About Us

A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organisation to the sustainable and innovative ways we work to bring people together, there’s something for everyone to get stuck into. And that’s where you come in.

Toronto, Ontario, Canada (Hybrid)

The Cybersecurity Authority is responsible for leading the cybersecurity technical strategy for all Urban Rail Signaling (URS) BL products.  The incumbent will defines the technical strategy, roadmaps, and technology choices addressing both markets need and the company needs.  Ensures consistency of our product and project solutions according to the defined cyber security policy, technical roadmap, and Customer requirements/needs.  Defines, manages and communicates the overall URS Business Line technical strategy for cyber security in our product lines (CBTC, Interlocking).  Approves the cyber security solutions for bids, product and project solutions.  Leverages innovation and technical insertion, to keep the company products and solutions highly secure thus maintaining a strong differentiator, value proposal and competitive offering.

Key Accountabilities:

The CSA is the technical leader capable of working independently with the following key job functions:

• Establishing and maintaining the cybersecurity assurance process that includes defining the security activities in the project/product development lifecycle including requirements, design, risk assessment, testing, vulnerability management, etc.

• Adopting the industry standards and methodologies for cybersecurity assessment and product Development.

• Aligning to, leveraging from and contributing to the GTS Cyber Security guidelines

• Working closely with the Design Authority Product Line (DAPL) and Product Line Managers (PLM) to define the cyber product strategy, roadmap, architecture, components and building blocks to protect the systems including communications-based train control (CBTC) and solid state interlocking (SSI) product lines

• Interfacing with the Global Business Unit GTS for corporate guidance on use of industry standards, and following the company group processes and policies

• Assessing bids, and bids requirements and incorporating those into design and cost options for projects

• Providing specialty engineering in the form of consultation services for project and product, and conducting risk assessments, and technical vulnerability assessments

• Directing small R&T team for de-risking cyber security solutions ahead of technological insertion into the product lines.

• Providing the cyber input to the VP, Technical for the 5-year Technical and Innovation Strategic Plan (TISP)

• Defining and executing the Crisis Management Plan (CSP) relating to cyber security for all URS Products and Solutions

 Key Requirements :

• A Degree in engineering, computer science or equivalent work experience

• 5+ Years supervisory experience handling a team.

• 8+ Years minimum relevant work (technical/functional) experience

• 10+ years of experience in cybersecurity in the technical domain: architecture, design, risk assessment, development

• Security standards: ISO 27001/2, NIST SP 800 series, IEC 62443

• Knowledge of cybersecurity, networking, application development and application and hardware security

• Expertise on project and software development lifecycle, gates and process oriented

• Good communication skills, with the ability to communicate effectively and succinctly with senior management about complex technical matters.

• Ability to make public presentations and demonstrations to customers.

• Excellent writing skills, experience writing papers, and technical documentation.

• Ability to ascertain the skills and competency of staff assigned.

• Good organizational abilities

• Good communication and inter-personal skills

Preferred Qualifications:

• Security designation CISSP is an asset.

• Product development, industrial engineering and industrial control systems expertise is an asset.

Thank you for your interest in Hitachi Rail. If your application is of interest, we will be in contact. Please do not hesitate to discover more about us and our latest jobs at https://www.hitachirail.com/careers.

At Hitachi Rail, there is a place for everyone. We welcome and value differences in background, age, gender, sexuality, family status, disability, race, nationality, ethnicity, religion, and world view. It is our commitment to create an inclusive environment - we are proud to be an equal opportunity employer.

We would be delighted if you would be one of our followers at https://www.linkedin.com/company/hitachirail.

#LI-DD1