6 months ago
Keyword: Specialist, Cybersecurity & Risk Management (Product Security)
Request Number: ITS-9560-002
Number of positions to fill: 1
Location: Longueuil (Quebec)
Organisational Unit: 1341-IT Security
Division: Information Technology
Sector: Information Technology
Posting Start Date: 2018-04-10
Organization Profile: Pratt & Whitney Canada is one of the world’s leaders in the design, manufacture and service of aircraft engines powering commercial and regional airplanes, as well as general aviation aircraft and helicopters. Our strong reputation for highly skilled personnel (10,000 employees across the globe), our reliable engines and our exceptional aftermarket support service network attract customers from all over the world (over 190 countries).
General responsibilities of the position: •Monitor vulnerability and incident reporting sources, perform analysis to assess impact to PWC products and disseminate findings to the relevant stakeholders throughout the organization and where possible suggest remediation;
•Establish and manage periodic cybersecurity review programs in support of the release and development of our product;
•Define and lead the Implementation of a comprehensive cybersecurity infrastructure to support the management and services on our product;
•Collaborate with various industry consortiums (such as A-ISAC) to share information on threats, vulnerabilities, incidents and best practices;
•Represent P&WC IT in United Technology Corporation cybersecurity working groups to help define corporate cybersecurity policy and procedures specific to product security;
•Run awareness sessions with directors and managers to build a baseline understanding of product cyber security;
•Establish and lead cybersecurity training programs for product system designers ;
•Constantly research capabilities of current and new disruptive solutions on the market and make recommendations to security leadership;
•Perform risk and gap assessments in the area of our products and manufacturing automation;
•Collaborate with engineering, manufacturing and Information Technology to ensure proper security is considered throughout the manufacturing and engine software development processes.
Specific responsibilities of position: •Remain current with new security threats especially in the area of aeronautic systems and assess systems to ensure they cannot be compromised;
•Familiarity with vulnerability assessment tools;
•Ability to understand the risks with aeronautic systems and manufacturing automation systems;
•Familiar with development of engine controls.
Qualifications required: •Bachelor degree with 4 to 7 years experience;
•Master degree with 2 to 5 years experience;
•Experience with security in emerging cloud, mobile and IoT strongly desired;
•Industry certifications such as CISSP, CISA or CISM preferred.
•Bilingual (French and English);
•Team player who loves challenges;
•Creative spirit passionate about the latest technology;
•Ability to convey security risks in a concise and clear manner;
•Ability to adapt to emergency situations while maintaining confidentiality, and a professional image;
•Must possess strong logical, critical thinking and problem solving skills.
Field of studies: Aeronautics, Avionics, Aerospace Engineering, Computer Science, Information Technology
Additional Information: Diversity and Equal Opportunity Employment
P&WC is an equal opportunity employer committed to diversity and inclusion. We are pleased to consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status or any legally-protected factors.