Job description
Youll make a difference by
You work in engineering for our international locomotive projects. In this interesting environment, you interact with engineers from various disciplines.
- As a Cybersecurity / IT Security Expert (m/f/d), you are responsible for carrying out the product and solution security process.
- You specify and maintain security requirements. Furthermore, you support the fulfillment of security standards and regulations.
- You create a security architecture for locomotives or products as part of a team.
- Additionally, you coordinate requirements from suppliers and customers with security experts.
- You implement concepts for securing and protecting locomotives and provide technical support for the implementation of IT security.
- You develop software for diagnostics (as well as security functions), conduct security reviews, and harden critical components (secure hardening).
Desired Skills:
Education:
- Bachelor's degree in Cybersecurity, Computer Science, Electrical Engineering, or a related field. A master's degree is a plus.
Experience:
- 3-5 years of experience in cybersecurity engineering, preferably in the transportation or industrial control systems (ICS) sectors.
- Experience with rolling stock systems or other transportation technologies is highly desirable.
- In addition, you have gained initial experience in IT security and have acquired knowledge of IT security technologies and concepts.
- You have good programming skills and ideally good Linux knowledge. You also stand out with experience in the development of embedded systems.
- Additionally, you score points with expertise in industrial communication and tools for secure testing (e.g., Nessus).
- If you also have knowledge of relevant standards such as IEC 62443 and a CISSP certification, your application is very welcome
Skills & Competencies:
- Strong knowledge of cybersecurity principles, risk management, and threat analysis.
- Proficiency with cybersecurity tools and technologies used for monitoring, detection, and incident response.
- Familiarity with cybersecurity standards and regulations such as IEC 62443, ISO 27001, NIST, etc.
- Excellent problem-solving and analytical skills.
- Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders.
Certifications:
- Relevant certifications such as CISSP, CISM, CEH, or GIAC are preferred.
