What are the responsibilities and job description for the Cybersecurity Associate position at Metra Commuter Rail?
Description
The final salary will depend on the candidate's qualifications. Those with 8 years or more of required experience can expect offers up to the midpoint of the salary range. Metra provides full pay ranges so candidates can consider their growth potential.
Click here to learn more about our benefits!
Qualified veterans who meet the minimum requirements will receive outreach during the recruitment process in accordance with Federal and State laws, including the Illinois Veterans Preference Act. Meeting the minimum qualifications does not guarantee an interview or job offer. The most qualified candidate will be selected.
Metra is one of the largest and most complex commuter rail systems in North America, serving Cook, DuPage, Will, Lake, Kane, and McHenry Counties. The agency is linking communities in Northeastern Illinois by providing safe, reliable, and efficient commuter service.
Information Technology is divided into four sections: Enterprise Applications, Railroad Applications, Network Services and Systems Development. The Enterprise Applications team is charged with implementing and supporting applications used enterprise-wide at Metra, such as the new Enterprise Resource Planning (ERP) system and HR, Payroll and Timekeeping systems. The Railroad Applications team is charged with implementing and supporting applications used to support Metra’s Transportation, Mechanical, and Engineering functions. The Network Services section has two distinct groups: IT Support and Network Operations. IT Support maintains and supports the agency’s personal computers as well as computer aided design (CAD) systems for the Engineering Department and point-of-sale terminals. Network Operations builds and maintains the servers and storage that are replacing the agency’s mainframe, the data network, e-mail system and disaster recovery capabilities. Systems Development develops, maintains, and supports all application systems built in-house, across all business functions.
Reporting to the Senior Manager, Cyber Security Operations, the Cyber Security Associate will be primarily responsible for monitoring aggregated logs for threats and maintaining cyber security systems; participating in evaluating, testing, and recommending cyber security controls and procedures; and creating and administrating cyber security education.
The primary duties include: Monitor aggregated security events and run scans to detect vulnerabilities and malicious activity; document and share findings with network/system owners; report incidents in compliance with regulatory requirements; and monitor containment and remediation efforts ensuring proper handling and timely resolution. Perform in-depth analysis of security events or vulnerabilities to identify patterns and trends, remediate known threats and vulnerabilities, and report incidents including unauthorized access, discovery of malicious software, denial of service, and incidents that could result in systems disruptions. Develop, review, and update documentation in run books, alert logic, policies, and procedures. Produce actionable intelligence in the form of reports, cases, notifications, and briefings to build effective defense mechanisms, and mitigate risks and defend against future attacks. Administer and contribute to organizational cybersecurity awareness and training efforts. Promote safe work practices and maintain and foster a safe work environment. Perform other related duties as assigned to meet the ongoing needs of the organization.
Metra is a railroad employer subject to the provisions of the Railroad Retirement Tax Act, not the Social Security Administration.
The final salary will depend on the candidate's qualifications. Those with 8 years or more of required experience can expect offers up to the midpoint of the salary range. Metra provides full pay ranges so candidates can consider their growth potential.
Click here to learn more about our benefits!
Qualified veterans who meet the minimum requirements will receive outreach during the recruitment process in accordance with Federal and State laws, including the Illinois Veterans Preference Act. Meeting the minimum qualifications does not guarantee an interview or job offer. The most qualified candidate will be selected.
Metra is one of the largest and most complex commuter rail systems in North America, serving Cook, DuPage, Will, Lake, Kane, and McHenry Counties. The agency is linking communities in Northeastern Illinois by providing safe, reliable, and efficient commuter service.
Information Technology is divided into four sections: Enterprise Applications, Railroad Applications, Network Services and Systems Development. The Enterprise Applications team is charged with implementing and supporting applications used enterprise-wide at Metra, such as the new Enterprise Resource Planning (ERP) system and HR, Payroll and Timekeeping systems. The Railroad Applications team is charged with implementing and supporting applications used to support Metra’s Transportation, Mechanical, and Engineering functions. The Network Services section has two distinct groups: IT Support and Network Operations. IT Support maintains and supports the agency’s personal computers as well as computer aided design (CAD) systems for the Engineering Department and point-of-sale terminals. Network Operations builds and maintains the servers and storage that are replacing the agency’s mainframe, the data network, e-mail system and disaster recovery capabilities. Systems Development develops, maintains, and supports all application systems built in-house, across all business functions.
Reporting to the Senior Manager, Cyber Security Operations, the Cyber Security Associate will be primarily responsible for monitoring aggregated logs for threats and maintaining cyber security systems; participating in evaluating, testing, and recommending cyber security controls and procedures; and creating and administrating cyber security education.
The primary duties include: Monitor aggregated security events and run scans to detect vulnerabilities and malicious activity; document and share findings with network/system owners; report incidents in compliance with regulatory requirements; and monitor containment and remediation efforts ensuring proper handling and timely resolution. Perform in-depth analysis of security events or vulnerabilities to identify patterns and trends, remediate known threats and vulnerabilities, and report incidents including unauthorized access, discovery of malicious software, denial of service, and incidents that could result in systems disruptions. Develop, review, and update documentation in run books, alert logic, policies, and procedures. Produce actionable intelligence in the form of reports, cases, notifications, and briefings to build effective defense mechanisms, and mitigate risks and defend against future attacks. Administer and contribute to organizational cybersecurity awareness and training efforts. Promote safe work practices and maintain and foster a safe work environment. Perform other related duties as assigned to meet the ongoing needs of the organization.
Metra is a railroad employer subject to the provisions of the Railroad Retirement Tax Act, not the Social Security Administration.