Cybersecurity Security Engineer Job at Cornerstone Concilium, Inc. in Los Angele

5 days ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Description

Cybersecurity Engineering Services develop advanced security solutions in line with Metro specifications, regulations, and compliance.

Responsibilities

• Assist with security strategy updates addressing the evolving risk landscape.
• Assist with security governance, aligned to NIST CSF, as required to sustain an effective cybersecurity program.
• 3Assist with 3rd parties/projects/initiatives security risk assessments and provide solutions recommendations as needed.
• Assist with security operations management update/improvement as required.
• Manage information security-related activities of the agency including the analysis, identification, estimation of InfoSec efforts and the development, planning, testing, and documenting of remediation measures.
• Develops, conducts, and documents executive-level reporting and strategy formulation.
• Creates and maintains a centralized information security register to manage all InfoSec information and document changes relevant requirements.
• Collaborates with internal and external stakeholders to maintain an understanding of current risks, new systems, and changes to the environment.
• Supports development, implementation, and maintenance of strong security risk & compliance processes for new and existing deployments.
• Participates in vendor due-diligence processes and third-party security risk management efforts; in addition to performing contract reviews as it relates to Information Security.
• Supports internal and external audit and assessment processes for relevant compliance (PCI DSS, Privacy, etc.).
• Creates security guidelines, checklists, and other documentation to support projects and initiatives.
• Develops and presents metrics, reports, and dashboards.
• Develops documentation for information security controls, acquisitions, and process or system changes.
• Stays up to date on developing regulatory concerns, evolving IT, and information security trends.
• Contributes to ensuring that the Equal Employment Opportunity (EEO) policies and programs of Metro are carried out.
• May be required to perform other related job duties.

Knowledge & Experience Requirements

• Experience working with a transit Universal Fare System (UFS) and the Cubic Payment Application (CPA) as it relates to transportation agency data compliance.
• Knowledge of cybersecurity technology and compliance in transit systems.
• Demonstratable strong background in the processes, policies, procedures, systems, practices, and professional standards of cybersecurity.
• Demonstratable knowledge of industry best practices and relevant legal requirements as they pertain to cybersecurity, compliance, and privacy laws and regulations including TSA/DHS transport directives, DMV rules and regulation and other transportation agency cyber security rules and regulations.
• Consultant must have delivered similar services (as stated above) during the past 10 years.
• Experience with modern Security Operations Center (SOC) monitoring, detecting, analyzing, and responding to cyber threats.
• Experience with conducting Cyber forensics.
• Experience with major Cyber Incident handling.
• Experience with preparing and guiding organizations to achieve and sustain compliance with Payment Card Industry Data Security Standard (PCI DSS).
• Experience with vulnerability scanning, penetration testing, etc. using commercial products.
• Experience with risk-based prioritization of security vulnerabilities and providing actionable remediation guidance.
• Experience with cloud based and on-premise Security Information and Event Management (SIEM) tools including administering the tools, reviewing alerts, and providing actionable steps.
• Experience with Security Orchestration, Automation, and Response (SOAR) platform.
• 15+ years’ experience supporting companies of a similar size to LA Metro with skills performing above listed technical security activities.
• Two of the certifications below:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Security Manager (CISM)
  • GIAC Security Professional (GSEC)
  • Certified Data Privacy Solutions Engineer (CDPSE)
  • Cyber Security Nexus (CSX)

Employment details

Full time position

Hybrid to start, then 100% remote

Salary Range of $156,000 to $238,000 YR

Job function & Industry

• Job function: Information Technology
• Industries: Business Consulting and Services

Referrals increase your chances of interviewing at Cornerstone Concilium, Inc. by 2x

Recent related roles

Sign in to set job alerts for “Cyber Security Engineer” roles.

Beverly Hills, CA $120,000.00-$150,000.00 1 week ago

Hawthorne, CA $130,000.00-$150,000.00 2 weeks ago

Hawthorne, CA $120,000.00-$160,000.00 2 weeks ago

Glendale, CA $117,500.00-$165,000.00 8 hours ago

Rosemead, CA $140,400.00-$210,500.00 1 month ago

Long Beach, CA $69,444.00-$101,160.00 6 days ago

Burbank, CA $114,900.00-$154,100.00 2 months ago

More roles

Cybersecurity Operations Specialist - Hybrid

Beverly Hills, CA $94,390.40-$151,028.80 2 weeks ago

Cybersecurity & Data Privacy Associate – Chicago, Los Angeles, Dallas, Houston, Detroit, Boulder

Info Security Analyst II / IS - Information Security / Full-time

Senior Cyber Security Specialist, Threat Hunt

Rosemead, CA $140,400.00-$210,500.00 2 weeks ago

Los Angeles Metropolitan Area $135,000.00-$150,000.00 2 weeks ago

Rosemead, CA $111,600.00-$167,400.00 1 month ago

Vice President, Senior Cybersecurity Engineer

Hawthorne, CA $130,000.00-$150,000.00 2 weeks ago

Burbank, CA $110,000.00-$135,000.00 1 week ago

Information Technology Security Architect

Los Angeles, CA $70,000.00-$110,000.00 2 years ago

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.