Founded in 1921, the Port Authority of New York and New Jersey builds, operates, and maintains many of the most important transportation and trade infrastructure assets in the country. The agency's network of aviation, ground, rail, and seaport facilities is among the busiest in the country, supports more than 550,000 regional jobs, and generates more than $23 billion in annual wages and $80 billion in annual economic activity. The Port Authority also owns and manages the 16-acre World Trade Center site, where the 1,776-foot-tall One World Trade Center is now the tallest skyscraper in the Western Hemisphere.
Reporting to the Manager, Cyber Security Programs, the successful candidate will be responsible for assisting the Manager and carrying out designated tasks in support of the development and implementation of a comprehensive agency-wide cyber security program. Working in partnership with line and staff departments such as the Technology Department, Audit, Enterprise Risk Management, and others, the incumbent will be responsible for various aspects of the planning, implementation, and operation of cyber security policies and programs, including corporate-level security initiatives, across the agency. The incumbent will also be responsible for specific technical and measurements aspects under his/her direct control.
Responsibilities include but are not limited to the following:
* Perform and or support the evolution of existing and development of new policies and procedures based on the NIST 800 series standards to increase the Agency's Cybersecurity posture, including the support of a subset of the following areas of responsibility: - Cyber/Information Technology Security Representatives Program - Cybersecurity Engineering and Integration - Cybersecurity Testing and Vulnerability - Cybersecurity Network Defense & Investigation - Cybersecurity/Information Policy & Training - Data Protection Program and Measures - Information Security Reviews * Perform and or support a subset of planning, deployment, and operational responsibilities as assigned and noted below: - Identification and Authentication - Access Control - Vulnerability, Audit, and Accountability - Personal Security - System & Communication Protection - Security & Information Integrity - Media Protection - Configuration Management - Contingency Planning - Maintenance - Security Operations Center - Incident Response - Physical & Environmental - Risk Assessments - Certification, Accreditation, and Security Assessments - System and Service Acquisition - IT Asset Management - Awareness and Training - Program Management - Policy & Procedures * Demonstrated excellent ability to write concise and informative reports, presentations, process, standards, guidelines, metric, and be able to demonstrate written/ oral summaries and presentations to executive leadership. Be able to coordinate and conduct meetings at all levels,
* Execute and monitor areas of responsibility with in the Cybersecurity domain as well as ensure Agency line and staff department understanding, processes, and compliance. * Assess the Cybersecurity needs of each of the PA's departments / facilities against policies and procedures and as needed develop Cybersecurity recommendations to enhanced programs, processes, and procedures related to policy, deployments, and operations, including managing the development, preparation, and updating of security documentation, implement recommendations for improvement, monitor corrective actions. * Standardize security deployment and operating procedures for all line and staff departments as assigned including incident reporting procedures, through the development of constant updated documentation and staff training. * Perform and or support the day-to-day operation of deployed Cybersecurity technology solutions and ensure all systems are maintained in working condition at all times, which includes remedial maintenance as required. * Manage the delivery of contracts and services as assigned. * Develop and report on comprehensive Cybersecurity performance metrics related to line and staff departments, including personnel performance and information technology system performance. * Serve as support liaison for cybersecurity matters to external entities such as the Department of Homeland Security, NY and NJ State Homeland Security offices, and others.
JOB REQUIREMENTS: Candidates must present the following qualifications to be considered eligible for this position: Bachelor's Degree in Computer Science, Electrical or Electronic Engineering, Information Technology or Information Systems Management, Security Technology Management, or a related discipline from an accredited college or university. * A minimum of five (5) years of progressively responsible experience in the information technology security or Cybersecurity field with either NIST 800, ISO 27001, or SANS Top 20 Cybersecurity series of standards documents. * Must possess a valid Driver's License * Must be willing and able to respond to facilities and/or the Cybersecurity SOC during non-business hours, as required * The selected candidate will be required to undergo a thorough background investigation and may be required to obtain security clearance at the Secret Level for this security-sensitive position. .
Ideal candidates will present the following profile: Advanced degree and/or certifications in cyber security, IT security, and/or general security * Hands-on experience performing and/or supervising some day-to-day security planning, deployment, and or operations of Cybersecurity with the NYS, NJS, and/or their policies. * Experience with secure system implementation and operations , network security, and secure infrastructure. * Demonstrated experience with and understanding of Cybersecurity assessment methodologies and performance of risk, threat, and vulnerability assessments. * Knowledge of the principles, methods, and tools for developing, scheduling, coordinating, and managing initiatives and resources. * Demonstrated ability to write concise and informative reports (policy, process, standards, guidelines, metric, etc.) and provide written and oral summaries and presentations to executive leadership. * Proven ability to identify problems, assess the accuracy and relevance of information, use sound judgment to generate and evaluate alternatives, develop consensus, and make recommendations. * Proficiency with the Microsoft Office Suite.
The Port Authority of New York and New Jersey offers a competitive salary, an outstanding benefits package and a professional environment that supports development and recognizes achievement.
The Port Authority of New York & New Jersey/Port Authority Trans-Hudson (PATH) is an Equal Opportunity Employer.