Description
The Head of Cybersecurity, Ferrovial Energy, is responsible for the oversight and deployment of all adequate measures and controls to provide the Company and its subsidiaries with a reasonable cybersecurity control level.
This role will initiate, plan, deploy, maintain, control, improve all aspects of Ferrovial Energy cybersecurity.
Essential Duties and Responsibilities:Lead, manage and grow Ferrovial Energy cybersecurity function according to Business needs.Develop a cybersecurity practice in Ferrovial Energy that can be relevant to its business units, subsidiaries and joint ventures by defining and implementing a Cybersecurity strategy.Negotiate with and for Ferrovial Energy business units, subsidiaries and joint ventures the contracts, conditions and terms regarding the cybersecurity baseline that must be provided.Guarantee the deployment of adequate measures and controls onto products and services built through digital and technology initiatives.Ensure the maintenance and continuous improvement of such measures and controls along the products and services lifecycle.Manage and control security projects including start up and launch of benchmarks and proof of concepts.Manage cybersecurity vendors whose services are being provided to Ferrovial Energy business units, subsidiaries and joint ventures.Regular communications with Ferrovial Energy senior management to report the cybersecurity posture of their companies, the projects milestones consecution and the compliance situation in terms of cybersecurity.Provide support to Ferrovial risk and internal audit department.Identify business opportunities to provide enhanced cybersecurity services to Ferrovial Energy business units, subsidiaries and joint ventures.Qualifications:Master's Degree in Computer Science, Engineering, Information Technology or equivalent.7-10+ years of experience in managing complex cybersecurity environments through its full lifecycle.Previous experience in power and / or utility sectors.Definition, deployment and improvement of security strategies, plans, and governance models in large enterprises and corporations, and in international environments.Definition, deployment, and improvement of risk management models.OT, ICS, IoT cybersecurity knowledge and experience, especially on the ISA / IEC 62443 Standards, Purdue Model and Defense in Depth implementation.Deployment, maintenance and assessment of ISO 27001, NIST CSF and ENS certified environments.Identification and treatment of risk derived from laws and compliance requisites.Definition, deployment, monitoring, evaluation / testing and improvement of security architectures, infrastructures and services in corporations and international scenarios.Architecture models like SASE and Zero-Trust models. Additionally, having demonstrable experience with NIST guides will be an added value.Security incident management.Business continuity management.Cyber Intelligence.Audits and security reviews.Awareness, communication and training in Cybersecurity.CISA, CISM, CISSP, CPP, ISO 27001, SANS security certifications will be considered and preferred.High English level in writing, speech and comprehension, being fluent in conversations is required. The candidate must be able to arrange and conduct meetings and to handle presentations fluently in English.Skills in negotiating contracts with regional implications.Ability to manage remote teams nationally and internationally.Capability to work against tight schedules.Must be able to proactively multitask, solve problems and implement innovative processes within a fast-paced environment.Why Ferrovial?We would like you to get to know us better, and what it means to join our team. Joining Ferrovial means taking the leap to:
Being part of a leading company in its sector, with a presence in 6 main marketsWork with the best professionalsA solid and innovative projectProfessional developmentThe best work environmentThe best benefitsFeedback processes implemented to ensure professional growthDiversity and inclusions initiativesInternational and cross Business Units MobilityWhat can we offer you?Employment stability with a permanent contract since the beginningIndividual development plan with technical and soft skills trainingRestaurant card: 11€ for each full-time dayWork-life balance: flexible hours, shorter working days on Fridays, Christmas time, eastern and summer, company specially days-off, and purchase of vacationsFlexible Remuneration Plan: Medical insurance, Nursery Tickets, Vehicle rental, life and accident Insurance, stock bonus, collective savings insurance, transport cardGympass EnrollmentFree access to the Stimulus Program (Psychological support for employees and family members)Assignment of a buddy who will accompany you throughout the trip, to support your professional and personal development during your first three monthsEmployee's Club: discounts to employees on item purchases, shows ticket reservations, trips, etcVending Machines card: refreshments in the cafeteriaHealthy snacksIf you are passionate about challenges, and you think you fit in the described profile, do not hesitate to sign up for the offer.
Take the jump! We are waiting for you!
Please note that this job description does not represent a comprehensive list of activities and employees may be requested to undertake other reasonable duties.
#J-18808-Ljbffr