IT Governance Specialist

At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, 80,000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.

Could you be the full-time IT Risk Expert in our Information Security & SecOps department we’re looking for?

Your future role

Take on a new challenge and apply your detailed knowledge of information security and risk management in a new cutting-edge field. You’ll work alongside innovative, analytical, and strategic teammates.

You'll design and refine the way we analyze, assess, and report information security risks, particularly through developing and maintaining a risk cartography. Day-to-day, you’ll work closely with teams across the business (Digital Services Business Unit, Enterprise Risk Management), consulting with stakeholders, evaluating assets, and much more.

You’ll specifically take care of identifying and assessing cybersecurity risks, preparing risk documentation, and presenting assessments to business stakeholders, but also supporting the maintenance of the cybersecurity risk management process.

We’ll look to you for:

• Designing and maintaining information security risk analysis and assessment methodologies

• Consulting with business stakeholders regarding their information security needs

• Evaluating the business criticality of assets and the likelihood of threat events

• Utilizing analytical tools to calculate cybersecurity risks

• Proposing cybersecurity risk mitigation strategies

• Creating reports on cybersecurity risk exposure and management performance

• Ensuring compliance with policies, procedures, and risk mitigation activities

  
  

All about you

We value passion and attitude over experience. That’s why we don’t expect you to have every single skill. Instead, we’ve listed some that we think will help you succeed and grow in this role:

• A Master’s degree in computer science or similar field

• 9+ years of Experience or understanding of managing information and third-party security risks

• Knowledge of risk management frameworks and ISO 27001

• Familiarity with the FAIR framework for measuring and analyzing information risk

• A certification in information security management (desirable)

• Proficiency in Microsoft’s collaboration tools and strong presentation skills

• Excellent communication skills in English, both written and verbal

  
  

Things you’ll enjoy

Join us on a life-long transformative journey – the rail industry is here to stay, so you can grow and develop new skills and experiences throughout your career. You’ll also:

• Enjoy stability, challenges and a long-term career free from boring daily routines

• Work with new security standards for rail signalling

• Collaborate with transverse teams and helpful colleagues

• Contribute to innovative projects

• Utilise our collaborative working environment

• Steer your career in whatever direction you choose across functions and countries

• Benefit from our investment in your development, through award-winning learning

• Progress towards leadership roles within IT Risk, Compliance and Data Protection

• Benefit from a fair and dynamic reward package that recognises your performance and potential, plus comprehensive and competitive social coverage (life, medical, pension)

  
  

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

Important to note

As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. We’re committed to creating an inclusive workplace for everyone.

Job Segment: Information Security, Risk Management, Management Consulting, Consulting, Computer Science, Technology, Finance, Management