at Metra in Chicago, Illinois, United States
Job Description
Date Posted:
7/23/2024
Posting End Date:
8/5/2024
Location:
98-Non-Contract
City:
Chicago
State:
IL
Country:
United States of America
Category:
Professionals
FLSA Status:
Exempt
Salary Mid Point:
$148,751.00
Salary Range:
$119,001.00
-
$178,502.00
Description
Metra is one of the largest and most complex commuter rail systems in North America, serving Cook, DuPage, Will, Lake, Kane, and McHenry Counties. The agency is linking communities in Northeastern Illinois by providing safe, reliable, and efficient commuter service.
Information Technology is divided into four sections: Enterprise Applications, Railroad Applications, Network Services and Systems Development. The Enterprise Applications team is charged with implementing and supporting applications used enterprise-wide at Metra, such as the new Enterprise Resource Planning (ERP) system and HR, Payroll and Timekeeping systems.
The Railroad Applications team is charged with implementing and supporting applications used to support Metra's Transportation, Mechanical, and Engineering functions.
The Network Services section has two distinct groups: IT Support and Network Operations. IT Support maintains and supports the agency's personal computers as well as computer aided design (CAD) systems for the Engineering Department and point-of-sale terminals.
Network Operations builds and maintains the servers and storage that are replacing the agency's mainframe, the data network, e-mail system and disaster recovery capabilities.
Systems Development develops, maintains, and supports all application systems built in-house, across all business functions.
Reporting to the Chief Information Officer, the Senior Manager, Security Operations Center will be responsible for building and managing a Security Operations Center (SOC) that deploys technologies, and defines and implements business processes to help ensure Metra's cybersecurity health spanning both Information Technology and Operational Technology environments.
The primary duties include:
Manage the deployment, ongoing tuning/configuration and operation of managed detection and response (MDR) tools/services, endpoint detection solutions, software logging/scanning tools and other solutions operated by SOC resources to ensure Metra's cybersecurity health.
Oversee the assessment and remediation of all security events, incidents, and/or vulnerabilities discovered by the SOC team.
Collaborate with other Metra departments and IT teams to set expectations, develop strategies and tactical plans for mitigating security vulnerabilities, build consensus for remediation adoption, and facilitate execution.
Create, refine, test, and enforce cybersecurity policies and procedures that identify gaps and remediation plans for securing services, applications, and data; create and maintain a disaster recovery plan across all departments on responding to disruptive events and resuming business operations; and implement training to educate the workforce on recognizing, responding to, and reporting cybersecurity threats.
Stay updated on the latest cybersecurity threats, vulnerabilities, and industry best practices ensuring compliance with federal regulations; provide expertise and guidance to other team members on security data analysis techniques and methodologies; and collaborate with cross-functional teams to enhance security data analysis capabilities.
Recommend strategies to reduce security risks across Metra's cloud services, on-premises infrastructure, servers, network devices, and user endpoints; and create and disseminated communications to ensure employee awareness.
Review and update Metra's Incident Response Plan for accuracy, completeness, and changes; communicate plan instructions and coordinate exercises to ensure participants are well-versed in their roles and responsibilities; and take ownership of executing the Plan in the event of an incident.
Promote safe work practices and maintain and foster a safe work environment.
Candidates can expect salary offers that range from the minimum to the mid-point of the salary range. Metra provides full pay ranges, so candidate can consider their growth potential.
Metra is a railroad employer subject to the provisions of the Railroad Retirement Tax Act, not the Social Security Administration.
Requirements
1. Bachelor's degree in Information Technology, Engineering, Management Information Systems or related degree OR in lieu of degree must have four years of experience in IT networking or cybersecurity.
2. In... For full info follow application link.
Metra is an Equal Opportunity/ Affirmative Action Employer. It is our policy to fill vacant positions with qualified candidates without regard to race, color, sex, religion, national origin, age, gender identity, disability or any protected categories, assuming an individual can perform the essential functions of the job with or without accommodation.
