Cybersecurity Engineer OT Level 6

Metropolitan Transportation Authority-posted about 1 year ago
$124,311 - $169,104/Yr
Full-time • Mid Level
New York, NY
Transit and Ground Passenger Transportation
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Cybersecurity Engineer - Security Specialty OT (Level 6) is responsible for managing and analyzing cybersecurity risks within the MTA's extensive IT infrastructure. This role involves designing, building, and maintaining secure systems and applications to support a robust cybersecurity posture. The engineer will work on various technology domains, ensuring secure configurations and hardening of systems to mitigate risks. The position requires collaboration with multiple stakeholders to enhance the overall security of the MTA's operations.

  • Research emerging threats and vulnerabilities to identify network incidents and support the creation of new architecture, policies, standards, and guidance.
  • Implement secure system configuration and hardening standards.
  • Design, configure, and integrate secure solutions in assigned technology domains.
  • Provide incident response support, including containment actions and facilitating forensic analysis.
  • Install, configure, harden, and optimize infrastructure, application, and security components.
  • Identify configuration gaps to reduce cybersecurity risks.
  • Review alerts and data from sensors and document formal incident reports.
  • Test new systems and manage cybersecurity risks and remediation system testing.
  • Respond to computer security incidents according to established policies and procedures.
  • Provide technical guidance to first responders for handling information security incidents.
  • Communicate investigation findings to relevant business units to improve security posture.
  • Validate and maintain incident response plans and processes.
  • Compile and analyze data for management reporting and metrics.
  • Monitor information sources to stay updated on current attacks and trends.
  • Analyze potential impacts of new threats and communicate risks to relevant stakeholders.
  • Perform root-cause analysis and participate in elimination activities.
  • Monitor threat intelligence feeds to identify threats and indicators of compromise.
  • Identify tactics, techniques, and procedures of potential threats using frameworks like MITRE ATT&CK.
  • Participate in creating enterprise security documents under the direction of the IT Security Manager.
  • Bachelor's Degree and a minimum of 8 years of relevant experience in a specific cybersecurity subdomain.
  • Professional certifications such as CISSP, GIAC, CISM, CRISC, or CISA are required.
  • Verifiable implementation of security domain controls for enterprise technologies.
  • Expertise in multiple technologies and understanding of current and future technology architecture.
  • Advanced ability to conduct and analyze security risk assessments.
  • Expert understanding of TCP/IP and Internet technologies is required.
  • Some scripting or programming skills (PERL, Python, PowerShell) are preferred.
  • Strong experience securing OT/ICS systems.
  • Proficient in monitoring network traffic of critical infrastructure.
  • Experience in programming/securing PLC/HMI's.
  • Familiarity with ICS/SCADA equipment manufacturers and OT network communications protocols.
  • Telework eligibility (2 days per week after 30 days of hire)
  • Competitive salary range
  • Opportunities for professional development and training
Track Jobs with Teal

Job Search Resources

AI Resume Builder
Entry Level Cybersecurity Resume Examples
Entry Level Cybersecurity Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service