Security Engineer - Roma, Italia - Hitachi Automotive Systems Americas, Inc.

Descrizione

Associate Security Engineer page is loaded Associate Security Engineer Apply locations Naples, Campania, Italy Genoa, Ligura, Italy time type Full time posted on Posted 10 Days Ago job requisition id R Location:

Naples, Campania, Italy Job ID:

R Date Posted:

Company Name:

HITACHI RAIL STS S.P.A.

Profession (Job Category):


Other Job Schedule:

Full time Remote:

No Job Description:

Hitachi Rail is looking for an enthusiastic self-motivated Associate Security Engineer who thrives in a fast-paced environment. The successful candidate is comfortable performing a wide range of tasks from administrative to strategic. The position is based in Naples, Italy.
Who We Are

Hitachi Rail is a fully integrated, global provider of rail solutions across rolling stock, signaling, service & maintenance, digital technology and turnkey.

With a presence in 38 countries across three continents and over 13,000 employees, our mission is to contribute to society through the continuous development of superior rail transport solutions.

Mission

Assure the design and implementation of the Cybersecurity System in order to achieve the requirements in terms of compliance, schedule, quality and cost imposed by the different contracts either for the Tender and Projects.

Accountabilities
Ensure the identification, the management and the fulfillment of the contractual requirements and customer requests
Analyze customer supplied system specifications, decomposing the statements within such specifications into software requirements
Identify gaps between customer requirements and Hitachi standard software products or COTS products
Developing close working relationship with customer Cybersecurity representatives

Create requirement documents, including high level design documents, interface control design documents and detailed software requirements and specifications, and requirements traceability documents.

Be the primary technical interface to the customer throughout the life cycle of the project and act as technical liaison relative to the software development effort with other departments within the company working on the same project.

Contribute to the identification and resolution of the interfaces with the main subsystems (e.g. Signaling, TLC, DCS, SCADA, etc.) and security systems (e.g. SIEM)

Interface with internal customers (project managers, construction managers, project engineers, and application engineers) and external stakeholders (customers, suppliers, subcontractors, local authorities, external assessor) to ensure consistent communication and system integration.

Develop and execute security management plan and commissioning plan, including resourcing, logistics, and scheduling. Onsite lead for commissioning and acceptance testing.
Coordinate work sequences, schedules, resources and punch list items.
Collaborate with stakeholders to define and execute testing protocols to achieve commercial operation, based on contractual requirements.

Oversee commissioning and acceptance testing of the entire plant in a safe manner, including controls and communication networks, power supplies, auxiliary systems like fire detection, ventilation, HMI.

Provide local/remote technical support troubleshooting during commissioning, and operation as needed.
Develop customer training and handoff material to internal and external O&M teams. Develop a train-the-trainer program to enable successful handoffs for safe operation of the plant.
Create professional commissioning and testing reports for internal stakeholders and external customers.

Drive continuous improvement on developing and capturing technical problem solving knowledge to enable other organizations to effectively resolve customer problems and inquiries.

Ownership of administrative responsibilities including, but not limited to: service reports, issue logging/tracking, job safety analysis, quality compliance.

Guarantee the preparation and approval of the Design:
Conceptual Design
Cyber Security Management Plan
High Level Risk Assessment based on the methodologies described in the standards (NIST 800-53, IEC 62443 and ISO 27000)
Detail Risk Assessment (DRA) and Threat and Vulnerability Risk Assessment (TVA)

Security Case (in according to IEC and EN 50129:2018)for the security assurance and security procedures (for incident management, patch and vulnerability management, asset and configuration management, etc.)

Security Report (include the VA and PT test results)
Undertake Cybersecurity activities as defined in the design documentation, e.g. vulnerability assessment
Guarantee the continuous security monitoring of the System in accordance to the technology innovation
Security Audits during the Project with the Customer
Competencies
The Cybersecurity engineer shall be able to:

Act keeping in mind the impacts of his/her own work on the whole "Company system" and understanding the economic consequences of his/her activities both on client and organizational perspectives.

Propose simple and efficient solutions to meet customer needs.
Commit to understanding and delivering against customer requirements, keeping them informed about progress on a specific activity/project. Actively seek information to understand customer circumstances, problems, expectations and needs.
Provide contributions in defining personal stretching goals. Focus on new or more effective ways of improving his/her own work and meeting targets. Commit to exceed expectations.
Set stretching and realistic targets for him/herself and his/her team, improving performance and benchmarks against industry standards and competition. Recognize and celebrate the achievement of milestones and goals.
Understand areas of improvement and define a personal development plan to follow whose progress is regularly checked. Welcome new assignments for personal development.
Understand markets and industrial trends and their changes and how they may impact the Company/the Group. Keep him/herself updated on products, services, markets and clients in order to plan activities.
Adapt to different cultures and international environments establishing relationships that create business benefit.

Accommodate for cultural differences to improve effectiveness and adapt leadership style depending on the situation (adherence to the team's expectations).

Compare him/herself and his/her team against the international best practices. Encourage the contribution of different people with different experiences and backgrounds in order to optimize outcomes. Pursue opportunities to learn about other cultures using an open-minded approach.
Seek opportunities to expand and leverage knowledge across organizational boundaries. Draw upon multiple and diverse sources for ideas and inspiration. Examine and evaluate potential solutions before accepting any.
Review performance and learn from mistakes. Be aware of technological/organizational developments that could provide innovative solutions to improve performance and add value. Target important innovation areas and develop solutions addressing meaningful work issues.
Follow up the supplier of the cybersecurity technologies. Review the technical documentation produced by the supplier before the submittal to the Customer.
Analyze the comments and requests received by the Customer on the Design and the Commissioning phases.
Participate to the Factory and Site acceptance tests with the Customer.
Required Skills & Knowledge
Telecommunications System Architectures and Solutions
ISO 27001 and 27005

EN 50159

NIST and 800-82
IEC 62443 family
Backbone Transmission Systems and Elements
IP Networking - Wired & Wireless
System Integration knowledge
SIEM technology experience
Firewall Configuration and Management Knowledge
Active Directory and Radius Configuration Management (802.1x)
Nessus Tool Professional experience for Vulnerability and Penetration Tests
SCADA security and knowledge of the main SCADA architectures and communication protocols
Cisco Certificate CCNA, CCNA Security or CCNP is preferable title.
Experience of undertaking or managing vulnerability assessments and penetration testing activities
Experience of Patch Management and Configuration Management
Desired Skills & Knowledge
Wireless Communication Systems
Trunked Mobile Radio Systems
Public Carrier Systems and Services
Wiring Rules, cables, Codes and Regulations
Network Management Systems
Knowledge of the main organizational processes:
Bidding & costs estimation
Facilitation of Customer meetings and workshops
Project Plans & Procedures
Project progress and reporting
Interface Plans and Definitions
Technical Documentation Development and Writing
Factory Construction Processes
System Integration & FAT Processes
Equipment Installation Processes
Test & Commissioning Processes
Quality assurance
Change management process
Education & Experience
As minimum Bachelor's , preferred master Degree in Telecom Engineering Degree or in descending order Computer/Information Science, Electronic Engineering
From 1 to 3 years of Cybersecurity System Engineering expertise.
Cybersecurity qualifications or certification is preferred
Railway experience is preferred but also experiences in other telecom sectors can be considered (e.g. Oil&Gas, power energy companies, telecom operators, etc.).
Languages
Fluent in English.
We thank all applicants for their interest; however, only those under consideration will be contacted. Join us at .

It is our commitment at Hitachi Rail to create a diverse environment and we are proud to be an equal opportunity employer.

All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.

We would be delighted if you would be one of our followers
Have a glance at our LinkedIn page

#LI-MP94

Similar Jobs (18) Senior Security Engineer locations Naples, Campania, Italy time type Full time posted on Posted 30+ Days Ago TLC Work Package Leader locations Naples, Campania, Italy time type Full time posted on Posted 30+ Days Ago About Us Hitachi brings together the world's greatest minds to help breathe life into new possibilities – and drive innovation for a better future.

That's why we look for individuals who share our pioneering spirit, have imaginative ideas and are fearless when it comes to tackling the world's biggest challenges.

Our people love technology – and they love making a difference. They have a passion for finding new solutions and working with brilliant colleagues.

Every day they dedicate themselves to a huge range of exciting projects, contributing to the Hitachi vision around the globe.

From engineering new sustainability solutions that conserve water and energy to creating the infrastructure for the smart cities of tomorrow, there's no challenge too great for our pioneers.

And there's no shortage of opportunities for you to make a difference.
Come and experience the dynamic, collaborative and creative environments where your ideas are welcome and new discoveries are waiting.

To help you grow to your full potential, we strive to support our employees in their career aspirations and promote the freedom to explore new horizons.

#J-18808-Ljbffr