Security Governance Specialist

Wabtec Corporation is a leading global provider of equipment, systems, digital solutions and value-added services for freight and transit rail. Drawing on nearly four centuries of collective experience across Wabtec, GE Transportation and Faiveley Transport, the company has unmatched digital expertise, technological innovation, and world-class manufacturing and services, enabling the digital-rail-and-transit ecosystems. Wabtec is focused on performance that drives progress, creating transportation solutions that move and improve the world. Wabtec has approximately 27,000 employees in facilities throughout the world. Visit the company’s new website at:

It’s not just about your careeror your job title it’s about who you are and the impact you are going to make on the world. Do you want to go into uncharted waters do things that haven’t been done to make yours and someone else's life better? Wabtec has been doing that for decades and we will continue to do so Through our people, leadership development, services, technology and scale, Wabtec delivers better outcomes for global customers by speaking the language of industry.

The Enterprise Information security team is looking for a highly motivated Security Governance Specialist to join our team and drive security governance for our enterprise. This Position reports to the Security Project and Programs Manger. This team is comprised of individuals passionate about security and working toward maturing our security posture. You will help to define and maintain our security policies, procedures, and standards based on regulatory requirements, industry standards, and risk profiles. You should be a technically experienced and innovative security professional who can understand systems, security processes, communicate to customers, and to be able to drive innovative process changes through multiple organizations and teams. You are passionate about distilling security clauses within contracts while working with a wide range of global colleagues within legal and sales teams.

Main Responsibilities:

- Understand how security terms related to Wabtec’s offerings are articulated within commercial legal contracts.
- Review security terms within contracts and respond to a wide range of security risk assessments from our customers.
- Work with the inhouse legal, sales teams and potentially existing and potential customers to review and finalize security terms in contracts
- Review questions commonly asked by customers, add them to an existing database while continuously update curated security collateral that we share with customers
- Build strong working relationships with these security SME's
- Lead projects that improve and automate processes
- Manage relationships between cross-functional partners and customers
- Assist in defining and maintaining our security policies, procedures, and standards based on regulatory requirements, industry standards, and risk profiles.
- Work across functions to develop and maintain policies, procedures, and standards to meet regulatory requirements, industry standards, and risk profiles.
- Drive the policy review process by ensuring governance documents are reviewed and updated on a defined periodic basis.
- Own, facilitate, and continuously improve the policy exception process.
- Provide support as needed during security assessments.
- Establish regular reporting mechanisms for measuring compliance and performance.
- Provide guidance to technology owners on the execution of security and compliance requirements, related processes and playbooks, and usage of related systems and tools.
- Active participation during the identification, remediation, and oversight of technology issues/ risks; including action plan development and execution.

Basic and Desired Qualifications:

- Bachelor Degree in IT related field
- Proven experience in Security with deep experience reviewing and redlining customer contracts and security clauses, working through our inhouse legal to negotiate security terms and obligations, and completing security assessments and questionnaires.
- Strong leadership ability, able to work effectively in collaborative environments within our team and with cross-functional stakeholders, and be able to build strong partnerships
- Strong understanding of industry security standards and practices.
- Hands on knowledge of reviewing security terms in contracts and working with legal, sales and with our customers would be critical in being successful in this role.
- Technical ability to recommend and onboard new tools and solutions to improve operational procedures
- Strong project management skills
- Work ethic, sense of ownership, ready to work on unattractive tasks/projects for the benefit of the company
- Critical thinking: looking for improvements, not accepting the way things are done for granted
- Analytical ability to dissect a problem and find a root cause

Wabtec Corporation is committed to taking on the world’s t