Cybersecurity Engineer

Job description Location: Abu Dhabi, Abu Dhabi, United Arab Emirates Job ID: R0124947 Date Posted: 2026-05-04 Company Name: HITACHI RAIL STS S.P.A. Profession (Job Category): Engineering & Science Job Schedule: Full time Remote: No About Us A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organisation to the sustainable and innovative ways we work to bring people together, there’s something for everyone to get stuck into. And that’s where you come in. Job Description: About Us A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organization to the sustainable and innovative ways we work to bring people together, there’s something for everyone to get stuck into. And that’s where you come in. Accountabilities: Execute and coordinate Cybersecurity engineering activities within the Railway/Metro Programs, ensuring compliance with international standards, project requirements, and regulatory frameworks. The Cybersecurity Specialist is responsible for performing Risk Assessments, supporting Cybersecurity Assurance tasks, designing and implementing security controls, validating security requirements, and contributing to the deployment of OT Cybersecurity technologies across the programme. Education & Experience Minimum Education Requirements (International) • Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Electrical Engineering, Systems Engineering, Telecommunications Engineering, or other relevant STEM fields. • Master’s degree in Cybersecurity, Information Assurance, Systems Engineering, or related disciplines is preferred. Professional Experience •  3–5 years of hands on Cybersecurity engineering experience in critical infrastructure, OT/ICS environments, transportation systems, energy, utilities, or similar industrial sectors. •  Demonstrated experience applying: IEC 62443 (required) CLC/TS 50701 (strongly preferred) NIST 800 53 and/or NIST 800 82 ISO 27001/27005 Preferred Certifications • GICSP, GRID, GCIP • IEC 62443 Cybersecurity Expert (any level) • ISO 27001 Implementer/Auditor • CompTIA Security+, CySA+ • CCNA/CCNP Accountabilities 1. Cybersecurity Governance & Compliance • Execute High‑Level and Detailed Risk Assessments following IEC 62443‑3‑2, ISO 27005, NIST RMF, and TS 50701 methodologies. • Conduct Threat & Vulnerability Assessments (TVA) for OT/ICS and railway subsystems. • Contribute to the development and maintenance of the Cybersecurity Risk Register, ensuring accurate classification, scoring, and mitigation strategies. • Identify threats across signalling, telecom, SCADA, DCS, and safety‑critical railway systems 2. Cybersecurity Assurance • Support the creation of the Security Case, compliance evidence, and assurance documentation according to IEC 62443 and TS 50701. • Produce deliverables such as: Cybersecurity Requirements Specifications Security Design Justifications Risk Treatment Plans Verification & Validation (V&V) records • Participate in internal and external audits with the Client, Regulators, and Independent Assessors. 3. System Design, Architecture & Integration • Contribute to the design of secure architectures: + Zones & Conduits (IEC 62443 3 2) + Segmentation & network security + Hardening guidelines for OT/ICS assets • Implement, integrate, and configure security components including: + Firewalls / NGFW + NIDS/NIPS & DPI for industrial protocols + Endpoint Protection / EDR + Network Access Control (802.1X, RADIUS/TACACS+) + IAM/PAM platforms + OT asset discovery solutions + Backup & DR • Support integration activities with signalling, telecom, SCADA, and control systems. 4. Testing & Validation Prepare and execute: • Factory Acceptance Tests (FAT) • Site Acceptance Tests (SAT) • Security Requirement Validation • Security Controls Functional Testing • Integration Testing for Cybersecurity technologies • Validate compliance with IEC 62443 Security Levels (SL1–SL4). • Execute vulnerability scanning, configuration review, and hardening checks. 5. Technical Support & Coordination • Work closely with the Cybersecurity Manager, System Engineering, Telecom, Signalling, SCADA teams, and external suppliers. • Support incident investigation and root-cause analysis when security events occur. • Provide technical documentation, engineering reports, and configuration evidence. • Participate in workshops with customers and subcontractors. Competencies Technical Expertise • Strong knowledge of OT/ICS environments (protocols, SCADA, DCS, PLC, RTU). • Abi