Senior Cyber Architect

Location:

Naples, Campania, Italy

Job ID:

R0095526

Date Posted:

2025-07-18

Company Name:

Hitachi Rail S.p.A.

Profession (Job Category):

Other

Job Schedule:

Full time

Remote:

No

About Us

A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organisation to the sustainable and innovative ways we work to bring people together, there’s something for everyone to get stuck into. And that’s where you come in.

Job Description:

Hitachi Rail is looking for an enthusiastic self-motivated Senior Cyber Architect who thrives in a fast-paced environment. The successful candidate is comfortable performing a wide range of tasks from technical design and guidance to strategic input for cybersecurity of our critical railway products. The position is based in Naples, Italy.

About Us

A career at Hitachi Rail will help create a legacy. With operations in every corner of the world, our work goes to the cutting-edge of digital transformation and technology. From the multi-cultural strength of our global organisation to the sustainable and innovative ways we work to bring people together, there’s something for everyone to get stuck into. And that’s where you come in.

Accountabilities

The Senior Cyber Architect will be a key member of the Cyber Architect Team, contributing to and often leading the definition, design, and guidance for cybersecurity implementation cross Hitachi Rail's Rolling Stock products throughout their entire lifecycle. Key accountabilities include:

• Lead and contribute to the definition and maintenance of the cybersecurity architecture for Rolling Stock vehicles and their associated systems (e.g., TCMS, onboard control and information systems, communication networks), based on principles like Zone & Conduit methodology and Defense-in-Depth.

• Analyze and interpret cybersecurity requirements from customer specifications, international standards (e.g., IEC 62443 series, EN 50701), and relevant regulations (e.g., NIS2 / D.Lgs. 138/2024), translating them into actionable technical requirements for hardware and software development teams.

• Define and promote the adoption of Secure Development Lifecycle (SDL) processes and secure coding practices for embedded

software development, including specific guidance for Model-Based Design (MBD) approaches.

• Perform and/or guide Threat Analysis and Risk Assessment (TARA) activities for railway vehicle systems, defining technical and procedural mitigation measures.

• Define cybersecurity Verification & Validation (V&V) strategies and requirements, supporting testing activities to ensure effective security implementation and compliance.

• Collaborate closely with various internal teams, including Software Development (TCMS, other subsystems), Hardware Design, System Engineering, Project Management, RAMS, Safety, Cybersecurity Assurance, Service, and Field Support, ensuring robust cybersecurity integration and operational continuity.

• Produce and maintain comprehensive cybersecurity technical documentation, including Security Architecture Descriptions, Security Requirements Specifications, TARA reports, and V&V security plans.

• Provide expert technical support and define requirements for cybersecurity management activities in the operational phase of products (e.g., Vulnerability Management, Patch Management, Incident Response support for fielded systems, secure updates).

• Stay abreast of evolving cyber threats, vulnerabilities, technologies, and regulatory landscapes pertinent to railway and critical infrastructure systems.

Required Skills/Knowledge

• Proven experience in applying cybersecurity principles to Industrial Automation and Control Systems (IACS), Operational Technology (OT), or complex embedded systems.

• Strong understanding and practical experience with cybersecurity standards relevant to the railway sector, specifically:

o IEC 62443 series (especially parts 3-3, 4-1, 4-2).

o EN 50701.

• Familiarity with cybersecurity regulations for critical infrastructure, such as NIS2 / D.Lgs. 138/2024, and their impact on manufacturers.

• Demonstrable experience in defining and implementing Secure Development Lifecycle (SDL) processes, secure coding guidelines, and conducting/guiding security analysis (e.g., SAST/DAST) in software development environments, preferably with exposure to Model-Based Design.

• Proficiency in performing, facilitating, or reviewing Threat Analysis and Risk Assessment (TARA).

• Solid knowledge of cybersecurity architecture design principles for OT/embedded systems (e.g., Zone & Conduit methodology, network segmentation, secure interfaces, hardening).

• Understanding of cybersecurity challenges and management practices in the operational phase of long-lifecycle products, including vulnerability management, patch management, and incident response for deployed systems.

• Excellent analytical, problem-solving, and critical thinking skills with the ability to translate complex technical concepts into clear, actionable requirements.

• Strong communication and interpersonal skills to collaborate effectively with multidisciplinary teams and stakeholders.

Desired Skills/Knowledge

• Proven experience in applying cybersecurity principles to Rail Control Systems on complex embedded systems.

Education/Qualifications

• Bachelor's or Master's Degree in Computer Engineering, Automation Engineering, Telecommunications Engineering, Cybersecurity, or a closely related technical field.

• Relevant professional cybersecurity certifications (e.g., CISSP, ISA/IEC 62443 Cybersecurity Expert, CSSLP, CISM, CompTIA Security+) are highly desirable.

Languages

• Fluent Knowledge of English (written & spoken).

• Proficient Knowledge of Italian (written & spoken).

Thank you for your interest in Hitachi Rail. If your application is of interest, we will be in contact. Please do not hesitate to discover more about us and our latest jobs at https://www.hitachirail.com/careers .

At Hitachi Rail, there is a place for everyone. We welcome and value differences in background, age, gender, sexuality, family status, disability, race, nationality, ethnicity, religion, and world view. It is our commitment to create an inclusive environment - we are proud to be an equal opportunity employer.

Mandatory inclusions (optional, for local compliance purposes)

We would be delighted if you would be one of our followers at https://www.linkedin.com/company/hitachirail

#LI-DC1

Thank you for your interest in Hitachi Rail. If your application is of interest, we will be in contact. Please do not hesitate to discover more about us and our latest jobs at https://www.hitachirail.com/careers .

At Hitachi Rail, there is a place for everyone. We welcome and value differences in background, age, gender, sexuality, family status, disability, race, nationality, ethnicity, religion, and world view. It is our commitment to create an inclusive environment - we are proud to be an equal opportunity employer.

We would be delighted if you would be one of our followers at https://www.linkedin.com/company/hitachirail