Cyber Security Manager

Job Description

Cyber Security Manager- Rail Rolling Stock - estimated 13 month contract - for Derby based OEM, Internationally recognised business - working on high profile national and international projects developing industry leading systems and solutions for theTransportation sector for truly high profile UK and overseas projects. £neg daily - or hourly rate- expected Hybrid / home working ideally to start January 2023Project / Program Cybersecurity Manager PURPOSE OF THE JOB:Organize and manage Cybersecurity activities during Project (contract execution) or Program (internal development) within the Digital Mobility / Product & Solution Cybersecurity function.Reports directly to: Cybersecurity Delivery Manager and according to local context, may report instead to a Region Cybersecurity Manager or a Platform Cybersecurity ManagerDirect reports: NoneNetwork & Links Internal; Project/Program team - Delivery management - Cybersecurity Engineer - Cybersecurity Shared service - Cybersecurity Management officeExternal; Customer Cybersecurity ManagerACCOUNTABILITIES & AUTHORITIESKey accountabilities: * Analyse Project / Program security needs (including laws and local regulations), determine security objectives and main security risks strategy* Plan security activities within development life cycle, estimate costs and duration, their impacts related to project program execution, Identify training needs * Is responsible for Cost / Quality / Delay of Project/Program Cybersecurity deliverables, as needed per Project / programme context: * Cybersecurity context, and Cybersecurity Risk Analysis * Cybersecurity Architecture definition and requirement allocation* Cascading of requirement to suppliers, Manage Third Parties Risks,* Application of Cybersecurity Assurance Level * Definition of Cybersecurity Operating Procedures* Evaluation of the Project/Program achieved Cybersecurity level* Provide support during technical design meetings for cybersecurity activities* Obtain agreement from Project/Program/Customer about on the set of security measures to be implemented * Manage vulnerabilities and Cybersecurity issues and actions plan, * Manage Program / Project Cybersecurity related communication, * Report on Program / Project Cybersecurity status* In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned* Promoting the business Code of Ethics and adhering to the highest standards of ethical conduct.KEY JOB AUTHORITIES & DIMENSIONS Responsible of the QCD of its project/program Cybersecurity Work PackageFunctional animation of Cybersecurity Engineer team (typically from 1 to 5)PERFORMANCE MEASUREMENTS: No "NO GO" for Cybersecurity reasons in Gate ReviewsQuality of Cybersecurity deliverables, in timeAchievement of Project/Program targeted level of Cybersecurity Assessment finding: Low rework due to external or internal assessmentsVulnerability management is in placeRespect of Cybersecurity activities QCD commitment Cybersecurity issues/incident resolutionEXPERIENCE PREREQUISITES & REQUIRED COMPETENCESEducational Requirements Mandatory: University/ Engineer in degree levelDesirable:Cybersecurity certification such as: GICSP, CISSP, GSEC, CISMEXPERIENCEMandatory:Experience with direct responsibility for hands on architecture, design, development Experience related to Cybersecurity in general, deployment experience of security technologies.QCD ManagementDesirable:Knowledge of Industry Products & Solution PortfolioExperience in embedded or industrial systems (railway / aeronautics ...) COMPETENCIES & SKILLS Engineering BackgroundKnowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, NIS, ideally also French LPMKnowledge of some Cybersecurity solutions and areasMethods of Cybersecurity risk analysis Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.Knowledge of the main techniques for evaluating systems securityDynamic, autonomous. Creativity and ability to work in a complex environment.

Keyskills :
Cyber Security Rail