Cyber Security Engineer

Req ID:482961 

Location:Derby

Appointment Basis:Permanent 

Apply by:- 29/04/25

Excellent Salary + Benefits Include:Pension, Contributed Healthcare, Life Assurance, plus many flexible benefits.

At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, 80,000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars. 

Alstom is the UK & Ireland’s leading supplier of new trains and train services, and a leading signalling and rail infrastructure provider. Alstom have built, or are building, just under 40% of the UK mainline train fleet. We provide the widest range of smart solutions in the rail market, from innovative high-speed rolling stock, metros and trams to maintenance, modernisation, infrastructure and signalling. 

Your future role

Take on a new challenge and apply your cybersecurity expertise in the new field of Digital Mobility. You’ll report to the Regional Cybersecurity Director UKI/SPP and work within a close-knit and agile team that is part of the rail industry’s largest and most successful cybersecurity organisation.

Care to make a difference?

You'll be responsible for the delivery of cybersecurity objectives and deliverables to achieve security outcomes for customers that benefit the safety and resilience of the railway. Day-to-day, you’ll work closely with Project Cybersecurity Managers and teams across the business, including product cybersecurity specialists, quality, safety and engineering teams.

You’ll initially work on the Cork Area Commuter Rail project and will support other projects as the need arises. 

We’ll look to you for system and sub-system cybersecurity risk analyses, design, and assurance activities.

Specifically:

· Analysis of project security needs against applicable standards and regulations to identify target security levels and risk treatment strategies.

· Definition of cybersecurity architectures and design principles.

· Producing cybersecurity deliverables needed for project Gate Reviews.

· Cybersecurity evaluation.

· 3rd party management; and

· Providing support for cybersecurity activities during technical design meetings.

All about you

We understand that industrial cybersecurity is an emerging discipline, and we value passion and attitude over experience. We don’t expect you to have every single skill. Instead, we’ve listed some that we think will help you to succeed and grow in this role:

· Expertise (or a degree) in a relevant engineering or technical discipline.

· Experience or good understanding of industrial network security and/or embedded systems - perhaps gained in another industrial sector.

· Knowledge of IACS security standards and a working knowledge of information security standards such as ISO2700x, NIST etc.

· Familiarity with security risk management and IACS reference security architectures; and

· A relevant cybersecurity certification.

On a more personal level, you will also need to be:

· Adaptable and open to change: IACS cybersecurity processes and standards are new and may be subject to change; others are in development. You will need to remain current and embrace the changes that the topic is bringing.

· Self-motivated with a desire to learn.

· Able to work independently; and

· A strong team player, with effective interpersonal skills.

Things you’ll enjoy

Join us on a life-long transformative journey – the rail family is here to stay, so you can grow and develop new skills and experiences throughout your career.

You’ll also:

· Enjoy stability, challenges and a long-term career free from boring daily routines.

· Work with new security standards for rail signalling, such as IEC 62443, TS 50701 and IEC PT 63452.

· Utilise our Agile style of working to collaborate with transverse teams and helpful colleagues on innovative projects.

· Steer your career in whatever direction you choose across functions and countries.

· Benefit from our investment in your development, through award-winning learning and our Cybersecurity Academy.

· Progress towards other senior cybersecurity roles: , Project Cybersecurity Manager, Delivery Head, Regional Cybersecurity Manager or Director; and

· Benefit from a fair and dynamic reward package that recognises your performance and potential, plus comprehensive and competitive benefits (pension, life ins., medical)

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

Important to note

Alstom is an equal opportunity employer committed to creating an inclusive working environment where all our employees are encouraged to reach their full potential, and individual differences are valued and respected. All qualified applicants are considered for employment without regard to race, colour, religion, gender, sexual orientation, gender identity, age, national origin, disability status, or any other characteristic protected by local law. 

As a 'Disability Confident' employer, we will interview all disabled job applicants who match the essential criteria of the job description or specification. We will consider flexible working requests for all roles unless operational requirements prevent otherwise.