Cybersecurity Engineer (Term-Limited)
$80,000 - $175,000/Yr
SOUND TRANSIT - Seattle, WA
posted 2 days ago
Full-time - Mid Level
Seattle, WA
Executive, Legislative, and Other General Government Support
About the position
Under general direction, evaluates, designs, builds, operates and documents security solutions and technical controls; evaluates proposed projects and activities to identify information security risks and available mitigating controls; evaluates systems for compliance with internal policies and standards, as well as applicable regulatory frameworks, recommending solutions to address any gaps; and provides technical expertise to multidisciplinary teams to address security considerations.
Responsibilities
- Identifies and assesses technology-related risks to information security associated with current and prospective technology solutions; and recommends appropriate mitigating controls.
- Evaluates any prospective technology solution and system for adherence to documented agency standards, policies, and regulatory responsibilities.
- Collaborates with other IT engineering and administration disciplines to ensure security best practices are incorporated into design, implementation, operation, and maintenance of systems and services within the agency.
- Performs vulnerability assessments and penetration tests of information systems.
- Assesses and classifies any identified system vulnerabilities in accordance with pre-defined risk criteria; advises and consults with internal customers on risk assessment, threat modeling, and mitigation of vulnerabilities.
- Participates in incident response activities; conducts computer and network forensic investigations in support of incident response activities; performs root-cause analysis when incidents occur and prepares incident reports.
- Evaluates, implements, and supports security-focused tools and services required to support information security controls.
- Conducts regular security reviews of both software and processes. Reviews and creates threat models and recommends security enhancements consistent with information security strategy and evolving threats.
- Interacts with penetration testers and other external vendors as needed.
- Keeps up to date on latest information security trends, 'best practices', threats, and countermeasures.
- Reviews log-based data, both in raw form and utilizing SIEM or aggregation tools.
- Operates and maintains technologies, systems, and applications used to support security controls and activities.
- Assists in promoting a culture of information security at Sound Transit.
- Champions and models Sound Transit's core values and demonstrates values-based behaviors in everyday interactions across the agency.
- Contributes to a culture of diversity, equity and inclusion in alignment with Sound Transit's Equity & Inclusion Policy.
- Integrates sustainability into everyday business practices.
Requirements
- Bachelor's degree in Computer Science, Information Technology, Business Management Information Systems or related field.
- Five years of verifiable information systems security (or cyber security) experience; or an equivalent combination of education and experience.
- Certified Information Systems Security Professional (CISSP), or ability to obtain certification within 12 months of employment.
Nice-to-haves
- CEH, CCFP, GCIH (or other GIAC), CCSP, CSA or others that are considered field-relevant.
Benefits
- Health Benefits: Two choices of medical plans, a dental plan, and a vision plan all at no cost for employee coverage; comprehensive benefits for employees and eligible dependents, including a spouse or domestic partner.
- Long-Term Disability and Life Insurance.
- Employee Assistance Program.
- Retirement Plans: 401a - 10% of employee contribution with a 12% match by Sound Transit; 457b - up to IRS maximum (employee only contribution).
- Paid Time Off: Employees accrue 25 days of paid time off annually with increases at four, eight and twelve years of service. Employees at the director level and up accrue additional days. 12 paid holidays, up to 2 paid floating holidays and up to 2 paid volunteer days per year.
- Parental Leave: 12 weeks of parental leave for new parents.
- Pet Insurance.
- ORCA Card: All full-time employees will receive an ORCA card at no cost.
- Tuition Reimbursement: Up to $5,000 annually for approved tuition expenses.
- Inclusive Reproductive Health Support Services.
- Competitive salaries based on market rates and internal equity, work-life balance, opportunities for professional development and recognition from colleagues.
