Cyber Security Engineer

Direct End Client : Metropolitan Transportation Authority

Job Title : Cybersecurity Engineer

Duration : 12 + Months

Start Date : ASAP

Location : New York City , NY, 10004 (Onsite)

Position Type : Contract

Interview Type : Telephonic / webcam / In-person

Hours per week : 40 Hours

Requirement ID : MTA WIND416 JM

Position # : 23416

Note :

May mentor less experienced staff. Performs other duties and tasks as assigned.

May need to work outside of normal work hours supporting 24 / 7 operations (i.e., evenings and weekends).

Travel may be required to other MTA locations or other external sites.

Responsible for financial / budgeting / vendor / contract planning and management.

RESPONSIBILITIES :

Identify areas for architectural, engineering, and operational improvements and to ensure that the security architecture is suitable and supportable Manage and plan the future technical architecture, providing insight into the future of their area of technology to continually improve effectiveness and efficiency.

Conduct design and engineering processes to ensure that security architecture solutions maintain the confidentiality, integrity, and availability of information assets.

Understand, review, and approve Cybersecurity Reference Architectures and solutions for applying them.

Collaborate with technology and business teams to ensure that the implementation of new technologies and security solutions can be supported and that they are in alignment with security architecture, industry best practice, principles of secure design, and business strategies.

Revalidate systems to most recent reference architectures to determine gaps, develop and manage programs to align systems to newest standards and reference architectures.

Define the appropriate architecture, technical requirements, and standards necessary to address information security needs for the organization.

Perform risk assessments of new and existing technology solutions to identify opportunities for improvement, and engineering solutions to adequately mitigate associated risks.

Serve as the engineering security expert in application development; database design; network and operating system security design;

access and audit control development; and identity management solutions.

Address security requirements within cloud architectures, creating new and evolving security services and standards pertaining to cloud services;

consulting with internal and external customers; and developing and documenting strategies, standards, and roadmaps for cloud security components and architectures.

Required Experience : (10 Years)

Network Engineer :

Understanding of Network Concepts (e.g. Subnetting, Protocols, OSI model, etc.)

Experience in Implementing / Managing / Troubleshooting Network Infrastructure (e.g. Routers, Switches, etc.)

Understanding of Tools / Strategies to implement Network Security (e.g. CISCO ISE, AAA Framework, etc.)

Cybersecurity Engineer w / Network Background :

Include all Network Engineer Requirements

Experience in Implementation / Usage of Network Security Appliances (e.g. FWs, IDS / IPS, NAC, etc.)

Understanding of Cybersecurity Concepts

Must possess an expert / highly proficient in deep understanding of technology and cybersecurity domain principles within the context of Operational Technologies, Signaling Systems and Rolling Stock.

Expert / Highly Proficient, knowledge of Concepts, principals and design of data security and disaster recovery processes including threat and vulnerability management;

access control; network design and management; identity and access management; and data protection and management.

Legal and regulatory compliance requirements as they relate to data and information privacy and security.Expert / Highly Proficient, knowledge of Cybersecurity technologies including identity and access management solutions;

intrusion detection / prevention, PKI, security incident and event management solutions and network / firewall technology.

Must possess at least two of the following professional certifications in subject domain including but not limited to : (Any 2 of this)

Certified Information Security Professional (CISSP),

Global Information Assurance Certification (GIAC)

Certified Information Security Manager (CISM)

Certified in Risk and Information Systems Control (CRISC),

Certified Information Systems Auditor (CISA), other related certification(s)

Group Inc . is an IT Services company which supplies IT staffing, project management, and delivery services in software, network, help desk and all IT areas.

Our primary focus is the public sector including state and federal contracts. We have multiple awards / contracts with the following states : AR, CA, DE, FL, GA, IL, KY, MD, ME, MI, NC, NJ, NY, OH, OR, PA, SC, TX, VA, and WA.

If you are considering applying for a position with V Group, or in partnering with us on a position, please feel free to contact me for any questions you may have regarding our services and the advantages we can offer you as a consultant.

Please share my contact information with others working in Information Technology.

Website : LinkedIn :

LinkedIn : Facebook :

Facebook : Twitter :

Twitter :