Lorven Technologies
Cybersecurity Engineer-Rochester, NY & Pittsburgh, PA - Onsite- Local prefer
Lorven Technologies, Pittsburgh, PA, United States
Role: Cybersecurity Engineer
Location: Rochester, NY & Pittsburgh, PA - Onsite- Local preferred
Must have: Rail/Metro/Aero/Auto Industry exp ( do not submit other industry candidates) - Rail & Metro will be preferred.
Must Have: Hands-on experience in areas like Conducting risk analysis and assessments, implementing cybersecurity policies/controls and responding to and remediating security incidents is a must for the position.
Experience: Mandatory:
Location: Rochester, NY & Pittsburgh, PA - Onsite- Local preferred
Must have: Rail/Metro/Aero/Auto Industry exp ( do not submit other industry candidates) - Rail & Metro will be preferred.
Must Have: Hands-on experience in areas like Conducting risk analysis and assessments, implementing cybersecurity policies/controls and responding to and remediating security incidents is a must for the position.
Experience: Mandatory:
- Experience with direct responsibility for hands on architecture, design, development
- Experience related to Cybersecurity in general, deployment experience of security technologies
- Experience with Project Management
- Analyze Program security needs (including laws and regulations), determine security objectives and main security risks strategy
- Plan security activities within development life cycle, estimate costs and duration, their impacts related to program execution, Identify training needs
- Is responsible for Cost / Quality / Delay of Program Cybersecurity deliverables, as needed per Project / program context :
- Cybersecurity context, and Cybersecurity Risk Analysis
- Cybersecurity Architecture definition and requirement allocation
- Cascading of requirement to suppliers, Manage Third Parties Risks,
- Application of Cybersecurity Assurance Level
- Definition of Cybersecurity Operating Procedures
- Evaluation of the Project/Program achieved Cybersecurity level
- Provide support during technical design meetings for cybersecurity activities
- Obtain agreement from Program/Customer about on the set of security measures to be implemented
- Manage vulnerabilities and Cybersecurity issues and actions plan,
- Manage Program Cybersecurity related communication,
- Report on Program Cybersecurity status
- In case of external Cybersecurity audit, manage the relationship with auditors Establish lessons learned
- Promoting the Alstom Code of Ethics and adhering to the highest standards of ethical conduct
- Experience in embedded or OT/ Industrial systems (railway / aeronautics ...)
- Experience working with engineering teams
- Engineering Background
- Knowledge of main Cybersecurity standards and regulations, such as: ISO 2700X, 62443, NIST, APTA
- Knowledge of some Cybersecurity solutions and areas
- Methods of Cybersecurity risk analysis Architecture concepts and techniques of systems and networks, operating systems and associated programming languages.
- Knowledge of the main techniques for evaluating systems security