Specialist Cyber Security Engineer OT

$118,404 - $139,755/Yr

Metropolitan Transportation Authority - New York, NY

posted 4 months ago

Full-time - Mid Level
New York, NY
Transit and Ground Passenger Transportation

About the position

The Specialist Cybersecurity Engineer OT position at MTA Headquarters is a critical role within the IT Cybersecurity department, focusing on managing and analyzing cybersecurity risks associated with the MTA's extensive operational technology (OT) infrastructure. This position is responsible for designing, building, and maintaining secure systems and applications that support the cybersecurity posture of the MTA. The Cybersecurity Engineer will engage in risk assessments, network monitoring, and operational process reviews, collaborating with various stakeholders including security engineers, architects, developers, and vendors to enhance the overall security framework of the organization. The MTA's IT Cybersecurity organization plays a vital role in protecting the agency's operations from cybersecurity threats, ensuring that systems are resilient against potential risks. The Specialist Cybersecurity Engineer will utilize their technical expertise to identify vulnerabilities, implement security measures, and ensure compliance with industry standards. This role requires a proactive approach to cybersecurity, with responsibilities that include monitoring OT networks for threats, leading the development of security technology solutions, and mentoring less experienced staff. In addition to technical responsibilities, the position involves financial and vendor management, ensuring that contractors meet performance standards and addressing any issues that arise. The Cybersecurity Engineer will also be expected to work outside of normal hours as needed to support the MTA's 24/7 operations, and travel may be required to various MTA locations or external sites.

Responsibilities

  • Perform risk assessments of new and existing technology solutions to identify opportunities for improvement, and engineering solutions to adequately mitigate associated risks.
  • Actively participate in multi-discipline engineering design groups, serving as the core project engineering team OT cybersecurity consultant to facilitate reliable, safe, and secure network and system designs.
  • Assist engineering group leaders in identifying the types and nature of potential OT cybersecurity risks, threats, and equipment selection as it relates to OT cybersecurity.
  • Identify areas for architectural, engineering, and operational improvements to ensure that the security architecture is suitable and supportable.
  • Collaborate with technology and business teams to ensure that the implementation of new technologies and security solutions can be supported and aligned with security architecture and business strategies.
  • Monitor Operational Technology networks for threats and vulnerabilities as an extension to the Security Operations Center.
  • Manage and plan the future technical architecture, providing insight into their area of technology and expertise to continually improve effectiveness and efficiency.
  • Lead the development and implementation of security technology solutions for complex environments and architecture including cross-platform interoperability.
  • Define security configurations and operational standards for security systems and applications, including policy assessment and compliance tools.
  • Serve as the engineering security expert in application development, database design, network and operating system security design, access and audit control development, and identity management solutions.
  • Develop sets of security principles, technology standards, and architectural constructs which guide the solution design, engineering, and deployment of OT solutions.
  • Ensure security architecture reviews are conducted for new technology to ensure best practices, document security solutions, and enable common solutions across the OT networks.
  • Determine security requirements by evaluating business strategies and requirements, researching information security standards, conducting system security and vulnerability analyses, and preparing cost estimates.
  • Mentor less experienced staff when appropriate.
  • Perform other duties and tasks as assigned.
  • May need to work outside of normal work hours supporting 24/7 operations (i.e., evenings and weekends).
  • Travel may be required to other MTA locations or other external sites.

Requirements

  • Bachelor's Degree in a relevant field.
  • At least 3 years of relevant experience in cybersecurity. An equivalent combination of education and experience may be considered in lieu of a degree.
  • Preferred certifications in cybersecurity (CISSP, CISM, CISA, CRISC, OSCP, GICSP, etc.).
  • 7+ years of cybersecurity experience with a deep understanding of technology and cybersecurity domain principles.
  • 5+ years of experience specifically securing OT/ICS systems.
  • Thorough knowledge of Operational Technology and PLC network protocols.
  • Expert ability to conduct and analyze a security risk assessment.
  • Proficient in monitoring network traffic of critical infrastructure to identify threats and vulnerabilities.
  • Proficient in Network Engineering/Architecture.
  • Demonstrated ability in implementing cybersecurity tools/systems (firewalls, IAM, SIEM, etc.).
  • Experience in scripting or programming skills (PERL, Python, PowerShell, etc.).
  • Proficient in productivity tools (PowerPoint, Excel, Visio, etc.).
  • Experience in programming/securing PLC/HMI's.
  • Familiarity with multiple ICS/SCADA equipment manufacturers and OT network communications protocols.
  • Industrial Control System (ICS) network segmentation design experience and familiarity with the Purdue Model / IEC-62443.

Nice-to-haves

  • Strong team player with excellent communication and documentation skills.
  • Ambition to learn and willingness to improvise and compromise based on stakeholder/project resources and needs.
  • Demonstrated ability to work independently and navigate organizational ambiguity.
  • Excellent critical thinking, problem-solving, and decision-making skills.
  • Proven ability to manage multiple projects simultaneously and prioritize tasks based on urgency and impact.

Benefits

  • Eligible for telework (currently two days per week after 30 days of hire).
  • Competitive salary range of $118,404 - $139,755.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service