Cybersecurity Engineer

SALARY: $88,129.60 - $103,688.00

LOCATION: 33 N. High St. Columbus, OH 43215

BENEFITS:

Medical, Vision, Dental, Supplemental and Life Insurance

Paid Parental Leave

Employee Discounts

COTA Bus Pass

Wellness Initiatives

On-Site Chair Massage

On-Site Health Coach

Tuition Reimbursement

Student Loan Repayment Program

Public Pension through OPERS & Ohio Deferred Compensation

POSITION SUMMARY:

The Cybersecurity Engineer provides expertise in multiple areas of information security, including security design and implementation of security-related technology. Leads technical security implementation and operations, including DMZ architectures, intrusion detection, firewalls and remote access, antivirus, SEIM and other security systems.

Performs other duties in alignment with the COTA Strategic Plan and in support of the organization's vision to Move Every Life Forward.

ESSENTIAL JOB FUNCTIONS:

Proactively protects the integrity, confidentiality, and availability of information in the custody of, or processed by, the company, providing reports to superiors regarding the effectiveness of network and data security and making recommendations for the adoption of new procedures and technologies as required;

Ensures that access control, incident response, and risk management requirements of the organization are properly addressed;

Works across multiple groups in the organization while communicating effectively to help drive security into the company;

Effectively utilize the architecture and platform-specific security tools to perform vulnerability analysis, monitoring, intrusion detection, incident response analysis, and risk analysis;

Performs vulnerability assessment/penetration testing and reporting including recommended remediation actions;

Ensures that disaster recovery and business continuity plans are in place and tested;

Support investigation and reporting breaches of security controls, and implementing responsive measures, when necessary, to ensure continued security compliance;

Maintains a current understanding the IT threat landscape for the industry and translate that knowledge to identification of risks and actionable plans to protect the business;

Conducts security assessments on potential technology solutions and implementations in support of new initiatives. Monitors the training, design, and project implementation for all COTA staff and appropriate personnel to ensure secure use of technology, and;

Manages the implementation of corporate policies, programs, and procedures to cost-effectively protect information systems assets from intentional or inadvertent modification, disclosure or destruction;

Develops, maintains, publishes, and enforces corporate information security standards and guidelines encompassing data and intellectual security;

Ensures compliance with local, state and federal guidelines regarding emergency and security;

Leads risk management assessments and prioritizes findings with Leadership. Proactively protects the integrity, confidentiality, and availability of information in the custody of, or processed by, the company, providing reports to superiors regarding the effectiveness of network and data security and making recommendations for the adoption of new procedures and technologies as required;

Manages and coordinates compliance for required industry audits by helping to identify issues, anticipate and solve problems, and provide customer service to internal and external customers based on their ability to prioritize and initiate solutions;

Manages the research on potential technology solutions and implementations in support of new initiatives. Monitors the training, design, and project implementation for all COTA staff and appropriate personnel to ensure maximum use of technology;

Manages the development, implementation, and monitoring of effective information system security, including the protection of information assets-- physical security and data security (e.g. hardware, software, and associated data) from unauthorized use and/or intentional disclosure, modification, or destruction. The information systems should be designed to ensure the integrity, confidentiality, and accessibility, where authorized, to the organization's information assets. Disaster recovery planning should also be developed and maintained; and,

Creates and executes IT security program to manage risk exposure.

Regular, predictable and punctual attendance required; and

Performs other duties as assigned.

MINIMUM EDUCATION & EXPERIENCE REQUIRED:

Requires a Bachelor's Degree in computer science, business administration and five (5) years of experience in multiple Information Security domains including security engineering, network security, identity and access management or security operations or an equivalent combination of education and experience in business or public administration.

Certified in one or more of the following: CISSP, CISM, CEH, Security+, SANS GIAC-GSEC.

CISSP certification preferred.

COTA is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. All employment decisions are based on job needs, job requirements and individual qualifications, without regard to race, color, religion or belief, sex, sexual orientation, age, genetic information, gender identity, national origin, veteran or disability status