Head of Identity and Access Management

Req ID:475812 

 

At Alstom, we understand transport networks and what moves people. From high-speed trains, metros, monorails, and trams, to turnkey systems, services, infrastructure, signalling and digital mobility, we offer our diverse customers the broadest portfolio in the industry. Every day, more than 80 000 colleagues lead the way to greener and smarter mobility worldwide, connecting cities as we reduce carbon and replace cars.

 

 

JOB TITLE & JOB CODE

Job Title (Job Code):      Head of Identity and Access Management

 

PURPOSE OF THE JOB

 

Reporting directly to the Cybersecurity Director, the Head of Identity and Access Management (IAM) is responsible for managing the IAM policies as part of the Alstom Information Security Management System and ensuring the requirements are implemented. It encompasses Identity Lifecycle Management, Access Management and Access Governance for all accounts type, including Business to Enterprise, Business to Business, Privilege Accounts and Machine to Machine.

He/She is also responsible for managing the Alstom Identity and Access Governance (IAG) platform, and the Privilege Access Management platform.

 

ORGANISATION

Organisation structure (job belongs to..)

Digital Services

 

Reports directly to:

Cybersecurity Director

Other reporting to:

 

Direct reports:

N/A

Network & Links

Internal

• Security into project, GRC, IAM, ISMS and SOC team
• Architects, Project Managers and PMO
• Business teams

External

• Service Providers and vendors

MAIN RESPONSABILITIES  

 

• Elaborate and share a vision and roadmap for IAM covering all use cases : B2B, B2E, M2M and PAM
• Manage and lead a cross-functional team of cybersecurity experts (Architects, Project Managers and Operations Specialist and Managers), providing guidance, mentorship, and support in achieving organizational goals, coordinate recruitment and team engagement efforts
• Improve IAM Security Level for Critical Applications and minimize residual risks
• Improve Security Level for Digital Services Customer Solutions (including Infrastructure Applications) and minimize residual risks
• Lead the process and performances improvement for assigned services
• Responsible for Alstom ISMS IAM policy updates
• Maintain assigned standards and patterns
• Review and validated security exceptions, risk assessments and committee presentations
• Delivery Management: In charge of overseeing assigned project delivery to ensure adherence to scope, quality, and timelines.
• Lead end to end the IAG and PAM Services

 

 

Qualifications

Educational Requirements

Mandatory:

• Bachelor's/Master's degree in Engineering/Information Technology

Desirable:

• CISSP or CISM
• Experience in Transport Industry is a plus

Experience

Mandatory:

• 5 years of work experience in cybersecurity
• 3 years in Identity and Access Management
• 5 years as manager or project manager

Desirable:

 

General Competencies & Skills

 

• Deep knowledges of Identity and Access Management
• Knowledges and understanding in Security Architecture / Infrastructure Architecture.
• Able to identify and document specific security issues, propose resolution options, and interpret matters from the perspective of involved stakeholders.
• Able to analyse technical risks and vulnerabilities and to design the appropriate network security pattern (firewalling, proxy, WAF, VPN, etc.).
• Good understanding of security tools and mechanisms (IDS/IPS, antivirus, anti-malware, authentication mechanisms, IAM, PKI, encryption, etc.).
• Good understanding of cloud solutions (Microsoft Azure/O365, security solutions in and for the cloud).
• Knowledge of ISO 27002 and ISO 27005.
• Risk analysis
• Fluency in English

 

 

 

 

You don’t need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, you’ll be proud. If you’re up for the challenge, we’d love to hear from you!

 

Important to note

As a global business, we’re an equal-opportunity employer that celebrates diversity across the 63  countries we operate in. We’re committed to creating an inclusive workplace for everyone.

 

 

Job Type:​Experienced​