- Experience related to Cybersecurity in general, deployment experience of security technologies
- Experience with Project Management
Desirable:
- Experience in embedded or OT/ Industrial systems (railway / aeronautics ...)
- Experience working with engineering teams
Competencies & Skills
- Engineering Background
- Knowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, APTA
- Knowledge of some Cybersecurity solutions and areas
- Methods of Cybersecurity risk analysis Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.
- Knowledge of the main techniques for evaluating systems security