Cornerstone Concilium, Inc.
Cybersecurity Security Engineer
Cornerstone Concilium, Inc., Los Angeles, California, United States, 90079
5 days ago Be among the first 25 applicants
Get AI-powered advice on this job and more exclusive features.
Description
Cybersecurity Engineering Services develop advanced security solutions in line with Metro specifications, regulations, and compliance. Responsibilities
Assist with security strategy updates addressing the evolving risk landscape. Assist with security governance, aligned to NIST CSF, as required to sustain an effective cybersecurity program. 3Assist with 3rd parties/projects/initiatives security risk assessments and provide solutions recommendations as needed. Assist with security operations management update/improvement as required. Manage information security-related activities of the agency including the analysis, identification, estimation of InfoSec efforts and the development, planning, testing, and documenting of remediation measures. Develops, conducts, and documents executive-level reporting and strategy formulation. Creates and maintains a centralized information security register to manage all InfoSec information and document changes relevant requirements. Collaborates with internal and external stakeholders to maintain an understanding of current risks, new systems, and changes to the environment. Supports development, implementation, and maintenance of strong security risk & compliance processes for new and existing deployments. Participates in vendor due-diligence processes and third-party security risk management efforts; in addition to performing contract reviews as it relates to Information Security. Supports internal and external audit and assessment processes for relevant compliance (PCI DSS, Privacy, etc.). Creates security guidelines, checklists, and other documentation to support projects and initiatives. Develops and presents metrics, reports, and dashboards. Develops documentation for information security controls, acquisitions, and process or system changes. Stays up to date on developing regulatory concerns, evolving IT, and information security trends. Contributes to ensuring that the Equal Employment Opportunity (EEO) policies and programs of Metro are carried out. May be required to perform other related job duties. Knowledge & Experience Requirements
Experience working with a transit Universal Fare System (UFS) and the Cubic Payment Application (CPA) as it relates to transportation agency data compliance. Knowledge of cybersecurity technology and compliance in transit systems. Demonstratable strong background in the processes, policies, procedures, systems, practices, and professional standards of cybersecurity. Demonstratable knowledge of industry best practices and relevant legal requirements as they pertain to cybersecurity, compliance, and privacy laws and regulations including TSA/DHS transport directives, DMV rules and regulation and other transportation agency cyber security rules and regulations. Consultant must have delivered similar services (as stated above) during the past 10 years. Experience with modern Security Operations Center (SOC) monitoring, detecting, analyzing, and responding to cyber threats. Experience with conducting Cyber forensics. Experience with major Cyber Incident handling. Experience with preparing and guiding organizations to achieve and sustain compliance with Payment Card Industry Data Security Standard (PCI DSS). Experience with vulnerability scanning, penetration testing, etc. using commercial products. Experience with risk-based prioritization of security vulnerabilities and providing actionable remediation guidance. Experience with cloud based and on-premise Security Information and Event Management (SIEM) tools including administering the tools, reviewing alerts, and providing actionable steps. Experience with Security Orchestration, Automation, and Response (SOAR) platform. 15+ years’ experience supporting companies of a similar size to LA Metro with skills performing above listed technical security activities. Two of the certifications below:
Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) GIAC Security Professional (GSEC) Certified Data Privacy Solutions Engineer (CDPSE) Cyber Security Nexus (CSX)
Employment details
Full time position Hybrid to start, then 100% remote Salary Range of $156,000 to $238,000 YR Job function & Industry
Job function: Information Technology Industries: Business Consulting and Services Referrals increase your chances of interviewing at Cornerstone Concilium, Inc. by 2x Recent related roles
Sign in to set job alerts for “Cyber Security Engineer” roles. Beverly Hills, CA $120,000.00-$150,000.00 1 week ago Hawthorne, CA $130,000.00-$150,000.00 2 weeks ago Hawthorne, CA $120,000.00-$160,000.00 2 weeks ago Glendale, CA $117,500.00-$165,000.00 8 hours ago Rosemead, CA $140,400.00-$210,500.00 1 month ago Long Beach, CA $69,444.00-$101,160.00 6 days ago Burbank, CA $114,900.00-$154,100.00 2 months ago More roles
Cybersecurity Operations Specialist - Hybrid Beverly Hills, CA $94,390.40-$151,028.80 2 weeks ago Cybersecurity & Data Privacy Associate – Chicago, Los Angeles, Dallas, Houston, Detroit, Boulder Info Security Analyst II / IS - Information Security / Full-time Senior Cyber Security Specialist, Threat Hunt Rosemead, CA $140,400.00-$210,500.00 2 weeks ago Los Angeles Metropolitan Area $135,000.00-$150,000.00 2 weeks ago Rosemead, CA $111,600.00-$167,400.00 1 month ago Vice President, Senior Cybersecurity Engineer Hawthorne, CA $130,000.00-$150,000.00 2 weeks ago Burbank, CA $110,000.00-$135,000.00 1 week ago Information Technology Security Architect Los Angeles, CA $70,000.00-$110,000.00 2 years ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Cybersecurity Engineering Services develop advanced security solutions in line with Metro specifications, regulations, and compliance. Responsibilities
Assist with security strategy updates addressing the evolving risk landscape. Assist with security governance, aligned to NIST CSF, as required to sustain an effective cybersecurity program. 3Assist with 3rd parties/projects/initiatives security risk assessments and provide solutions recommendations as needed. Assist with security operations management update/improvement as required. Manage information security-related activities of the agency including the analysis, identification, estimation of InfoSec efforts and the development, planning, testing, and documenting of remediation measures. Develops, conducts, and documents executive-level reporting and strategy formulation. Creates and maintains a centralized information security register to manage all InfoSec information and document changes relevant requirements. Collaborates with internal and external stakeholders to maintain an understanding of current risks, new systems, and changes to the environment. Supports development, implementation, and maintenance of strong security risk & compliance processes for new and existing deployments. Participates in vendor due-diligence processes and third-party security risk management efforts; in addition to performing contract reviews as it relates to Information Security. Supports internal and external audit and assessment processes for relevant compliance (PCI DSS, Privacy, etc.). Creates security guidelines, checklists, and other documentation to support projects and initiatives. Develops and presents metrics, reports, and dashboards. Develops documentation for information security controls, acquisitions, and process or system changes. Stays up to date on developing regulatory concerns, evolving IT, and information security trends. Contributes to ensuring that the Equal Employment Opportunity (EEO) policies and programs of Metro are carried out. May be required to perform other related job duties. Knowledge & Experience Requirements
Experience working with a transit Universal Fare System (UFS) and the Cubic Payment Application (CPA) as it relates to transportation agency data compliance. Knowledge of cybersecurity technology and compliance in transit systems. Demonstratable strong background in the processes, policies, procedures, systems, practices, and professional standards of cybersecurity. Demonstratable knowledge of industry best practices and relevant legal requirements as they pertain to cybersecurity, compliance, and privacy laws and regulations including TSA/DHS transport directives, DMV rules and regulation and other transportation agency cyber security rules and regulations. Consultant must have delivered similar services (as stated above) during the past 10 years. Experience with modern Security Operations Center (SOC) monitoring, detecting, analyzing, and responding to cyber threats. Experience with conducting Cyber forensics. Experience with major Cyber Incident handling. Experience with preparing and guiding organizations to achieve and sustain compliance with Payment Card Industry Data Security Standard (PCI DSS). Experience with vulnerability scanning, penetration testing, etc. using commercial products. Experience with risk-based prioritization of security vulnerabilities and providing actionable remediation guidance. Experience with cloud based and on-premise Security Information and Event Management (SIEM) tools including administering the tools, reviewing alerts, and providing actionable steps. Experience with Security Orchestration, Automation, and Response (SOAR) platform. 15+ years’ experience supporting companies of a similar size to LA Metro with skills performing above listed technical security activities. Two of the certifications below:
Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Certified Information Security Manager (CISM) GIAC Security Professional (GSEC) Certified Data Privacy Solutions Engineer (CDPSE) Cyber Security Nexus (CSX)
Employment details
Full time position Hybrid to start, then 100% remote Salary Range of $156,000 to $238,000 YR Job function & Industry
Job function: Information Technology Industries: Business Consulting and Services Referrals increase your chances of interviewing at Cornerstone Concilium, Inc. by 2x Recent related roles
Sign in to set job alerts for “Cyber Security Engineer” roles. Beverly Hills, CA $120,000.00-$150,000.00 1 week ago Hawthorne, CA $130,000.00-$150,000.00 2 weeks ago Hawthorne, CA $120,000.00-$160,000.00 2 weeks ago Glendale, CA $117,500.00-$165,000.00 8 hours ago Rosemead, CA $140,400.00-$210,500.00 1 month ago Long Beach, CA $69,444.00-$101,160.00 6 days ago Burbank, CA $114,900.00-$154,100.00 2 months ago More roles
Cybersecurity Operations Specialist - Hybrid Beverly Hills, CA $94,390.40-$151,028.80 2 weeks ago Cybersecurity & Data Privacy Associate – Chicago, Los Angeles, Dallas, Houston, Detroit, Boulder Info Security Analyst II / IS - Information Security / Full-time Senior Cyber Security Specialist, Threat Hunt Rosemead, CA $140,400.00-$210,500.00 2 weeks ago Los Angeles Metropolitan Area $135,000.00-$150,000.00 2 weeks ago Rosemead, CA $111,600.00-$167,400.00 1 month ago Vice President, Senior Cybersecurity Engineer Hawthorne, CA $130,000.00-$150,000.00 2 weeks ago Burbank, CA $110,000.00-$135,000.00 1 week ago Information Technology Security Architect Los Angeles, CA $70,000.00-$110,000.00 2 years ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr