Amtrak
Overview
Your success is a train ride away! As we move Americas workforce toward the future, Amtrak connects businesses and communities across the country. We employ more than 20,000 diverse, energetic professionals in a variety of career fields throughout the United States. The safety of our passengers, our employees, the public and our operating environment is our priority, and the success of our railroad is due to our employees. Are you ready to join our team? Our values of Do the Right Thing, Excel Together and Put Customers First are at the heart of what matters most to us, and our Core Capabilities, Building Trust, Accountability, Effective Communication, Customer Focus, and Proactive Safety & Security are what every employee needs to know and do to be most impactful at Amtrak. By living the Amtrak values, focusing on our capabilities, and actively embracing and fostering diverse ideas, backgrounds, and perspectives, together we will honor our past and make Amtrak a company of the future. Essential Functions
Supports the service owner and may serve as a service offering lead in the delivery of security technologies. Leads the evaluation and recommendation of hardware and software systems that provide security functions. Leads security assessments of technology systems and recommends system changes to ensure adherence to standards, policy, guidelines, strategies, and security best business practices. Generating, gathering, and tracking security metrics, developing scorecards for the metrics, and communicating the results to technology leadership. Participates in planning sessions related to projects or new technologies to implement process improvement within the functional area. Documents discussions and agreements. Facilitates gate review, change advisory boards and IT operational meetings. Works to consistently learn and share advanced skills and practices that promote team excellence. Builds relationships with developers, stakeholders, security champions, and scrum masters to incorporate security principles into engineering design and deployments. Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads. Support the ability to shift left and incorporate security early on and throughout the development lifecycle. Leads quality test activities and validates test completeness in preparation for go-live. Provides subject matter expertise to resolve problems, security incidents and conduct forensic investigations. Understands the TCP/IP stack with prior hands-on expertise securing diverse LAN, WAN, VPN, and wireless environments for large organizations Ability to work nights, weekends and holidays as needed to support planned and unplanned network maintenance and troubleshooting events Minimum Qualifications
Bachelors degree in computer science, Information Systems, Cybersecurity, Engineering or related field 7+ years of experience required Professional security-related certifications (e.g. Security+, CEH, CISSP, CISA, SANS, etc.). Must possess excellent customer service, strong communication and interpersonal skills, work well with others in an integrated team environment, and must be self-motivated. Proficient in securing Windows and Linux operating systems, endpoint applications, networking protocols and devices. Understanding of OWASP, CVSS, the MITRE ATT&CK framework and the secure software development lifecycle (SDLC). Preferred Qualifications
Masters degree in information technology, Cybersecurity, or equivalent. 7+ years of relevant experience; 11+ years of relevant work experience preferred to satisfy combined education and experience. Experience in cybersecurity specialization (compliance, information security program management, continuous monitoring, vulnerability assessment). Experience with operations and security across AWS and Microsoft Azure is preferred. Experience working with the Microsoft Security Stack. Knowledge of PCI, HIPAA, GLBA, NIST, CIS, or ISO requirements. Work Environment
Work is performed remotely Communications and Interpersonal Skills
Must have excellent oral and written communication skills. Compensation and Benefits The salary/hourly range is $124,600-$161,352. Pay is based on factors including education, work experience, certifications, internal equity, etc. Depending on location, a geo-pay differential may be applied. Amtrak may offer incentive programs and a comprehensive benefits package including health, dental, vision, health savings accounts, wellness programs, flexible spending accounts, 401(k) with employer match, life insurance, disability insurance, paid time off, adoption assistance, tuition reimbursement, Public Service Loan Forgiveness eligibility, railroad retirement benefits, and rail pass privileges. Learn more about our benefits offerings here. Requisition ID: 165070 Work Arrangement:
Onsite 4/5 Days. Relocation Offered: No.
Travel Requirements:
Up to 25% You power our progress through your performance. We want your work at Amtrak to be more than a job. We want your career at Amtrak to be a fulfilling experience where you find challenging work, rewarding opportunities, respect among colleagues, and attractive compensation. Amtrak maintains a culture that values high performance and recognizes individual employee contributions. Amtrak is committed to a safe workplace free of drugs and alcohol. All Amtrak positions require a pre-employment background check that includes prior employment verification, a criminal history check and a pre-employment drug screen. Candidates who test positive for marijuana will be disqualified, regardless of any state or local statute, ordinance, regulation, or other law that legalizes or decriminalizes the use or possession of marijuana. Amtraks pre-employment drug testing program is administered in accordance with DOT regulations and applicable law. In accordance with DOT regulations (49 CFR 40.25), Amtrak is required to obtain prior drug and alcohol testing records for applicants/employees performing safety-sensitive duties. If an applicant/employee refuses to provide written consent for Amtrak to obtain these records, the individual will not be permitted to perform safety-sensitive functions. In accordance with federal law governing security checks of covered individuals for providers of public transportation (Title 6 U.S.C. 1143), Amtrak is required to screen applicants for any permanent or interim disqualifying criminal offenses. Note that any education requirement listed above may be deemed satisfied if you have an equivalent combination of education, training and experience. Amtrak is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race/color, including traits historically associated with race, religion, sex, national origin, disability, veteran status, marital status, ancestry, sexual orientation, gender identity and gender expression, genetic information, citizenship or any other personal characteristics protected by law. #J-18808-Ljbffr
Your success is a train ride away! As we move Americas workforce toward the future, Amtrak connects businesses and communities across the country. We employ more than 20,000 diverse, energetic professionals in a variety of career fields throughout the United States. The safety of our passengers, our employees, the public and our operating environment is our priority, and the success of our railroad is due to our employees. Are you ready to join our team? Our values of Do the Right Thing, Excel Together and Put Customers First are at the heart of what matters most to us, and our Core Capabilities, Building Trust, Accountability, Effective Communication, Customer Focus, and Proactive Safety & Security are what every employee needs to know and do to be most impactful at Amtrak. By living the Amtrak values, focusing on our capabilities, and actively embracing and fostering diverse ideas, backgrounds, and perspectives, together we will honor our past and make Amtrak a company of the future. Essential Functions
Supports the service owner and may serve as a service offering lead in the delivery of security technologies. Leads the evaluation and recommendation of hardware and software systems that provide security functions. Leads security assessments of technology systems and recommends system changes to ensure adherence to standards, policy, guidelines, strategies, and security best business practices. Generating, gathering, and tracking security metrics, developing scorecards for the metrics, and communicating the results to technology leadership. Participates in planning sessions related to projects or new technologies to implement process improvement within the functional area. Documents discussions and agreements. Facilitates gate review, change advisory boards and IT operational meetings. Works to consistently learn and share advanced skills and practices that promote team excellence. Builds relationships with developers, stakeholders, security champions, and scrum masters to incorporate security principles into engineering design and deployments. Draft and uphold CI/CD security strategy and practices in tandem with other technical team leads. Support the ability to shift left and incorporate security early on and throughout the development lifecycle. Leads quality test activities and validates test completeness in preparation for go-live. Provides subject matter expertise to resolve problems, security incidents and conduct forensic investigations. Understands the TCP/IP stack with prior hands-on expertise securing diverse LAN, WAN, VPN, and wireless environments for large organizations Ability to work nights, weekends and holidays as needed to support planned and unplanned network maintenance and troubleshooting events Minimum Qualifications
Bachelors degree in computer science, Information Systems, Cybersecurity, Engineering or related field 7+ years of experience required Professional security-related certifications (e.g. Security+, CEH, CISSP, CISA, SANS, etc.). Must possess excellent customer service, strong communication and interpersonal skills, work well with others in an integrated team environment, and must be self-motivated. Proficient in securing Windows and Linux operating systems, endpoint applications, networking protocols and devices. Understanding of OWASP, CVSS, the MITRE ATT&CK framework and the secure software development lifecycle (SDLC). Preferred Qualifications
Masters degree in information technology, Cybersecurity, or equivalent. 7+ years of relevant experience; 11+ years of relevant work experience preferred to satisfy combined education and experience. Experience in cybersecurity specialization (compliance, information security program management, continuous monitoring, vulnerability assessment). Experience with operations and security across AWS and Microsoft Azure is preferred. Experience working with the Microsoft Security Stack. Knowledge of PCI, HIPAA, GLBA, NIST, CIS, or ISO requirements. Work Environment
Work is performed remotely Communications and Interpersonal Skills
Must have excellent oral and written communication skills. Compensation and Benefits The salary/hourly range is $124,600-$161,352. Pay is based on factors including education, work experience, certifications, internal equity, etc. Depending on location, a geo-pay differential may be applied. Amtrak may offer incentive programs and a comprehensive benefits package including health, dental, vision, health savings accounts, wellness programs, flexible spending accounts, 401(k) with employer match, life insurance, disability insurance, paid time off, adoption assistance, tuition reimbursement, Public Service Loan Forgiveness eligibility, railroad retirement benefits, and rail pass privileges. Learn more about our benefits offerings here. Requisition ID: 165070 Work Arrangement:
Onsite 4/5 Days. Relocation Offered: No.
Travel Requirements:
Up to 25% You power our progress through your performance. We want your work at Amtrak to be more than a job. We want your career at Amtrak to be a fulfilling experience where you find challenging work, rewarding opportunities, respect among colleagues, and attractive compensation. Amtrak maintains a culture that values high performance and recognizes individual employee contributions. Amtrak is committed to a safe workplace free of drugs and alcohol. All Amtrak positions require a pre-employment background check that includes prior employment verification, a criminal history check and a pre-employment drug screen. Candidates who test positive for marijuana will be disqualified, regardless of any state or local statute, ordinance, regulation, or other law that legalizes or decriminalizes the use or possession of marijuana. Amtraks pre-employment drug testing program is administered in accordance with DOT regulations and applicable law. In accordance with DOT regulations (49 CFR 40.25), Amtrak is required to obtain prior drug and alcohol testing records for applicants/employees performing safety-sensitive duties. If an applicant/employee refuses to provide written consent for Amtrak to obtain these records, the individual will not be permitted to perform safety-sensitive functions. In accordance with federal law governing security checks of covered individuals for providers of public transportation (Title 6 U.S.C. 1143), Amtrak is required to screen applicants for any permanent or interim disqualifying criminal offenses. Note that any education requirement listed above may be deemed satisfied if you have an equivalent combination of education, training and experience. Amtrak is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race/color, including traits historically associated with race, religion, sex, national origin, disability, veteran status, marital status, ancestry, sexual orientation, gender identity and gender expression, genetic information, citizenship or any other personal characteristics protected by law. #J-18808-Ljbffr