Talent.com
Cybersecurity Analyst Critical Assets & Incident Response CERT Levels 3-5

Cybersecurity Analyst Critical Assets & Incident Response CERT Levels 3-5

Metropolitan Transportation AuthorityNew York, NY, US
job_description.job_card.variable_hours_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

Cybersecurity Analyst Critical Assets & Incident Response CERT Levels 3-5

Join to apply for the Cybersecurity Analyst Critical Assets & Incident Response CERT Levels 3-5 role at Metropolitan Transportation Authority

Job Information

Description

Job Title : Cybersecurity Analyst Critical Assets & Incident Response CERT Levels 3-5

Salary Range : Level 3 : $95,929 - $127,050

Level 4 : $102,760 - $139,755

Level 5 : $114,537 - $153,731

POINTS : Level 3 - 393

Level 4 - 451

Level 5 – 551

DEPT / DIV : MTA Information Technology / Office of IT CyberSecurity Services

SUPERVISOR

Cyber Security Officer, Monitoring

LOCATION : 2 Broadway, New York, NY 10004

HOURS : 9 : 00 am -5 : 30 pm (7.5 hours / day or as required)

This position is eligible for telework, which is currently 2 days per week.

Summary

The purpose of this position is to provide critical technical expertise in the detection, analysis, and response to cybersecurity events. Cybersecurity Analyst will be responsible for early and accurate detection, prevention, response, containment, and guidance to remediation of threats directed against the MTA on a 24 / 7 basis.

Desired Skills :

  • Experience with configuring and troubleshooting PLC, RTU, or HMI in industrial environments.
  • Understanding and experience with various types of OT networking protocols, Modbus, Profibus, OPC, etc.
  • Develop / review specification for PTC systems.
  • Implement secure configurations and monitor Supervisory Control and Data Acquisition (SCADA) systems used in rail control.
  • Use purpose-built firewalls for protecting railway signaling and communication systems.

Responsibilities :

  • Researching emerging threats and vulnerabilities to aid in the identification of network incidents, and supports the creation of new architecture, policies, standards, and guidance to address them
  • Provide incident response support, including mitigating actions to contain activity and facilitating forensics analysis when necessary
  • Conducts security monitoring and intrusion detection analysis using various technology and analytic tools.
  • Correlates events and activities across systems to identify trends of unauthorized use
  • Reviews alerts and data from sensors and documents formal, technical incident reports
  • Test new systems and manage cybersecurity risks and remediation through analysis
  • Responds to computer security incidents according to the computer security incident response policy and procedures
  • Provides technical guidance to first responders for handling information security incidents
  • Provides timely and relevant updates to appropriate stakeholders and decision makers
  • Communicates investigation findings to relevant business units to help improve the information security posture
  • Validates and maintains incident response plans and processes to address potential threats
  • Compiles and analyzes data for management reporting and metrics
  • Monitors relevant information sources to stay up to date on current attacks and trends
  • Analyzes the potential impact of new threats and communicates risks back to detection engineering functions
  • Performs root-cause analysis to document findings and participate in root-cause elimination activities as required
  • Works with data sets to identify patterns
  • Understands data automation and analysis techniques
  • Uses judgment to form conclusions that may challenge conventional wisdom
  • Hypothesizes new threats and indicators of compromise
  • Monitors threat intelligence feeds to identify a range of threats, including indicators of compromise and advanced persistent threats (APTs)
  • Identifies the tactics, techniques, and procedures (TTPs) of potential threats through the MITRE ATT&CK or similar frameworks
  • Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the IT Security Manager, where appropriate.
  • Perform Contract management and supply management functions appropriate to reduce security risks

    • Level 3

  • Provides proactive monitoring and analysis for a domain of cybersecurity to ensure the system's security baseline targets are met.
  • Implements changes to one or more cybersecurity related domain technologies, executing tests and reporting on security baselines, violations / anomalies, to meet requested needs.
  • Troubleshoot and investigate cybersecurity incidents and issues by analyzing a chain of events and applying technical knowledge following established procedures and standards to resolve immediate customer needs.
  • Maintains and updates existing documentation and standard operating procedures to ensure accurate and timely information is available for assigned systems.
  • Works with more experienced colleagues and other IT technical resources to improve coordination of cybersecurity requirements and analyze issues as they arise
  • Participate in the evaluation of new products and technologies, under the direction and guidance of senior colleagues, relevant to the assigned cybersecurity area to enhance cybersecurity posture and reduce risk to the MTA while achieving objectives.
  • Performs other duties and tasks as assigned.
  • Observing the work performed by the contractor.
  • Reviewing invoices and approving them if the work meets contractual standards.
  • Addressing performance issues with the contractor when possible.
  • Escalating issues to other parties as needed.

    • Level 4

    Same As Level 3 With The Following Additional Qualifications :

  • Executes the defined product lifecycle, manages the product lifecycle for a component of the infrastructure, proposes changes for implementation, gathers data and analyzes capacity and performance to assure operational availability.
  • Analyzes the current state of the infrastructure and identifies opportunities for improvement to ensure systems meet business needs.
  • Provides ongoing support and troubleshooting for installed technical solutions by analyzing a chain of events and applying technical knowledge, following established procedures and standards to resolve immediate customer needs.
  • Investigates, evaluates, and tests new products and technologies relevant to assigned infrastructure subsets to enhance cybersecurity analytics and overall security posture.
  • Promotes security standards and supports efforts to expand and migrate to future security architecture to improve security and share learning.

    • Level 5

    Same As Level 4 With The Following Additional Qualifications :

  • Provides more advanced analytical capability in several security domains.
  • Adds new components to a roadmap, documents them effectively, and directs the testing and implementation of changes.
  • When provided with an objective to improve security in their security domain(s) and related technology, develop and implement action plans needed to effect the change.
  • Research new technologies / products and their impact on the infrastructure, prepare a preliminary evaluation of technologies / products and associated costs, and develop and present recommendations to support anticipated future business needs.
  • Receives security and performance data and analyzes the baselines and efficacy of installed technologies.
  • Proposes and implements any required changes, including identifying and planning for any resulting impacts on other technologies to optimize system availability and continuity.
  • Provides ongoing support and troubleshooting for incidents, correlations, and reporting to more junior analysts to resolve immediate security threats and / or customer needs.
  • Provides technical leadership to project teams in their area of expertise and / or leads teams to complete projects specific to their area(s) of expertise to maximize and share learning.
  • Provides guidance and technical coaching to less experienced staff to support effective workflow and develop technical talent.

    • Education & Experience

    Level 3

  • Bachelor's Degree and minimum 1 year of relevant experience.
  • Bachelor's degree in Computer Science or related fields preferred.
  • CISSP or other advanced security-related certification preferred but not required.
  • Certifications in technology subdomains preferred but not required.
  • Requires prior experience with installing, maintaining, and troubleshooting technology systems.
  • Proven ability to troubleshoot and support technical issues using standardized procedures.
  • Proven ability to analyze a security risk assessment or conduct one with guidance
  • Understanding of Operating Systems and Hardware
  • Understanding of TCP / IP (OSI Layers 1– 4) and Internet and Intranet technologies required.
  • Scripting or programming skills (PERL, Python, PowerShell, etc.) preferred as needed.
  • 1 year of experience in a specific cybersecurity subdomain is preferred

    • Competencies : Level 3

  • Adept : Values Diversity Collaborates
  • Capable : Cultivates Innovation, Customer Focus, Communicates Effectively
  • Fundamental Awareness : Tech Savvy, Technical Skills

    • Level 4

  • Bachelor's Degree and minimum 3 years of relevant experience.
  • 3+ years of relevant experience in a specific cybersecurity subdomain.
  • Prefer at least one certification in the current platform / domain / technical skills
  • Bachelor's degree in Computer Science or related fields preferred.
  • Current CISSP or other advanced security-related certification preferred but not required.
  • Certifications in technology subdomains preferred but not required.
  • Proven ability to independently evaluate and resolve most problems within an area of infrastructure, applications within a security domain context.
  • Proven ability to analyze and / or conduct a security risk assessment
  • Understanding of Operating Systems and Hardware
  • Advanced understanding of TCP / IP (OSI Layers 1– 4) and Internet and Intranet technologies required.
  • Scripting or programming skills (PERL, Python, PowerShell, etc.).

    • Competencies : Level 3

  • Adept : Communicates Effectively, Values Diversity, Collaborates
  • Capable : Cultivates Innovation, Customer Focus, Tech Savvy, Technical Skills

    • Level 5

  • Bachelor's degree required.
  • 5+ years of relevant experience in a specific cybersecurity subdomain.
  • Must possess at least one of the following professional certifications in subject domain including but not limited to : Certified Information Security Professional (CISSP), or Global Information Assurance Certification (GIAC), or Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC), or Certified Information Systems Auditor (CISA), or other related certification(s)
  • Bachelor's degree in Computer Science or related fields preferred.
  • Progressive cybersecurity related accomplishments
  • Requires broad technical knowledge of multiple technologies, or an in-depth knowledge of one technology, including its impact on other technologies.
  • Proven ability to analyze and / or conduct a security risk assessment
  • Understanding of Operating Systems and Hardware
  • Advanced understanding of TCP / IP (OSI Layers 1– 4) and Internet and Intranet technologies required.
  • Scripting or programming skills (PERL, Python, PowerShell, etc.) as needed.

    • Competencies : Level 3

  • Advanced : Communicates Effectively, Values Diversity, Collaborates
  • Adept : Tech Savvy, Technical Skills, Cultivates Innovation, Customer Focus

    • Equal Employment Opportunity

    MTA and its subsidiary and affiliated agencies are Equal Opportunity Employers, including with respect to veteran status and individuals with disabilities.

    J-18808-Ljbffr

    serp_jobs.job_alerts.create_a_job

    Incident Response Analyst • New York, NY, US

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    CPC Denials and Escalation Analyst

    CPC Denials and Escalation Analyst

    Allied Digestive HealthEatontown, NJ, US
    serp_jobs.job_card.full_time
    Full-Time, CPC Denials And Escalation Analyst.Allied Digestive Health is one of the largest integrated networks of gastroenterology care centers in the nation with over 200 providers and 60 locatio...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Enterprise Risk Management Analyst

    Senior Enterprise Risk Management Analyst

    Mutual of America Financial GroupNew York, NY, US
    serp_jobs.job_card.full_time
    Senior Enterprise Risk Management Analyst.Mutual of America Financial Group Job Title : Senior Enterprise Risk Management Analyst Location : New York, NY (Hybrid). At Mutual of America Financial Group...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    Cybersecurity Analyst

    Cybersecurity Analyst

    VISTRADANew York, NY, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    Vistrada is looking to hire a strong Cybersecurity Analyst to join our Cybersecurity practice.A Cybersecurity Analyst is part of a team that consults with clients about cybersecurity related t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Cybersecurity Manager

    Cybersecurity Manager

    CompoSecureSomerset, NJ, US
    serp_jobs.job_card.full_time
    Founded in 2000, CompoSecure (Nasdaq : CMPO) is a technology partner to market leaders, fintechs and consumers, enabling trust for millions of people around the globe. The company combines elegance, ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    Information Security Analyst

    Information Security Analyst

    VDart IncStamford, CT, United States
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    Job role : Information Security Analyst Duration : 6 months to start, potential extension or FTE conversion &l...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    REMOTE CPC Denials and Escalations Analyst

    REMOTE CPC Denials and Escalations Analyst

    Allied Digestive HealthEatontown, NJ, US
    serp_jobs.filters.remote
    serp_jobs.job_card.full_time
    Full-Time Remote Cpc Denials And Escalation Analyst.Allied Digestive Health is one of the largest integrated networks of gastroenterology care centers in the nation with over 200 providers and 60 l...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    AML Analyst

    AML Analyst

    Veterans StaffingIselin, NJ, US
    serp_jobs.job_card.full_time
    In this role, you will serve as an analyst with responsibilities for accurately evaluating customer information and taking appropriate action to protect the company against the risk of money launde...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Fraud Investigative Analyst I- NY, NJ or PA

    Fraud Investigative Analyst I- NY, NJ or PA

    Visions Federal Credit UnionSaddle Brook, NJ, US
    serp_jobs.job_card.full_time
    Fraud Investigative Analyst I - NY, NJ Or PA.We're in the business of people helping people and you can help us change lives just by working here. Whether it's helping a member make a transaction, b...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Board Certified Behavior Analyst (Matawan)

    Board Certified Behavior Analyst (Matawan)

    Aimic IncMatawan, NJ, US
    serp_jobs.job_card.full_time +1
    We're seeking a passionate BCBA who wants to make an impact, focus on clinical excellence, and finally achieve true work-life balance. WHY BCBAs LOVE WORKING WITH US : .Work Monday through Friday, 8 : 0...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Fraud Detection Analyst - Hicksville, NY

    Fraud Detection Analyst - Hicksville, NY

    Flagstar BankHicksville, NY, US
    serp_jobs.job_card.full_time
    Fraud Detection Analyst - Hicksville, NY.The Fraud Detection Analyst plays a critical role in protecting the Bank's assets by proactively identifying and mitigating fraudulent activity.This positio...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Insurance Risk Analyst Lead

    Insurance Risk Analyst Lead

    Flagstar BankHicksville, NY, US
    serp_jobs.job_card.full_time
    The Lead Insurance Risk Analyst works under minimal supervision and with appreciable latitude for actions and decisions, assists in connection ensuring that the Company maintains an effective Corpo...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Security Risk Management Analyst

    Security Risk Management Analyst

    CoreWeaveLivingston, NJ, US
    serp_jobs.job_card.permanent
    CoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI.Our technology provides enterprises and leading AI labs with the most perfo...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Board Certified Behavior Analyst

    Board Certified Behavior Analyst

    Aimic IncMatawan, NJ, US
    serp_jobs.job_card.full_time
    We're seeking a passionate BCBA who wants to make an impact, focus on clinical excellence, and finally achieve true work-life balance. WHY BCBAs LOVE WORKING WITH US : .Work Monday through Friday,...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Market Risk Analyst

    Market Risk Analyst

    AQR Capital ManagementOld Greenwich, CT, US
    serp_jobs.job_card.full_time
    AQR is a global investment firm built at the intersection of financial theory and practical application.We strive to deliver concrete, long-term results by looking past market noise to identify and...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Risk Analyst

    Risk Analyst

    AmpcusWhite Plains, NY, US
    serp_jobs.job_card.full_time
    Technology and Business consulting services.We are in search of a highly motivated candidate to join our talented team.Job Title : Risk Analyst Location(s) : White plains, NY Project Overview There a...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Governance, Risk, & Compliance Manager

    Governance, Risk, & Compliance Manager

    FragomenMatawan, NJ, US
    serp_jobs.job_card.full_time
    Governance, Risk & Compliance Manager.Fragomen, an AM Law 100 Firm and the leading global immigration services provider, is seeking candidates for a critical role in data privacy and security.At Fr...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Enterprise Risk Analyst

    Enterprise Risk Analyst

    Columbia BankFair Lawn, NJ, US
    serp_jobs.job_card.full_time
    The Enterprise Risk Analyst supports the Operational Risk Manager regarding all aspects of Operational Risk Management and Financial Risk Reporting within the Enterprise Risk Management (ERM) progr...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Cyber Risk Analyst, AVP

    Cyber Risk Analyst, AVP

    Apple BankNew York, NY, US
    serp_jobs.job_card.full_time
    Salary Range : $110,000 - $130,000.The Cyber Risk Analyst acts as a subject matter expert in vulnerability management and plays a key role in mitigating enterprise risk for Apple Bank.This position ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Cybersecurity Specialist -Mid

    Cybersecurity Specialist -Mid

    Softek International IncPiscataway, NJ, US
    serp_jobs.job_card.full_time
    POSITION TITLE : Cybersecurity Specialist -Mid.LCAT / POSITION # : Enterprise Risk Reporting.DEPT / CONTRACT : Enterprise Cybersecurity Risk Tracking & Reporting / RMF. REPORTING TO : _Project Manager.LO...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Major Incident Management - Senior Infrastructure Services and Management Analyst

    Major Incident Management - Senior Infrastructure Services and Management Analyst

    Northwell HealthWestbury, NY, United States
    serp_jobs.job_card.full_time
    Strongly Preferred : 2-3 years of experience in Major incident Management.Shifts : 11a-7p Monday - Friday with weekend on calls every 6-7 weeks. Participates in developing and conducting QA reviews of...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours