Washington Metropolitan Area Transit Authority - Alexandria, VA

posted about 2 months ago

Full-time - Mid Level
Alexandria, VA
Transit and Ground Passenger Transportation

About the position

The Washington Metropolitan Area Transit Authority (WMATA) is seeking a Cybersecurity Analyst Lead (Purple Team Lead) to spearhead its offensive security operations. This role is critical in building a state-of-the-art cybersecurity program aimed at protecting the critical transit infrastructure of the nation's capital. The Purple Team Lead will leverage advanced expertise in threat hunting, gap analysis, and realistic threat simulation exercises, integrating red and blue team operations to enhance the Authority's security posture. The primary responsibility of this position is to lead a penetration testing program focused on identifying and exploiting vulnerabilities within enterprise systems, ensuring that WMATA's defenses are robust against emerging threats. In this pivotal role, the Lead will collaborate closely with the Cyber Fusion Center (CFC) and broader security teams to optimize threat intelligence sharing and enhance detection and response capabilities. The Lead will be responsible for documenting findings, generating detailed technical reports, and presenting executive summaries to senior leadership. The insights provided by this role will drive actionable improvements in threat detection capabilities and support the continuous strengthening of Metro's security posture. The position allows for a hybrid work environment, providing flexibility between virtual and in-person work in accordance with the Authority's telework policy. The Lead will oversee various essential functions, including the development of cyber threat indicators, monitoring attacks and compromises, and ensuring that vulnerabilities are identified and mitigated as early as possible. This role also involves overseeing the analysis of defensive and simulated offensive results, ensuring that the organization responds swiftly to cyber incidents, and maintaining a proactive security strategy.

Responsibilities

  • Lead the penetration testing program to identify and exploit vulnerabilities within enterprise systems.
  • Collaborate with the Cyber Fusion Center and security teams to enhance threat intelligence sharing and response capabilities.
  • Document findings and generate detailed technical reports for senior leadership.
  • Conduct adversary simulations and build collaborative exercises to stress-test existing security processes.
  • Oversee the development of cyber threat indicators and monitor attacks and compromises.
  • Analyze data from various cyber defense tools to mitigate threats within WMATA's environments.
  • Develop performance and effectiveness assessment plans for cyber events.
  • Generate routine and ad hoc reports to inform senior leaders about the security posture of the organization.
  • Oversee incident response support functions and ensure real-time cyber defense incident handling tasks are executed.
  • Manage the analysis of digital evidence and investigate computer security incidents.

Requirements

  • Bachelor's degree from an accredited college or university.
  • Six years of experience as a cybersecurity officer/engineer or in a related field such as cyber policy, intelligence, or analytics.

Nice-to-haves

  • Bachelor's Degree in Computer Science, Cybersecurity, or a related technical field.

Benefits

  • Flexible work environment with hybrid opportunities.
  • Comprehensive health insurance coverage.
  • Retirement savings plan options.
  • Paid holidays and vacation time.
© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service