Cyber Security Engineer

Company:  San Francisco Bay Area Rapid Transit District (BART)
Location: Orlando
Closing Date: 08/11/2024
Salary: £100 - £125 Per Annum
Hours: Full Time
Type: Permanent
Job Requirements / Description

Initial screening of applications received will begin on October 28, 2024.

Pay Rate

Non-Represented Pay Band E07

Annual Salary: $132,346.00 (Minimum) - $200,505.00 (Maximum)

The negotiable starting salary offer will be between $132,346.00/annually - $170,920.10/annually, commensurate with education and experience.

Reports To

Manager of Cyber Security

Current Assignment

This job announcement will be used to establish a pool of eligible candidates for vacancies that may occur within the next twelve (12) months.

BART’s Cybersecurity Division in the Office of the Chief Information Officer (OCIO) is looking for a highly experienced Cyber Security Engineer that wants to focus their career working with cutting edge network security tools. This department works in a collaborative environment with a strong focus on the strategic deployment of security controls and support for several diverse stakeholders. A major emphasis for the division is ensuring that our Cyber Security Engineers get the training, support, and certifications they need to better combat the evolving threat landscape.

Minimum Qualifications:

  • Have network security experience with an understanding of routing, switching and next generation firewalls.
  • Experience maintaining and supporting on-premise and cloud based Active Directory.

Selection Process

Initial screening of resumes received will begin on October 28, 2024. Applications will be screened to assure that minimum qualifications are met. Those applicants who meet minimum qualifications will then be referred to the hiring department for the completion of further selection processes.

Qualified applications received up to the initial screening date may be enrolled into the selection process. If no successful candidate(s) are identified, applications received past the initial screening date will then be reviewed for consideration. The selection process for this position may include a skills/performance demonstration, a written examination, and a panel and/or individual interview.

The successful candidate must have an employment history demonstrating reliability and dependability; provide copies of certificates, diplomas or other documents as required by law, including those establishing his/her right to work in the U. S; pass a pre-employment medical examination which may include a drug and alcohol screen, and which is specific to the essential job functions and requirements. Pre-employment processing will also include a background check.

Application Process

Current employees are strongly encouraged to apply online, either at or on EmployeeConnect. All applicants are asked to complete the application in full, indicating dates of employment, all positions held, hours worked, and a full description of duties. Online applicants are invited to electronically attach a resume to the application form to provide supplemental information, but should not consider the resume a substitute for the application form itself.

Applications must be complete by the closing date and time listed on the job announcement.

When you have successfully applied for this position you will receive an auto reply e-mail acknowledging that your application was received for this position. Please retain a copy of the e-mail for your records. If you receive an auto reply that does not specifically reference this position, please email Employment Help at for assistance.

  1. Under general supervision develops and implements the design of a complex unified cyber security program.
  2. Monitors security threats the District’s Unified Cyber Security Program. Ensures all endpoints have security software installed to protect against malware, viruses and ransomware.
  3. Provides highly technical security expertise and support related to alarms and monitoring devices that participate in District Security Objectives (DSO’s); Oversees and resolves business and support issues related to RAILS.
  4. Manages the various security projects including performing impact diagnostics on existing technology projects; provides cybersecurity guidance in the planning, architectural design and implementations of all systems.
  5. Provides secure remote solutions; provides multifactor authentication support.
  6. Evaluates business and technical security requirements; driving the selection, prototyping and implementation of applications and technical solutions; and effectively communicating inherent security risks to non-technical users and administrators.
  7. Educates and trains BART users on cybersecurity attacks and threats.
  8. Implements and tunes algorithms used to monitor both machine and human behavior.
  9. Develops and maintains inventory lists generated from advanced forensic investigation.
  10. Coordinates and implements enterprise design and remediation solutions based on gathered statistics.
  11. Collects automated progress metrics for all technology projects.
  12. Coordinates with law enforcement to maintain District security.
  13. Responsible for analyzing and testing attack and penetration of Internet infrastructure and Web-based applications utilizing manual and automated tools.
  14. Performs other duties as assigned within the scope of the qualifications.

Education: A Bachelor’s Degree in Computer Science, Information Security or related field.

Experience: Three (3) years of (full-time equivalent) verifiable professional experience in an Information Security Operations and/or design role, which must have included Cyber Intelligence, Cyber Defense, Digital Surveillance, or related experience.

Substitution: Additional professional experience as outlined above may be substituted for the education on a year-for-year basis. A college degree and information security related certification(s) and detailed hands-on network experience developing enterprise cyber security programs is highly preferred.

Other Requirements: Professional Certification such as CISSP, CISM, GSEC, GIAC, CEH, CPT are strongly preferred.

Knowledge of:

  • Network security design.
  • Transportation and Rail-specific security concerns. (SCADA, CBTC)
  • Advanced Threat Protection and Sandboxing solutions.
  • Detection/Prevention Systems: Anomaly-based, signature-based, and host-based.
  • Cybersecurity Standards, Practices & Solutions.
  • Related federal, state and local laws, codes and regulations.
  • Information security tools such as Nessus, Kismet, Airsnort, NMAP, Ethereal, WebInspect, Nikto or similar.
  • Information Systems and Information Security which address organizational design, structure and administration practices, system development and maintenance procedures, system software and hardware controls, security and access controls, computer operations, environmental protection and detection, and backup and recovery procedures.
  • Information system architecture and security controls, such as firewall and border router configurations, operating systems configurations, wireless architectures, databases, specialized appliances and information security policies and procedures.
  • Modern 911 Dispatch Technology including PSAP 911, NG9-1-1, CLETS and related Relational Database Administration (DBA) in Oracle, SQL, or similar data systems.
  • Technical knowledge of Unix, Linux and Windows operating systems.
  • Technical knowledge of IDS/IPS, vulnerability assessment tools, remote access methodologies, log management tools, firewalls, cryptography and digital certificates.
  • Surveillance, Access Control and related Alarm Systems.
  • Methods and techniques of networking protocols and remote access.
  • Cyber security issues and impact, and can readily identify potential threats.
  • Unix shell prowess, scripting languages, regular expressions.
  • Programming languages such as Java, C, C++, C#, and .NET.
  • Industry Standards, eg, ISO 17799/27001, NIST Publications and other Industry Related Security Standards.

Skill in:

  • Performing manual techniques to exploit vulnerabilities in the OWASP top 10 including but not limited to cross-site Scripting, SQL injections, session hijacking and buffer overflows to obtain controlled access to target systems.
  • Performing network traffic forensic analysis, utilizing packet capturing software, to isolate malicious network behavior, inappropriate network use or identification of insecure network protocols.
  • TCP/IP Networking.
  • Managing interfaces between disparate alarm systems.
  • Monitoring Automatic Vehicle Location (AVL) equipment and statistics.
  • Analyzing and testing attack and penetration of Internet infrastructure and Web-based applications utilizing manual and automated tools.
  • Preparing clear and concise reports and documentation.
  • Executing troubleshooting tasks.
  • Application source code security review.
  • Communicating clearly and concisely, both orally and in writing.
  • Establishing and maintaining effective working relationships with those contacted in the course of work.
  • Creating training materials.
  • Training employees to maintain situational awareness.
  • Coordinating with District management, local law enforcement and federal law enforcement.
#J-18808-Ljbffr
Apply Now
Share this job
San Francisco Bay Area Rapid Transit District (BART)
An error has occurred. This application may no longer respond until reloaded. Reload 🗙