Hybrid Cyber Security Detection & Operations Leader (Bangalore, KA, IN) en Alstom

The Railway industry today is characterized by both a strong and sustained growth across the world. The trends that drive this are well known:  environmental challenges, population growth, urbanization and increasing demands for mobility.   With 6B€ of Sales and over 30,000 employees based in nearly 60 countries, Alstom  develop & market the most complete range of systems, equipment and services offered today in the railway sector. Today we offer our customers solutions that feature a seamless blend of diverse technologies, ensuring optimal interfaces, along with flexible implementation and real synergy in innovation

INTRODUCTION

Alstom develops & markets the most complete range of systems, equipment and services offered today in the railway sector. Today we offer our customers solutions that feature a seamless blend of diverse technologies, ensuring optimal interfaces, along with flexible implementation and real synergy in innovation. India is one of the most promising transport markets in Asia Pacific region. As per the latest UNIFE forecast, the accessible market in India alone is estimated at close to 4B€ over the 2016-2018 period, with a growth rate of 6.6%. Alstom, with its strong footprint in India, is well positioned to address both the urban as well as mainline railway markets. Alstom’s manufacturing footprint in India - SriCity in Andhra Pradesh, Coimbatore in Tamil Nadu and the upcoming facility at Madhepura in Bihar. This is coupled with an Engineering Centre of Excellence in Bangalore that works on projects for not only India, but the world. Alstom in India is executing metro projects in several Indian cities including Chennai, Kochi and Lucknow. In the mainline space, Alstom is executing a section of the World Bank funded Eastern Dedicated Freight Corridor. The new Electric Locomotives that will be built at the upcoming Madhepura factory will be the most advanced in the Indian Railways fleet.

OVERALL PURPOSE OF THE ROLE:

The primary responsibility of the “CYBER SECURITY DETECTION & OPERATIONS MANAGER / LEADER”  is to ensure security of the organization is maintained at the optimum level and also risks are identified and managed within acceptable limits. The role will work closely with Design Authority, Solution Architects, IS Design, IS&T operations, cross-functional service owners, customer SPOC’s & Business Partners, LAB owners, Business Customer teams to manage security of the organization and the customers.

RESPONSIBILITIES:

• Responsible for providing overall security posture of ALSTOM information security to Senior management and leadership working with DS and business functions, Architecture, project and other internal stakeholders of ALSTOM
• Supporting organization devise to execute the strategy decided by leadership that safeguards digital assets from both internal and external threats 
• Feasibility engagements with business groups, Architects and Project teams to ensure security requirements are discussed and incorporated early in the process, documented and presented and later improved based on business and security guidelines demand
• Translating technical concepts into messages that can illuminate to senior leaders and management of Alstom
• Should collate all security information from similar kind of industry and present it against marking of ALSTOM security standards
• Assesses risks and identifies issues and solutions to timely and efficiently achieve program goals or project objectives while maintaining security standards.
• Maintain an awareness of business, technical, architecture, infrastructure, and end user support issues and act as sounding board to aid in the development of creative solutions
• Uses judgment in data analysis to develop and design solutions working closely with Architects, projects and operations
• Instilling accountability and responsibility for cybersecurity practices throughout the cyber security operations
• Ensuring business leaders have the capabilities and knowledge required to make informed, high-quality information risk decisions
• Develop and maintain measurable security metrics program; Assess performance to ensure that it meets the present and future needs of the business.
• Integrating people, processes, and leading-edge technologies to ensure a consistently relevant security posture for the business
• Support business needs in developing and maintaining application, network and systems requirements in accordance with security standards
• Responsible for running continuous & service improvement action plans to continuously improve the standards of security services, tools and processes.
• Responsible to transform from traditional security tools and technologies to Artificial Intelligence and Machine learning capable tools to modernize the cyber security capabilities.
• Responsible for management of information security strategy, solutions, and ongoing technology refresh and enhancements
• Design and Develop security incident detection & reaction tools functionally on a risk-based approach
• Analyze vulnerability management reports / external threats and recommend remediation actions based on application risk profile and environment.
• Responsible for handling end-end global cyber security crisis process and perform frequent dry run as a stimulation for making cyber security operations is ever ready to handle any type of cyber security crisis.
• Responsible to handle the Business continuity plans (BCP) at local and global levels during the cyber crisis situation and make sure critical processes are back to operations in accepted timelines.
• Implement and lead exceptions management process for Firewall / VPN requests, Filtering rules, etc.)
• Develop and validate related flows matrices and configuration standards for each provided technology with support of provider
• In­Depth understanding of various information security tools and technologies
• Structuring, empowering, and growing cyber security operations teams.
• Responsible for people management, good experience in PMC,mentoring and coaching
• Responsible for vendor management and cross functional partner management

Qualifications & Skills:

TECHNICAL COMPETENCIES & EXPERIENCE 

• Bachelor’s/Master’s degree in Engineering/Technology or related field
• Minimum 12-16 years of relevant IT experience
• Professional industry standard certifications like CISSP, CEH, GIAC, CISM, ISO 27001 etc. will be an added advantage
• Experience with various IT / Security technologies ­ including, Active Directory, DNS, Messaging, Firewalls/ VPN Gateways, IPS, Proxy, WAF, PKI, IAM, etc.
• Good understanding of tools like SIEM, CASB, Email Security, CyberArk, Ping Identity, SailPoint, Qualys, Veracode
• Proficient hands-on experience and understanding of various security tools and technologies.
• Experience in an operational role working directly with internal and external customers, trouble ticketing systems, and incident management
• Solid understanding of ITIL process framework
• Must understand and have worked in an operational environment such as a NOC or SOC for 6-8 years
• Demonstrated leadership experience in the area of Security Operations
• Proven planning, prioritization, and organizational skills
• Demonstrated drive for continuous learning, results ­orientation, and teamwork
• Ability to drive change through innovation & process improvement
• Ability to manage projects and drive action items with customers and cross functional peers
• Proven crisis management skills
• Professional & concise communication (written & verbal)
• Ability and flexibility to adapt to change, including shifting and competing priorities
• Demonstrated ability to be a big picture thinker, strategist, and long term planner
• Strong analytical skills with demonstrated problem solving ability
• Project management skills with a proven ability to design workable solutions will be an added advantage
• Exposure to ISO 27001 and ISMS

An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers.  We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.