ISMS Officer
4 weeks ago
Req ID:445531
We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 70000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.
The IS&T ISMS Officer is responsible for coordinating the governance of the Alstom ISO 27001 certified ISMS, including ownership of planning, measuring and improving activities for the ISMS. You will define, maintain & communicate Alstom’s security framework, policies and standards & ensure their adherence within the organization to protect Alstom’s information assets.
Part of your role will be the alignment of security requirements with key stakeholders, communication of security objectives and KPIs (also through the global executive cybersecurity dashboard), and ensuring a continuous certification under ISO 27001.
Main Responsibilities
1. Governance of the ISMS:
- Definition and execution of the certification roadmap, considering customer needs and regulatory changes (§6.2/§6.3)
- Coordination and execution of internal pre-assessments/audits (§9.2)
- Planning and executing the semi-annually ISMS Management Review, including ISMS KPIs (§9.3)
- Planning and Execution of the control maturity assessment (§10.1)
- Tracking of audit findings and their remediation status (§10.2)
2. Management, development and timely update of all Security documents (standards, procedure, work instructions) and tracking review/update of the whole ISMS relevant documentation (§7)
3. Establishing, aligning and implementing security standards and processes across different stakeholders/functions/business lines
4. Coordinating the quarterly ISMS Forum for all control owners
5. Ensuring ISMS requirements across the supply chain (from customer towards suppliers) and across internal projects.
6. Ownership of the security process continuity governance (BIA and BCP)
7. Leading a small team to deliver above activities.
8. Responsible for providing guidance and support to others on complex issues within her/his area of expertise, acting as ISMS / ISO 27001 SPOC
Educational Requirements
- Bachelor’s degree in computer science or similar designation (Master is desirable)
- Fluent English is mandatory
Mandatory Experience
- Managing information security risk
- 10+years of experience
- Using and defining risk management frameworks and processes
- Applying compliance practices
- Operating an ISMS
Desirable
- Experience in Security Governance
- Experience in information security management
- Experience with FAIR framework for measuring and analyzing information risk
Competencies & Skills
- Expertise : Proven experience in ISO 27001 Security Management and good knowledge over related international standards or Cybersecurity frameworks from different countries.
- Professionalism: Has strong knowledge Information Security standards and regulations.
- Communication : Strong skills in both written and oral levels, with the ability to adapt technical message depending on the audience (Business Lines, Functions, DPOs, Risk management team etc.). Ability to translate security and business requirements into IT requirements.
- Collaboration and Partnership : Build and maintains collaboration with colleagues from different work environments and takes part of a collaborative network
- Project coordination : Ability in planning and following various activities with diverse teams
- Systematic : Works logically, considers options and sets clear and measurable targets which balance competing priorities.
- Drive for Results : Takes personal accountability for results and commitments, and ability to measure and improve performance
- Flexibility: Able and willing to adapt and to work effectively within a variety of diverse situations, and with diverse individuals or groups. Participate in multiple projects and tasks, with constantly changing priorities and evolving issues.
- Discretion: Ability to deal with sensitive and confidential issues using developed discretion and judgment, while maintaining independence and objectivity.
- Business acumen: experience on transportation or railway industries is a plus
Organisation Structure
IS&T Cybersecurity
Reports directly to
Head of IT Risk, Compliance & Data Protection
Network and Links
Internal
- IS&T VPs and Directors
- Compliance Officer
- Internal Audit
- DPO, CSO, CIO, CISO
- Legal Procurement
External
- Customers
- Suppliers
- Local / regional authorities
An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers. We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.
-
ISMS Officer
2 weeks ago
bangalore, India Alstom Full timeReq ID:445531 We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
Black Box
4 weeks ago
bangalore, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeWork Model : Work OfficeExperience : 8+ yearsJob Description :- Candidate must have fundamental understanding of ISMS Framework.- Candidate should have a security certification like ISO 27001 LA, LI, PCI DSS Implementer.- Candidate should have participated in atleast 1 ISO 27001 Implementation project.- Candidate should have good communication skills and...
-
Black Box
4 weeks ago
Bangalore/Mumbai, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeWork Model : Work OfficeExperience : 8+ yearsJob Description :- Candidate must have fundamental understanding of ISMS Framework.- Candidate should have a security certification like ISO 27001 LA, LI, PCI DSS Implementer.- Candidate should have participated in atleast 1 ISO 27001 Implementation project.- Candidate should have good communication skills and...
-
Black Box
1 month ago
Bangalore/Mumbai, Maharashtra, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeWork Model : Work OfficeExperience : 8+ yearsJob Description :- Candidate must have fundamental understanding of ISMS Framework.- Candidate should have a security certification like ISO 27001 LA, LI, PCI DSS Implementer.- Candidate should have participated in atleast 1 ISO 27001 Implementation project.- Candidate should have good communication skills and...
-
Enterprise Security
2 months ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Risk Assessment , Ability , Active , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Auditing , Bangalore , Business , Business Requirements , CISA , CISSP , Certifications , Change , Client , Client Meetings , Cloud , Cloud Security , Common ,...
-
ISMS Support Specialist
3 weeks ago
bangalore, India ZEISS India Full timeJob Purpose :This position will assist the Local Information Security Officer (Local ISO) and work closely with Global Product Security Team.This position will develop, implement, and maintain the company’s Information Security policies, procedures, controls and will support in conducting gap and impact assessment, and ensure that the company adheres to...
-
ISMS Support Specialist
3 weeks ago
bangalore, India ZEISS India Full timeJob Purpose : This position will assist the Local Information Security Officer (Local ISO) and work closely with Global Product Security Team. This position will develop, implement, and maintain the company’s Information Security policies, procedures, controls and will support in conducting gap and impact assessment, and ensure that the company adheres to...
-
Information Security
2 months ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security Manager
2 months ago
bangalore, India Connectio IT Pvt Ltd Full timeRole & Responsibilities: - Lead the development, implementation, and maintenance of the company's ISMS based on the ISO 27001 framework.- Conduct regular risk assessments to identify and prioritize security threats and vulnerabilities.- Develop and implement security policies, procedures, and standards to mitigate identified risks.- Manage and maintain the...
-
Information Security Manager
4 weeks ago
Bangalore, India Connectio IT Pvt Ltd Full timeRole & Responsibilities: - Lead the development, implementation, and maintenance of the company's ISMS based on the ISO 27001 framework.- Conduct regular risk assessments to identify and prioritize security threats and vulnerabilities.- Develop and implement security policies, procedures, and standards to mitigate identified risks.- Manage and maintain...
-
JSW One Platforms
2 weeks ago
bangalore, India JSW One Platforms Ltd Full timeAbout us :JSW One Platforms is a venture founded by the world-renowned JSW group. JSW One is our integrated technology platform that seeks to transform India through increased transparency, trust, and ease-of-business.The JSW One Platforms are home to JSW One MSME and JSW One Homes.JSW One MSME, is a one-stop, multi-product digital marketplace, for MSMEs...
-
JSW One Platforms
2 weeks ago
Bangalore, India JSW One Platforms Ltd Full timeAbout us :JSW One Platforms is a venture founded by the world-renowned JSW group. JSW One is our integrated technology platform that seeks to transform India through increased transparency, trust, and ease-of-business.The JSW One Platforms are home to JSW One MSME and JSW One Homes.JSW One MSME, is a one-stop, multi-product digital marketplace, for MSMEs...
-
Office 365 Administrator
2 months ago
bangalore, India Trigyn Technologies Full timeJob Description: Trigyn has an opportunity Office 365 Administrator. This resource will work at our client sites in Mumbai/Pune/Chennai/Bangalore/Hyderabad. Job Responsibilities: The consultant will be responsible for performing the administrative tasks related to Digital Workspace services. The resource will be responsible for delivering...
-
Infosec Manager- Trading Platform
10 hours ago
bangalore, India CareerXperts Consulting Full timeJob Description: - Act as the Champion for the Information Security Practice for the organization and spearhead the ISO27001 certification process. Achieve, maintain and continuously improve the Information Security and Cyber Resilience posture of the organization Experience: - Candidate should have at least 8 to 12 years of total experience At least 3 -...
-
Senior Network Security Engineer
5 days ago
bangalore, India Optym Full timeCompany Overview:Founded in 2000, Optym is building SaaS solutions for the transportation and logistics industry and making it more efficient. Optym’s software solutions are used by leading railroads, airlines and trucking companies, and have created a cumulative business value of over $1 billion for its clients. With its headquarters based in Dallas,...
-
Executive / Sr. Executive AR – Physician Billing
2 weeks ago
bangalore, India ACN Healthcare RCM Services Full timePosition: Executive / Sr. Executive – AR – Physician Billing (Location: Bengaluru, Hyderabad & Chennai) Responsible for calling Insurance companies (in the US) on behalf of Physicians/Clinics/Hospitals and follow up on outstanding Accounts Receivables Should be able to convince the insurance company (payers) for payment of their...
-
Executive / Sr. Executive AR – Hospital Billing
2 weeks ago
bangalore, India ACN Healthcare RCM Services Full timePosition: Executive / Sr. Executive - AR - Hospital Billing (Location: Bengaluru, Hyderabad & Chennai) Responsible for calling Insurance companies (in the US) on behalf of Physicians/Clinics/Hospitals and follow up on outstanding Accounts Receivables Should be able to convince the insurance company (payers) for payment of their outstanding...
-
Associate Director/Director
2 weeks ago
bangalore, India Eka Software Solutions Full timeAbout us: Eka Software Solutions is the No. 1 Commodity Management Platform in the world. Eka is the global leader in providing digital commodity management solutions driven by Cloud, Blockchain, Machine Learning and Analytics. The company’s best-of-breed solutions serve the entire trading value chain across agriculture, energy, metals and mining and...
-
bangalore, India Tredence Inc. Full timeAbout TredenceTredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define ‘last mile’ as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving...
-
Growth & Strategy Manager
1 week ago
bangalore, India HyrEzy Talent Solutions LLP Full timePosition: Growth & Strategy Manager Experience: 4 to 8 Years Location: Bangalore Mode of work: Work from office Working days: 5 Days Company Overview: It aims at decarbonising industrial manufacturing. Through its AI and blockchain led solutions, it helps industrial companies track and monetize their CO2 emissions, creating profitable pathways to...