JOB TITLE: Cyber Security Engineer
FULL-TIME POSITION
Position Overview: The Cyber Security Engineer reports to the Senior Manager, IT Infrastructure & Cyber Security and is responsible for overseeing the security and integrity of the organization's critical IT & Digital services as well as managing the enterprise IT security solutions with our outsourced business partners. Another core function is establishing and maintaining an enterprise cyber security posture through policy, architecture and applying security controls. Secondary activities will include recommending cyber security solutions, end-to-end oversight of vulnerability audits and remediation of common vulnerabilities and exposures (CVEs).
The Cyber Security Engineer will manage a comprehensive Cyber Security program that continually improves and protects the organization's cyber posture. The position is expected to interface with peers in the IT & Digital department, the Safety & Security department, other departments, teams, and outsourced stakeholders to implement and maintain robust cyber security controls and measures.
All JFKIAT employees must commit to supporting our corporate values to Create an Impact, Be Accountable, and Work as a Team.
FLSA STATUS: EXEMPT
Salary Range: $130,000 - $140,000
ESSENTIAL DUTIES AND RESPONSIBILITIES:
Strategy & Planning
o Creates and maintains the enterprise’s security architecture design, security documents (policies, standards, baselines, guidelines, and procedures), and IT Disaster Recovery Plan.
o Manages the implementation of the cyber security roadmap.
o Manages security assessments, identifies gaps in existing security architecture, and recommends changes or improvements.
o Provide input to the development of the IT & Digital budget for cyber security solutions.
o Assists with the enterprise’s security awareness training program.
Deployment
o Maintains up-to-date knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
o Selects and acquires additional security solutions or enhancements to existing security solutions to improve overall enterprise security as per the enterprise’s existing procurement processes.
o Oversees the deployment, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise’s security documents specifically.
o Provides input on cyber security requirements to be included in request for proposals (RFPs), statements of work (SOWs), and other procurement documents.
o Contributes to projects by providing cyber security subject matter expertise and technical guidance.
Operational Management
o Ensures the confidentiality, integrity and availability of the data residing on or transmitted to/from/through enterprise workstations, servers and other systems and in databases and other data repositories.
o Ensures the enforcement of enterprise cyber security standards & documents.
o Supervises all investigations into problematic activity and provide on-going communication with senior management of IT & Digital.
o Supervises the design and execution of vulnerability assessments, penetration tests and security audits.
o Assists with regular security awareness training for all employees to ensure consistently high levels of compliance with enterprise security documents.
o Manages & coordinates a Patch Management program to reduce system and application vulnerabilities.
o Engages in ongoing communications with peers in the IT & Digital and Safety & Security departments as well as the various outsourced managed services business partners to ensure enterprise wide understanding of security goals, to solicit feedback and to foster co-operation.
General
o Manages contracts including defining scope, setting SLAs, and defining KPIs.
o Manages projects to completion in accordance with PMI methodology.
o Coordinates IT incidents, problems and change management with stakeholders.
o Builds and maintains relationships with key technology providers to leverage the external knowledge.
o Provides technical expertise and knowledge to other colleagues within the department.
o Fosters good communications and relationships with all JFKIAT staff and stakeholders.
o Manages sub-contractor staff to ensure service delivery requirements are met and terminal standards are followed.
o Other duties as required and assigned by Senior Manager, IT Infrastructure & Cyber Security.
MINIMUM QUALIFICATIONS
EDUCATION, TRAINING, AND EXPERIENCE
o Bachelor’s degree in computer science, engineering or in related field
o 5 years of working experience in Information Security or Cyber Security functions
o CISSP, CISA, CISM, or other relevant security related designation(s) are preferred
Special Requirements
Must be able to pass a criminal background check and obtain and maintain federally mandated security clearances required to work at an airport.
PHYSICAL CONDITIONS/WORK ENVIRONMENT
The Americans with Disabilities Act prohibits discrimination against a qualified individual with a disability. To be qualified for this position an individual must meet the following standards and/or be able to perform the essential functions and activities. The physical activities for this position involve: reaching, pushing, and sitting. While performing the duties of this job, the employee is regularly required to travel throughout the terminal. An individual in this position may be required to lift and/or move more than 15 pounds. The essential sensory and communicative activities include: feeling, speaking, hearing, and vision abilities to include close vision, distance vision, color vision and depth perception.
KNOWLEDGE, SKILLS, AND ABILITIES
KNOWLEDGE
o Strong IT technical background, in-depth knowledge of cyber security principles and practices, and a proactive approach to identifying and mitigating potential risks.
o Experience in identifying gaps in existing security architectures.
o Experience in designing security architectures to mitigate threats.
o Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security methodologies, network access, identity, and access management (e.g. PKI, SAML).
o Knowledge of network equipment including routers, switches, servers, and related hardware.
o Knowledge of remote access technology concepts and application firewall concepts and functions (e.g. DLP scanning, SSL security).
o Knowledge of business continuity and disaster recovery operation plans.
o Knowledge of airport/aviation solutions & systems is preferred.
o Knowledge of OT Security and Managed Detection & Response (MDR) platforms is preferred.
SKILLS
o Can analyze and synthesize security information from multiple sources to develop and communicate complex information orally and in written format.
o Demonstrated analytical mindset with ability to troubleshoot and creatively solve business and technical.
o Clear verbal and written communication; demonstrated ability to collaborate with peers from a variety of disciplines.
o Active learning: Understand the implications of new information for both current and future problem-solving and decision-making.
o Active listening: Give full attention to what other people are saying, take time to understand the points being made, ask questions as appropriate, and not interrupt at inappropriate times.
o Time management: Manage one’s own time or the time of others.
o Coordination with others: Adjust actions in relation to others' actions.
o Judgement and decision making: Consider the relative costs and benefits of potential actions to choose the most appropriate one.
ABILITIES
o Ability to meet development scope, schedule and budget commitments.
o Ability to develop and maintain strong, effective relationships across the organization and solution partners.
o Ability to understand business requirements and translate into functional and technical requirements.
o Ability to achieve outcomes through partnerships.
o Ability to support the company through the enablement of technology and showing initiative and flexibility.
o Ability to effectively communicate verbally and in written form with business units and stakeholders to proactively.
o anticipate, prioritize and/or solve issues with a customer serviced focused culture.
o Comprehend oral information: Listen to and understand information and ideas presented through spoken words and sentences.
o Speak: Communicate information and ideas in speaking so others will understand.
o Comprehend written information: Read and understand information and ideas presented in writing.
o Write: Communicate information and ideas in writing so others will understand.
o Recognize problems: Tell when something is wrong or is likely to go wrong.
o Reason to solve problems: Apply general rules to specific problems to produce answers that make sense.
o Make sense of information: Quickly make sense of, combine, and organize information into meaningful patterns.
All JFKIAT employees must commit to supporting our 4 strategic pillars: