M

Cybersecurity Associate

Metra
On-site
Chicago, Illinois, United States



 

The final salary will depend on the candidate's qualifications. Those with 8 years or more of required experience can expect offers up to the midpoint of the salary range. Metra provides full pay ranges so candidates can consider their growth potential.

 

Metra is one of the largest and most complex commuter rail systems in North America, serving Cook, DuPage, Will, Lake, Kane, and McHenry Counties. The agency is linking communities in Northeastern Illinois by providing safe, reliable, and efficient commuter service.

 

Information Technology is divided into four sections: Enterprise Applications, Railroad Applications, Network Services and Systems Development. The Enterprise Applications team is charged with implementing and supporting applications used enterprise-wide at Metra, such as the new Enterprise Resource Planning (ERP) system and HR, Payroll and Timekeeping systems. The Railroad Applications team is charged with implementing and supporting applications used to support Metra’s Transportation, Mechanical, and Engineering functions. The Network Services section has two distinct groups: IT Support and Network Operations. IT Support maintains and supports the agency’s personal computers as well as computer aided design (CAD) systems for the Engineering Department and point-of-sale terminals. Network Operations builds and maintains the servers and storage that are replacing the agency’s mainframe, the data network, e-mail system and disaster recovery capabilities. Systems Development develops, maintains, and supports all application systems built in-house, across all business functions. 

 

Reporting to the Senior Manager, Cyber Security Operations, the Cyber Security Associate will be primarily responsible for monitoring aggregated logs for threats and maintaining cyber security systems; participating in evaluating, testing, and recommending cyber security controls and procedures; and creating and administrating cyber security education.

 

The primary duties include: Monitor aggregated security events and run scans to detect vulnerabilities and malicious activity; document and share findings with network/system owners; report incidents in compliance with regulatory requirements; and monitor containment and remediation efforts ensuring proper handling and timely resolution. Perform in-depth analysis of security events or vulnerabilities to identify patterns and trends, remediate known threats and vulnerabilities, and report incidents including unauthorized access, discovery of malicious software, denial of service, and incidents that could result in systems disruptions. Develop, review, and update documentation in run books, alert logic, policies, and procedures. Produce actionable intelligence in the form of reports, cases, notifications, and briefings to build effective defense mechanisms, and mitigate risks and defend against future attacks. Administer and contribute to organizational cybersecurity awareness and training efforts. Promote safe work practices and maintain and foster a safe work environment. Perform other related duties as assigned to meet the ongoing needs of the organization.

 

Metra is a railroad employer subject to the provisions of the Railroad Retirement Tax Act, not the Social Security Administration.

 






  1. Bachelors in Computer Science, Information Systems, Engineering or related equivalent is required. 
  2. In addition to #1 above, must have a minimum of one year of experience working with cyber security tools such as vulnerability, asset management, SEIM, and endpoint detection platforms; cyber education tools; and cyber awareness campaigns.
  3. Knowledge of security event monitoring, analysis, and triage; cyber related tools such as Tenable, Intune MDM,  Endpoint EDR/XDR/MDR, firewall management, asset management and MDR/SIEM tools, services, and processes.      
  4. Knowledge of Windows/Linux OS, PCs, servers, firewalls, TCP/IP and protocols, network  administration tools, intrusion detection systems, anti-virus software, active directory, data encryption, and other industry-standard techniques and practices.
  5. Good organizational, analytical, and critical thinking skills to assess and make recommendations on cybersecurity controls.
  6. Strong problem-solving skills including the ability to balance both the needs of the business with potential risk.
  7. Strong verbal and written communication skills to effectively engage with vendors and staff at all levels of the organization.
  8. Ability to prioritize and execute tasks in a high-pressure environment. 
  9. Ability to collaborate with Metra IT, business users, outside vendors and other information technology team members to deliver software solutions. 
  10. Must possess and maintain a valid driver's license.
  11. Must be able to operate a vehicle.
  12. Must be willing to travel within Metra’s 6-county region.
  13. Must be available to work flexible hours in the early morning, late afternoon, evenings, or weekends.
  14. Must be available on-call 24-hours/day, 7 days/week, 365 days/year, including weekends and holidays.

 

Preferred:

  1. Master's degree
  2. CEH 
  3. CISM 
  4. CISSP     
  5. CompTIA Security+ 

 

Metra employees in an active review period under the current discipline policy or who have documented attendance or performance issues will not be considered and/or selected for this position.

 

Please note: Regardless of any state laws that legalize marijuana, Metra prohibits applicants and employees’ use or possession of marijuana (or marijuana paraphernalia), or having detectable amounts of marijuana in their bodies, including synthetic and/or non-synthetic substances such as THC for any reason for preemployment screening purposes, while on duty, subject to duty, on Metra property, or in Metra work equipment and vehicles.

 

Metra is committed to ensuring that our career website and recruiting process are accessible to all individuals. If you encounter difficulties or limitations in using or accessing our online application, or if you require reasonable accommodations to complete this application, participate in interviews, complete any pre-employment testing, or engage in any other aspect of the employee selection process, please direct your inquiries to RAC@Metrarr.com.

 

Metra is an Equal Opportunity/Affirmative Action Employer. It is our policy to fill vacant positions with qualified candidates without regard to race, color, sex, religion, national origin, age, gender identity, disability, or any protected categories, assuming an individual can perform the essential functions of the job with or without accommodation.