Associate Security Engineer

Associate Security Engineer page is loaded Associate Security Engineer Apply locations Naples, Campania, Italy Genoa, Ligura, Italy time type Full time posted on Posted Yesterday job requisition id R0031492 Location:
Naples, Campania, ItalyJob ID:
R0031492Date Posted:
2024-01-31Company Name:
HITACHI RAIL STS S.P.A.Profession (Job Category):
OtherJob Schedule: 
Full timeRemote:
NoJob Description: Hitachi Rail is looking for an enthusiastic self-motivated Associate Security Engineer who thrives in a fast-paced environment. The successful candidate is comfortable performing a wide range of tasks from administrative to strategic. The position is based in Naples, Italy. About us A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organisation to the sustainable and innovative ways we work to bring people together, there's something for everyone to get stuck into. And that's where you come in.
Mission Assure the design and implementation of the Cybersecurity System in order to achieve the requirements in terms of compliance, schedule, quality and cost imposed by the different contracts either for the Tender and Projects.
Accountabilities Ensure the identification, the management and the fulfillment of the contractual requirements and customer requestsAnalyze customer supplied system specifications, decomposing the statements within such specifications into software requirementsIdentify gaps between customer requirements and Hitachi standard software products or COTS productsDeveloping close working relationship with customer Cybersecurity representativesCreate requirement documents, including high level design documents, interface control design documents and detailed software requirements and specifications, and requirements traceability documents.Be the primary technical interface to the customer throughout the life cycle of the project and act as technical liaison relative to the software development effort with other departments within the company working on the same project.Contribute to the identification and resolution of the interfaces with the main subsystems (e.g. Signaling, TLC, DCS, SCADA, etc.) and security systems (e.g. SIEM)Interface with internal customers (project managers, construction managers, project engineers, and application engineers) and external stakeholders (customers, suppliers, subcontractors, local authorities, external assessor) to ensure consistent communication and system integration.Develop and execute security management plan and commissioning plan, including resourcing, logistics, and scheduling. Onsite lead for commissioning and acceptance testing.Coordinate work sequences, schedules, resources and punch list items.Collaborate with stakeholders to define and execute testing protocols to achieve commercial operation, based on contractual requirements.Oversee commissioning and acceptance testing of the entire plant in a safe manner, including controls and communication networks, power supplies, auxiliary systems like fire detection, ventilation, HMI.Provide local/remote technical support troubleshooting during commissioning, and operation as needed.Develop customer training and handoff material to internal and external O&M teams. Develop a train-the-trainer program to enable successful handoffs for safe operation of the plant.Create professional commissioning and testing reports for internal stakeholders and external customers.Drive continuous improvement on developing and capturing technical problem solving knowledge to enable other organizations to effectively resolve customer problems and inquiries.Ownership of administrative responsibilities including, but not limited to: service reports, issue logging/tracking, job safety analysis, quality compliance.Guarantee the preparation and approval of the Design:Conceptual DesignCyber Security Management PlanHigh Level Risk Assessment based on the methodologies described in the standards (NIST 800-53, IEC 62443 and ISO 27000)Detail Risk Assessment (DRA) and Threat and Vulnerability Risk Assessment (TVA)Security Case (in according to IEC 62443-4-1 and EN 50129:2018)for the security assurance and security procedures (for incident management, patch and vulnerability management, asset and configuration management, etc.)Security Report (include the VA and PT test results)Undertake Cybersecurity activities as defined in the design documentation, e.g. vulnerability assessmentGuarantee the continuous security monitoring of the System in accordance to the technology innovationSecurity Audits during the Project with the CustomerCompetencies The Cybersecurity engineer shall be able to:
Act keeping in mind the impacts of his/her own work on the whole "Company system" and understanding the economic consequences of his/her activities both on client and organizational perspectives. Propose simple and efficient solutions to meet customer needs.Commit to understanding and delivering against customer requirements, keeping them informed about progress on a specific activity/project. Actively seek information to understand customer circumstances, problems, expectations and needs.Provide contributions in defining personal stretching goals. Focus on new or more effective ways of improving his/her own work and meeting targets. Commit to exceed expectations.Set stretching and realistic targets for him/herself and his/her team, improving performance and benchmarks against industry standards and competition. Recognize and celebrate the achievement of milestones and goals.Understand areas of improvement and define a personal development plan to follow whose progress is regularly checked. Welcome new assignments for personal development.Understand markets and industrial trends and their changes and how they may impact the Company/the Group. Keep him/herself updated on products, services, markets and clients in order to plan activities.Adapt to different cultures and international environments establishing relationships that create business benefit.Accommodate for cultural differences to improve effectiveness and adapt leadership style depending on the situation (adherence to the team's expectations).Compare him/herself and his/her team against the international best practices. Encourage the contribution of different people with different experiences and backgrounds in order to optimize outcomes. Pursue opportunities to learn about other cultures using an open-minded approach.Seek opportunities to expand and leverage knowledge across organizational boundaries. Draw upon multiple and diverse sources for ideas and inspiration. Examine and evaluate potential solutions before accepting any.Review performance and learn from mistakes. Be aware of technological/organizational developments that could provide innovative solutions to improve performance and add value. Target important innovation areas and develop solutions addressing meaningful work issues.Follow up the supplier of the cybersecurity technologies. Review the technical documentation produced by the supplier before the submittal to the Customer.Analyze the comments and requests received by the Customer on the Design and the Commissioning phases.Participate to the Factory and Site acceptance tests with the Customer.Required Skills & Knowledge Telecommunications System Architectures and SolutionsISO 27001 and 27005EN 50159NIST 800-53 and 800-82IEC 62443 familyBackbone Transmission Systems and ElementsIP Networking - Wired & WirelessSystem Integration knowledgeSIEM technology experienceFirewall Configuration and Management KnowledgeActive Directory and Radius Configuration Management (802.1x)Nessus Tool Professional experience for Vulnerability and Penetration TestsSCADA security and knowledge of the main SCADA architectures and communication protocolsCisco Certificate CCNA, CCNA Security or CCNP is preferable title.Experience of undertaking or managing vulnerability assessments and penetration testing activitiesExperience of Patch Management and Configuration ManagementDesired Skills & Knowledge Wireless Communication SystemsTrunked Mobile Radio SystemsPublic Carrier Systems and ServicesWiring Rules, cables, Codes and RegulationsNetwork Management SystemsKnowledge of the main organizational processes: Bidding & costs estimationFacilitation of Customer meetings and workshopsProject Plans & ProceduresProject progress and reportingInterface Plans and DefinitionsTechnical Documentation Development and WritingFactory Construction ProcessesSystem Integration & FAT ProcessesEquipment Installation ProcessesTest & Commissioning ProcessesQuality assuranceChange management process Education/Qualifications As minimum Bachelor's , preferred master Degree in Telecom Engineering Degree or in descending order Computer/Information Science, Electronic EngineeringFrom 1 to 3 years of Cybersecurity System Engineering expertise.Cybersecurity qualifications or certification is preferredRailway experience is preferred but also experiences in other telecom sectors can be considered (e.g. Oil&Gas, power energy companies, telecom operators, etc.). Languages
Fluent in English.

We thank all applicants for their interest; however, only those under consideration will be contacted. Join us at https://www.hitachirail.com/careers

It is our commitment at Hitachi Rail to create a diverse environment and we are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

We would be delighted if you would be one of our followers!
 
Have a glance at our LinkedIn page https://www.linkedin.com/company/hitachirail/
We would be delighted if you would be one of our followers!
Have a glance at our LinkedIn page https://www.linkedin.com/company/hitachirail #LI-MP94

Hitachi brings together the world's greatest minds to help breathe life into new possibilities – and drive innovation for a better future. That's why we look for individuals who share our pioneering spirit, have imaginative ideas and are fearless when it comes to tackling the world's biggest challenges.
Our people love technology – and they love making a difference. They have a passion for finding new solutions and working with brilliant colleagues. Every day they dedicate themselves to a huge range of exciting projects, contributing to the Hitachi vision around the globe.
From engineering new sustainability solutions that conserve water and energy to creating the infrastructure for the smart cities of tomorrow, there's no challenge too great for our pioneers. And there's no shortage of opportunities for you to make a difference.
Come and experience the dynamic, collaborative and creative environments where your ideas are welcome and new discoveries are waiting. To help you grow to your full potential, we strive to support our employees in their career aspirations and promote the freedom to explore new horizons.
Contact Us E-mail us f or data privacy inquiries or technical support.
#J-18808-Ljbffr