Denmark
As the Director and Regional Cybersecurity Manager at Alstom, my mission is clear: to defend the critical systems that power our region's rail and transportation networks. In this role, I am entrusted with the critical mission of safeguarding the digital backbone of the region's transportation networks—from high-speed trains and metros to signaling and infrastructure systems. I lead the charge in building and executing cybersecurity strategies that protect both information technology (IT) and operational technology (OT) environments from increasingly sophisticated threats. Core Expertise: · OT/ICS (Operational Technology) Cybersecurity · CRA/NIS2 Mapping, Implementation and Conformity · Cybersecurity Governance, Risk & Compliance (GRC) · IEC 62443, CRA, NIS2, NIST CSF, ISO 27001, TS 50701 Railway Standard · Security Architecture & Strategic Planning · Team Leadership & Stakeholder Management · Critical Infrastructure Protection · Cybersecurity Program Strategy · Digital Transformation
Responsibilities: - Lead an enterprise-scale OT cybersecurity programs across critical infrastructure and transportation systems - Manage the collaboration process between project/platform/product cybersecurity to integrate cluster-specific requirements into products and solutions roadmaps. - Advise senior leadership on cyber risk, resilience strategy, and regulatory compliance (CRA/NIS2) - Validate and approve cybersecurity aspects, drive secure-by-design integration across product lifecycle, engineering, and ensure Tender/Bid readiness - Deliver IEC 62443-aligned threat & risk assessments and security architecture transformation - Oversee key cybersecurity deliverables, such as Cybersecurity Management Plans, Threat and Risk Analyses, and Design Documents. - Represent organization in industry cybersecurity forums and regulatory discussions
Responsibilities: - Liase with technical product teams, R&D teams and service teams to ensure IEC 62443 requirements, implementation and compliance - Delivered OT risk, maturity, and compliance programs across energy sector - Led IEC 62443 certification and secure architecture initiatives - Create and maintain activities related to OT security: design concepts, use cases, integration ideas, HLDs, LLDs, best practices and POC documents - Collaborate with external certification body for assessment, audit and compliance purposes - Ensure technical success of implementations (from technology architecture and solution point of view) through interaction with the project and implementation teams
Responsibilities: ❖ OT Security Subject Expert: - Create and maintain activities related to OT security: design concepts, use cases, integration ideas, HLDs, LLDs, best practices and POC documents - Led client-facing engagements, pre-sales, and OT cybersecurity solution strategy - Experience in technical proposals development - Experience with development of OT/IT MSS (Managed Security Services) - Assist in creating Help AG technology portfolio with special accent on OT security technologies and their integration with and into existing Help AG solution offering - Keep the Help AG team members updated about news related to OT security, OT vendors that Help AG is working with, as well as the market trends with specific accent on Middle East ❖ Pre-Sales: - Assisting Business Development Managers in customer meetings, focusing on positioning Help AG technical solutions and services, understanding customers environment and manage expectations. - Maintain good customer relationship, recognize customer technical requirements and generate new opportunities for sale, upsell or cross-sell - Assist Business Development Managers with strategic account planning - Support the sales process by leveraging Help AG’s defined solutions and manage customer expectations - Involve vendor presales and Help AG’s internal technology leads as required and manage any external involvement as technical interface to the customer - Create high-end technical content for proposals, including required drawings, project plans, technical compliance and other usual formal RFP requirements - Define scope of work (SOW) for proposed solution - Arrange, define and manage Proof of Concept (POC) with customers including scope, success criteria, technical requirements, timelines and presentation of results - Help in closing the sales opportunities with an accent on technical perspective
Responsibilities: - Act as a Site-guardian on all Industrial Environments, ensuring the complete following of Cyber Security guidelines and standards (IEC 62443, NIST etc). - Delivered governance, risk, and resilience frameworks in OT environments - Create cybersecurity solutions (as part of the quotation process and technical proposal) and architecture to be deployed on the customers Operational Technology (OT) Networks and Enterprise /Information Technology (IT) Networks - Partner with business stakeholders and drive the adoption of cyber security practices and controls in line with the defined risk appetite and policy/standards - Follow and manage all the Cybersecurity Audit - Ensure the correct mapping of all Cybersecurity risks inside the Site Risk Register - Develop a business continuity strategy, design & implement the OT Incidents management process across all regions/business units
Description: Part of the Specific Use Networks (SUN) Center of Excellence (CoE) - involved in designing, implementing and governing operational security in ISC, R&D etc, Major focus on processes and operations in IT/OT and areas of Aerospace (Aero), Safety and Productivity Solutions (SPS), Building Management Systems (BMS), Building Automation Control (BAC), Performance Materials and Technologies (PMT), Home and Building Technologies (HBT) etc. Responsibilities: *** Enterprise Architect: Creation of cybersecurity technical solutions and architecture, based on written (RFQ, RFP) requirements, Networks/System Architecture drawings and/or verbal requirements Supports the preparation of cybersecurity solutions and architecture to be deployed on the customers Operational Technology (OT) Networks and Enterprise /Information Technology (IT) Networks Ensure successful deployments of new and ongoing solution requests into a workable solution Develop optimized and competitive technical solution as part of the quotation process and technical proposal Ensure system scalability across large enterprise and make appropriate recommendations for maintaining optimum performance levels. *** Project Manager: Standardizing and maturing practices, services, processes, and operations, maintaining Specific Use Networks - asset currency (technical debt), processes, procedures Review project requirements and providing architectural recommendation and design based on industrial security frameworks and standards (IEC 62443, Purdue model) Supports the development of: RFQ/RFP statements, responses to RFIs, technical questions and proposals Define technical solutions, recommending related to current and future customizations and configurations Creation of technical (HW and SW) Bill of Materials (BoM) Part of the procurement process related to project/customer technologies and equipment (Firewalls, Routers, Switches, IDS/IPS etc.)