ISMS Officer
3 weeks ago
Req ID:445531
We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community of more than 70000 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.
The IS&T ISMS Officer is responsible for coordinating the governance of the Alstom ISO 27001 certified ISMS, including ownership of planning, measuring and improving activities for the ISMS. You will define, maintain & communicate Alstom’s security framework, policies and standards & ensure their adherence within the organization to protect Alstom’s information assets.
Part of your role will be the alignment of security requirements with key stakeholders, communication of security objectives and KPIs (also through the global executive cybersecurity dashboard), and ensuring a continuous certification under ISO 27001.
Main Responsibilities
1. Governance of the ISMS:
Definition and execution of the certification roadmap, considering customer needs and regulatory changes (§§ Coordination and execution of internal pre-assessments/audits (§ Planning and executing the semi-annually ISMS Management Review, including ISMS KPIs (§ Planning and Execution of the control maturity assessment (§ Tracking of audit findings and their remediation status (§2. Management, development and timely update of all Security documents (standards, procedure, work instructions) and tracking review/update of the whole ISMS relevant documentation (§7)
3. Establishing, aligning and implementing security standards and processes across different stakeholders/functions/business lines
4. Coordinating the quarterly ISMS Forum for all control owners
5. Ensuring ISMS requirements across the supply chain (from customer towards suppliers) and across internal projects.
6. Ownership of the security process continuity governance (BIA and BCP)
7. Leading a small team to deliver above activities.
8. Responsible for providing guidance and support to others on complex issues within her/his area of expertise, acting as ISMS / ISO 27001 SPOC
Educational Requirements
Bachelor’s degree in computer science or similar designation (Master is desirable) Fluent English is mandatoryMandatory Experience
Managing information security risk 10+years of experience Using and defining risk management frameworks and processes Applying compliance practices Operating an ISMSDesirable
Experience in Security Governance Experience in information security management Experience with FAIR framework for measuring and analyzing information riskCompetencies & Skills
Expertise : Proven experience in ISO 27001 Security Management and good knowledge over related international standards or Cybersecurity frameworks from different countries. Professionalism: Has strong knowledge Information Security standards and regulations. Communication : Strong skills in both written and oral levels, with the ability to adapt technical message depending on the audience (Business Lines, Functions, DPOs, Risk management team etc.). Ability to translate security and business requirements into IT requirements. Collaboration and Partnership : Build and maintains collaboration with colleagues from different work environments and takes part of a collaborative network Project coordination : Ability in planning and following various activities with diverse teams Systematic : Works logically, considers options and sets clear and measurable targets which balance competing priorities. Drive for Results : Takes personal accountability for results and commitments, and ability to measure and improve performance Flexibility: Able and willing to adapt and to work effectively within a variety of diverse situations, and with diverse individuals or groups. Participate in multiple projects and tasks, with constantly changing priorities and evolving issues. Discretion: Ability to deal with sensitive and confidential issues using developed discretion and judgment, while maintaining independence and objectivity. Business acumen: experience on transportation or railway industries is a plusOrganisation Structure
IS&T Cybersecurity
Reports directly to
Head of IT Risk, Compliance & Data Protection
Network and Links
Internal
IS&T VPs and Directors Compliance Officer Internal Audit DPO, CSO, CIO, CISO Legal ProcurementExternal
Customers Suppliers Local / regional authoritiesAn agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers. We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals.
Job Segment: Risk Management, Supply Chain, Information Security, Computer Science, Internal Audit, Finance, Operations, Technology
-
ISMS Officer
2 weeks ago
bangalore, India Alstom Full timeReq ID:445531 We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
ISMS Officer
2 days ago
bangalore, India Alstom Full timeReq ID:445531 We create smart innovations to meet the mobility challenges of today and tomorrow. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses and driverless trains, as well as infrastructure, signalling and digital mobility solutions. Joining us means joining a truly global community...
-
Black Box
1 week ago
bangalore, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeWork Model : Work OfficeExperience : 8+ yearsJob Description :- Candidate must have fundamental understanding of ISMS Framework.- Candidate should have a security certification like ISO 27001 LA, LI, PCI DSS Implementer.- Candidate should have participated in atleast 1 ISO 27001 Implementation project.- Candidate should have good communication skills and...
-
Black Box
3 weeks ago
Bangalore/Mumbai, Maharashtra, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeWork Model : Work OfficeExperience : 8+ yearsJob Description :- Candidate must have fundamental understanding of ISMS Framework.- Candidate should have a security certification like ISO 27001 LA, LI, PCI DSS Implementer.- Candidate should have participated in atleast 1 ISO 27001 Implementation project.- Candidate should have good communication skills and...
-
Black Box
2 weeks ago
Bangalore/Mumbai, India BLACK BOX NETWORK SERVICES INDIA PRIVATE LIMITED Full timeWork Model : Work OfficeExperience : 8+ yearsJob Description :- Candidate must have fundamental understanding of ISMS Framework.- Candidate should have a security certification like ISO 27001 LA, LI, PCI DSS Implementer.- Candidate should have participated in atleast 1 ISO 27001 Implementation project.- Candidate should have good communication skills and...
-
Enterprise Security
4 weeks ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Risk Assessment , Ability , Active , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Auditing , Bangalore , Business , Business Requirements , CISA , CISSP , Certifications , Change , Client , Client Meetings , Cloud , Cloud Security , Common ,...
-
ISMS Support Specialist
1 week ago
bangalore, India ZEISS India Full timeJob Purpose :This position will assist the Local Information Security Officer (Local ISO) and work closely with Global Product Security Team.This position will develop, implement, and maintain the company’s Information Security policies, procedures, controls and will support in conducting gap and impact assessment, and ensure that the company adheres to...
-
ISMS Support Specialist
1 week ago
bangalore, India ZEISS India Full timeJob Purpose : This position will assist the Local Information Security Officer (Local ISO) and work closely with Global Product Security Team. This position will develop, implement, and maintain the company’s Information Security policies, procedures, controls and will support in conducting gap and impact assessment, and ensure that the company adheres to...
-
Information Security
4 weeks ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
-
Information Security Manager
3 weeks ago
Bangalore, Karnataka, India Connectio IT Pvt Ltd Full timeRole & Responsibilities: - Lead the development, implementation, and maintenance of the company's ISMS based on the ISO 27001 framework.- Conduct regular risk assessments to identify and prioritize security threats and vulnerabilities.- Develop and implement security policies, procedures, and standards to mitigate identified risks.- Manage and maintain...
-
Information Security Manager
2 weeks ago
Bangalore, India Connectio IT Pvt Ltd Full timeRole & Responsibilities: - Lead the development, implementation, and maintenance of the company's ISMS based on the ISO 27001 framework.- Conduct regular risk assessments to identify and prioritize security threats and vulnerabilities.- Develop and implement security policies, procedures, and standards to mitigate identified risks.- Manage and maintain...
-
Information Security Manager
4 weeks ago
bangalore, India Connectio IT Pvt Ltd Full timeRole & Responsibilities: - Lead the development, implementation, and maintenance of the company's ISMS based on the ISO 27001 framework.- Conduct regular risk assessments to identify and prioritize security threats and vulnerabilities.- Develop and implement security policies, procedures, and standards to mitigate identified risks.- Manage and maintain the...
-
JSW One Platforms
19 hours ago
bangalore, India JSW One Platforms Ltd Full timeAbout us :JSW One Platforms is a venture founded by the world-renowned JSW group. JSW One is our integrated technology platform that seeks to transform India through increased transparency, trust, and ease-of-business.The JSW One Platforms are home to JSW One MSME and JSW One Homes.JSW One MSME, is a one-stop, multi-product digital marketplace, for MSMEs...
-
JSW One Platforms
2 days ago
Bangalore, India JSW One Platforms Ltd Full timeAbout us :JSW One Platforms is a venture founded by the world-renowned JSW group. JSW One is our integrated technology platform that seeks to transform India through increased transparency, trust, and ease-of-business.The JSW One Platforms are home to JSW One MSME and JSW One Homes.JSW One MSME, is a one-stop, multi-product digital marketplace, for MSMEs...
-
Office 365 Administrator
4 weeks ago
bangalore, India Trigyn Technologies Full timeJob Description: Trigyn has an opportunity Office 365 Administrator. This resource will work at our client sites in Mumbai/Pune/Chennai/Bangalore/Hyderabad. Job Responsibilities: The consultant will be responsible for performing the administrative tasks related to Digital Workspace services. The resource will be responsible for delivering...
-
Manager - Information Security
4 weeks ago
Bangalore, India TalentXo Full timeRole & Responsibilities : Act as the Champion for the Information Security Practice for the organization and spearhead the ISO27001 certification process. Achieve, maintain and continuously improve the Information Security and Cyber Resilience posture of the organization Create detailed data templates for all datasets in the organization and monitor access...
-
Services Security
3 weeks ago
bangalore, India CGI Full timePosition Description: Services Security & Privacy EngineerJob TitleServices Security & Privacy EngineerJob OverviewCandidate needs to work from Bangaloreworking from client’s officeService Security Scope:•Develop and implement information security plans and strategies to protect company assets , vendors & visitors etc.,•Identify the service...
-
IT Lead
4 weeks ago
bangalore, India Eka Software Solutions Full timeJob DescriptionIT Lead - Cloud Operations About us: Eka Software Solutions is the N0. 1 Commodity Management Platform in the world. Eka is the global leader in providing digital commodity management solutions driven by Cloud, Blockchain,Machine Learning and Analytics. The company’s best-of-breed solutions serve the entire tradingvalue chain across...
-
GRC Consultant
2 weeks ago
Bangalore/Hyderabad/Pune/Kerala/Karnataka/Dubai, India LEGPRO CONSULTANT PVT LTD Full timeJob Description : HIRING FOR GRC Consultant to collaborate closely with our clients in the UAE. In this role, you will be responsible for consulting, designing, and reviewing formal documentation and business requirements to ensure alignment with key frameworks and standards such as ISO 27001and NIST. As a front-facing role, you will engage with internal...