SR ENTERPRISE SECUR ENGINEER presso Metropolitan Atlanta Rapid Transit Authority
Metropolitan Atlanta Rapid Transit Authority · Atlanta, Stati Uniti d'America · Onsite
- Senior
- Ufficio in Atlanta
SUMMARY
Provides lead engineering support on cybersecurity/network systems, including endpoint protect, security log management and email security. This position will assist with designing, reviewing, and implementing critical security solutions to support the Azure public cloud infrastructure. Develops the implementation architectural strategy and programs necessary to protect the Agency's enterprise information and technology systems, data, and various networks. Responsible for the selection, implementation and management of technical resources required to protect MARTA's enterprise, train control and Close Circuit TV (CCTV) networks. Implements cybersecurity projects to improve cybersecurity visibility, monitoring, security compliance, and disaster recovery. Ensures that train control and enterprise networks have effective defense in depth protection. Oversees the testing and execution of implementation plans. Identifies business, technical, and infrastructure issues solving potential IT/cybersecurity risks. Serves as subject matter expert in the completion of technical cybersecurity project tasks and other day-to-day implementation responsibilities. Responsible for the technical design, integration, and support of security tools with network dependencies and various hardware and software technologies within the Department of Information Security. Provides support on network security systems, including advanced endpoint security solution, application white listing, file integrity monitoring, endpoint encryption, email filtering, firewalls, intrusion detection and intrusion prevention systems. Participates on the Incident Response Team. Provides incident response support using various log management systems. Participate in the network vulnerability management efforts throughout the Authority.
ESSENTIAL DUTIES AND RESPONSIBILITIES
1. Assists the Chief of Information Security (CISO) in developing a cyber security program that proactively protects the integrity, confidentiality, and availability of MARTA's enterprise data, information systems, train control and various networks.
2. Identifies and deploys new tools and/or processes to improve MARTA's cybersecurity effectiveness and the company's overall cybersecurity posture.
3. Utilizes understanding of the current cybersecurity threat landscape and applies best practices to new and existing cybersecurity tools and incident handling processes.
4. Ensures log management systems are fully functioning and collects relevant logs source and feeding logs into MARTA's SIEM systems.
5. Deploys software packages to cybersecurity systems and updates Endpoint Protection on existing clients. Verifies Endpoint Protection clients are online and functional. Responds to Endpoint Protection clients’ messages and applies solutions accordingly. Creates Endpoint Protection policies based on a specified design, documents components that make up the Endpoint Protection infrastructure.
6. Manages the implementation and creation of policies for firewalls, Data Loss Prevention (OLP), Encryption and Mobile Device Management (MOM) technologies.
7. Participates in incident response planning, the investigation of security breaches, and assists with remediation of matters associated with such breaches as necessary.
8. Works with outside vendors and consultants as appropriate for product reviews and independent security assessments.
9. Provides technical expertise to research, evaluate, recommend, and plan implementation of new or improved IT security tools, devices, and/or software. Serve as the lead engineer on Cisco Identity Services Engine (ISE) policies.
10. Maintains, conducts scans, and produces scan reports from various vulnerability management tools.
11. Collects, correlates, and monitors logs from cloud-based information systems.
12. Provides technical vision, direction, and guidance to leadership team on best practices in the support of the design and implementation of the Azure cloud-infrastructure.
13. Identifies and implements detailed security configuration requirements, cloud-based solutions and technical controls for products, infrastructure, and services in Azure cloud.
14. Serves as a cloud security SME for cloud projects and inquiries. Leads projects from development to completion.
15. Performs other related duties as assigned.
EDUCATION AND/OR EXPERIENCE
A Bachelor's degree in Information Systems, Computer Science Mathematics, Engineering or other related technical fields. Must have eight (8) years of experience in environment utilizing an assortment of relevant security technologies including, but not limited to, cloud security, OLP, IPS, firewall, SIEM, etc. Ability to communicate effectively across all levels. Must have five years of demonstrated Azure and cloud security experience managing multiple security domains, including but not limited to cloud enterprise, information, application, incident response and threat intelligence. Expert knowledge of information security procedures, hardware, software, and other best practices. Expert knowledge of network server hardware, operating systems, and enterprise solutions such as e-mail, software distribution, anti-virus, remote access and a strong knowledge of endpoint hardware and software. Additional experience in patch management, active directory, log management solutions and one year or more of multifactor authentication and mobile device management required. Certification in at least one of the following: Cisco Identity Services Engine (ISE), Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Azure Security Engineer Associate or Certified Cloud Security Professional (CCSP) preferred. In lieu of degree, directly related experience may be substituted on a year for year basis.
CERTIFICATES, LICENSES, REGISTRATION
1. Must be able to resolve highly technical systems issues associated with systems performance and security.
2. Must be able to develop and manage project plans for multiple high-profile projects.
3. Must be able to function as a team lead, directing the activities of teammates as it relates to the completion of project tasks and other day to day production support responsibilities.
4. Must be able to interface with engineering partners, vendors, project leads, senior management, and peers. Must be able to articulate technical specifications and requirements.
5. Must have excellent analytical skills.
PHYSICAL DEMANDS
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to:
1. Stand, sit, use hands to finger, feel, talk and hear more than 75% of the time
2. Walk and reach with hands and arms 25% - 75% of the time
3. Climb or balance and stoop, kneel, or crawl less than 25% of the time
4. Lift up to 25 pounds 25% - 75% of the time
5. Lift up to 50 pounds less than 25% of the time
Must be able to transport networking components to or from MARTA locations.
Specific vision requirements include close and distance vision, color vision, depth perception, and the ability to adjust and focus. Must be able to view components, including wiring and cabling in data center cabinets, which do not always have the proper lighting.
Grade: 20A
Salary: $83,000-$124,000
MARTA is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity and/or expression, status as a veteran, and basis of disability or any other federal, state or local protected class.
Candidarsi ora
