We create smart innovations to meet the mobility challenges of now and the future. We design and manufacture a complete range of transportation systems, from high-speed trains to electric buses, autonomous subways, signalling and digital mobility solutions. Joining us means joining a truly global community of 36 300 people dedicated to solving real-world mobility challenges and achieving international projects with sustainable local impact.
Purpose of the job
The Head of IS Governance & Risk Management is one of the three leaders reporting directly to the Alstom Group Information Security Director. He/She is in charge of defining the Security governance framework and processes.
He/She is responsible of designing the way information security risks are analyzed, assessed and reported to the management, in particular through a risk cartography to create and maintain.
He/She ensures Information Security is taken into account at right level in non-IT processes (sourcing, compliance, data privacy) in collaboration with the Alstom relevant entities.
In particular he/she drives the security awareness program.
As part of the security governance, he/she can face-off external entities, from auditors to Alstom partners.
He/she is leading a team of security architects who define, manage and support security processes, including Identity and Access Management.
He/she defines and owns the security policy framework.
- Security governance
- Security policies and guidelines
- Integration of Security into non-IT processes including but not limited to
- Security Insurance Plan ?make sure that all IT partners/providers respect the security policy when they deliver services (e.g. Cloud or SaaS provider)
- IS risk management
- Create and maintain risk cartography
- Ensure security risk are correctly assessed, presented and managed.
- Security awareness
Qualification & Competencies - Expected Level
Initial Background: an IT leader having 10 years of experience in IT Security activities, ideally with experience on risk management.
Languages: French, English
- Team management
- Risk management
- Management of processes and framework
- Knowledge of ISO 27001, 27002 and 27005
We believe that a diverse and inclusive workforce is a lever to running a sustainable and successful business. We are dedicated to creating an inclusive environment where all our employees are encouraged to reach their full potential, and individual differences are valued and respected.
Job Type:?Experienced? Job Segment:
Risk Management, Manager, Information Security, Finance, Management, Technology
Head of IS Governance & Risk Management Jobs in Berlin