Specialist Vulnerability Management

At Alstom we understand transport networks and what moves people. From high-speed trains metros monorails and trams to turnkey systems services infrastructure signalling and digital mobility we offer our diverse customers the broadest portfolio in the industry. Every day 80000 colleagues lead the way to greener and smarter mobility worldwide connecting cities as we reduce carbon and replace cars.

Could you be the full-time Threat and Vulnerability Management Analyst in Bangalore were looking for

Your future role

Take on a new challenge and apply your ethical hacking expertise in a cutting-edge field. Youll work alongside talented collaborative and forward-thinking teammates.

Youll play a key role in safeguarding our organizations assets and enhancing our security program. Day-to-day youll work closely with teams across the business (such as infrastructure application owners and third-party vendors) analyze threat intelligence reports and develop remediation plans among other impactful responsibilities.

Youll specifically take care of vulnerability assessments penetration testing and implementing Secure SDLC programs but also contribute to designing and delivering actionable security dashboards.

Well look to you for:

• Tracking new and emerging threats and vulnerabilities verifying their applicability and initiating remediation activities as necessary

• Analyzing assessment reports provided by vendors or third parties and resolving them within defined SLAs

• Developing remediation plans by collaborating with infrastructure and application owners

• Providing guidance on patching configuration settings and additional security controls

• Defining the scope of assessment activities across internal and partner organizations

• Designing and delivering actionable information security dashboards and metrics

• Creating awareness about good security practices and the benefits of Secure SDLC programs

• Prioritizing vulnerabilities based on risk and driving them to closure using tools like Qualys Skybox and SecOps

All about you

We value passion and attitude over experience. Thats why we dont expect you to have every single skill. Instead weve listed some that we think will help you succeed and grow in this role:

• Bachelors or Masters degree in Engineering Technology or a related field

• 68 years of relevant IT experience

• Professional certifications such as CISSP CEH GPEN or OSCP

• Exposure to threat modeling systems hardening and Secure SDLC programs

• Experience in application penetration testing and ethical hacking

• Proficiency with tools like Qualys Veracode Nessus AppScan and Skybox

• Knowledge of TCP/IP stack OSI layers application programming interfaces middleware and mobile technologies

• Familiarity with penetration testing methodologies (e.g. OWASP OSSTMM PCI DSS)

• Strong analytical skills and the ability to drive innovation and process improvement

• Solid understanding of ITIL process frameworks and experience in creating processes in complex multivendor ecosystems

Things youll enjoy Join us on a life-long transformative journey the rail industry is here to stay so you can grow and develop new skills and experiences throughout your career. Youll also:

• Enjoy stability challenges and a long-term career free from boring daily routines

• Work with new security standards for rail signalling

• Collaborate with transverse teams and helpful colleagues

• Contribute to innovative projects

• Utilize our flexible and inclusive working environment

• Steer your career in whatever direction you choose across functions and countries

• Benefit from our investment in your development through award-winning learning

• Progress towards leadership or specialized roles within cybersecurity

• Benefit from a fair and dynamic reward package that recognizes your performance and potential plus comprehensive and competitive social coverage (life medical pension)

You dont need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family youll be proud. If youre up for the challenge wed love to hear from you!

Important to note

As a global business were an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. Were committed to creating an inclusive workplace for everyone.