Cyber Security Engineer

Marketing Statement

Ride BART to a satisfying career that lets you both: 1) make a difference to Bay Area residents, and 2) enjoy excellent pay, benefits, and employment stability. BART is looking for people who like to be challenged, work in a fast-paced environment, and have a passion for connecting riders to work, school and other places they need to go. BART offers a competitive salary, comprehensive health benefits, paid time off, and the CalPERS retirement program.

Job Summary

Initial screening of applications received will begin on October 28, 2024.

Pay Rate

Non-Represented Pay Band E07

Annual Salary: $132,346.00 (Minimum) - $200,505.00 (Maximum)

The negotiable starting salary offer will be between $132,346.00/annually - $170,920.10/annually, commensurate with education and experience.

Reports To

Manager of Cyber Security

Current Assignment

This job announcement will be used to establish a pool of eligible candidates for vacancies that may occur within the next twelve (12) months.

BART's Cybersecurity Division in the Office of the Chief Information Officer (OCIO) is looking for a highly experienced Cyber Security Engineer that wants to focus their career working with cutting edge network security tools. This department works in a collaborative environment with a strong focus on the strategic deployment of security controls and support for several diverse stakeholders. A major emphasis for the division is ensuring that our Cyber Security Engineers get the training, support, and certifications they need to better combat the evolving threat landscape.

Beyond the minimum qualifications, the ideal candidate would:

• Have network security experience with an understanding of routing, switching and next generation firewalls.
• Experience maintaining and supporting on-premise and cloud based Active Directory.

Selection Process

Initial screening of resumes received will begin on October 28, 2024.

Applications will be screened to assure that minimum qualifications are met. Those applicants who meet minimum qualifications will then be referred to the hiring department for the completion of further selection processes. Qualified applications received up to the initial screening date may be enrolled into the selection process. If no successful candidate(s) are identified, applications received past the initial screening date will then be reviewed for consideration. The selection process for this position may include a skills/performance demonstration, a written examination, and a panel and/or individual interview.

The successful candidate must have an employment history demonstrating reliability and dependability; provide copies of certificates, diplomas or other documents as required by law, including those establishing his/her right to work in the U.S; pass a pre-employment medical examination which may include a drug and alcohol screen, and which is specific to the essential job functions and requirements. Pre-employment processing will also include a background check. (Does not apply to current full-time District employees unless specific job requires additional evaluations).

Application Process

Current employees are strongly encouraged to apply online, either at or on EmployeeConnect.

All applicants are asked to complete the application in full, indicating dates of employment, all positions held, hours worked, and a full description of duties. Online applicants are invited to electronically attach a resume to the application form to provide supplemental information, but should not consider the resume a substitute for the application form itself.

Applications must be complete by the closing date and time listed on the job announcement.

When you have successfully applied for this position you will receive an auto reply e-mail acknowledging that your application was received for this position. Please retain a copy of the e-mail for your records. If you receive an auto reply that does not specifically reference this position, please email Employment Help at for assistance.

Examples of Duties

1. Under general supervision develops and implements the design of a complex unified cyber security program.
2. Monitors security threats the District's Unified Cyber Security Program. Ensures all endpoints have security software installed to protect against malware, viruses and ransomware.
3. Provides highly technical security expertise and support related to alarms and monitoring devices that participate in District Security Objectives (DSO's); Oversees and resolves business and support issues related to RAILS.
4. Manages the various security projects including performing impact diagnostics on existing technology projects; provides cybersecurity guidance in the planning, architectural design and implementations of all systems.
5. Provides secure remote solutions; provides multifactor authentication support.
6. Evaluates business and technical security requirements; driving the selection, prototyping and implementation of applications and technical solutions; and effectively communicating inherent security risks to non-technical users and administrators.
7. Educates and trains BART users on cybersecurity attacks and threats.
8. Implements and tunes algorithms used to monitor both machine and human behavior.
9. Develops and maintains inventory lists generated from advanced forensic investigation.
10. Coordinates and implements enterprise design and remediation solutions based on gathered statistics.
11. Collects automated progress metrics for all technology projects.
12. Coordinates with law enforcement to maintain District security.
13. Responsible for analyzing and testing attack and penetration of Internet infrastructure and Web-based applications utilizing manual and automated tools.
14. Performs other duties as assigned within the scope of the qualifications.

Minimum Qualifications

Education:
A Bachelor's Degree in Computer Science, Information Security or related field.

Experience:
Three (3) years of (full-time equivalent) verifiable professional experience in an Information Security Operations and/or design role, which must have included Cyber Intelligence, Cyber Defense, Digital Surveillance, or related experience.

Substitution:
Additional professional experience as outlined above may be substituted for the education on a year-for-year basis. A college degree and information security related certification(s) and detailed hands-on network experience developing enterprise cyber security programs is highly preferred.

Other Requirements:
Professional Certification such as CISSP, CISM, GSEC, GIAC, CEH, CPT are strongly preferred.

Knowledge and Skills

Knowledge of:

• Network security design.
• Transportation and Rail-specific security concerns. (SCADA, CBTC)
• Advanced Threat Protection and Sandboxing solutions.
• Detection/Prevention Systems: Anomaly-based, signature-based, and host-based.
• Cybersecurity Standards, Practices & Solutions.
• Related federal, state and local laws, codes and regulations.
• Information security tools such as Nessus, Kismet, Airsnort, NMAP, Ethereal, WebInspect, Nikto or similar.
• Information Systems and Information Security which address organizational design, structure and administration practices, system development and maintenance procedures, system software and hardware controls, security and access controls, computer operations, environmental protection and detection, and backup and recovery procedures.
• Information system architecture and security controls, such as firewall and border router configurations, operating systems configurations, wireless architectures, databases, specialized appliances and information security policies and procedures.
• Modern 911 Dispatch Technology including PSAP 911, NG9-1-1, CLETS and related Relational Database Administration (DBA) in Oracle, SQL, or similar data systems.
• Technical knowledge of Unix, Linux and Windows operating systems.
• Technical knowledge of IDS/IPS, vulnerability assessment tools, remote access methodologies, log management tools, firewalls, cryptography and digital certificates.
• Surveillance, Access Control and related Alarm Systems.
• Methods and techniques of networking protocols and remote access.
• Cyber security issues and impact, and can readily identify potential threats.
• Unix shell prowess, scripting languages, regular expressions.
• Programming languages such as Java, C, C++, C#, and .NET.
• Industry Standards, eg, ISO 17799/27001, NIST Publications and other Industry Related Security Standards.

Skill in:

• Performing manual techniques to exploit vulnerabilities in the OWASP top 10 including but not limited to cross-site scripting, SQL injections, session hi-jacking and buffer overflows to obtain controlled access to target systems.
• Performing network traffic forensic analysis, utilizing packet capturing software, to isolate malicious network behavior, inappropriate network use or identification of insecure network protocols.
• TCP/IP Networking.
• Managing interfaces between disparate alarm systems.
• Monitoring Automatic Vehicle Location (AVL) equipment and statistics.
• Analyzing and testing attack and penetration of Internet infrastructure and Web-based applications utilizing manual and automated tools.
• Preparing clear and concise reports and documentation.
• Executing troubleshooting tasks.
• Application source code security review.
• Communicating clearly and concisely, both orally and in writing.
• Establishing and maintaining effective working relationships with those contacted in the course of work.
• Creating training materials.
• Training employees to maintain situational awareness.
• Coordinating with District management, local law enforcement and federal law enforcement.

Equal Employment Opportunity

The San Francisco Bay Area Rapid Transit District is an equal opportunity employer. Applicants shall not be discriminated against because of race, color, sex, sexual orientation, gender identity, gender expression, age (40 and above), religion, national origin (including language use restrictions), disability (mental and physical, including HIV and AIDS), ancestry, marital status, military status, veteran status, medical condition (cancer/genetic characteristics and information), or any protected category prohibited by local, state or federal laws.

The BART Human Resources Department will make reasonable efforts in the examination process to accommodate persons with disabilities or for religious reasons. Please advise the Human Resources Department of any special needs in advance of the examination by emailing at least 5 days before your examination date at

Qualified veterans may be eligible to obtain additional veteran's credit in the selection process for this recruitment (effective Jan. 1, 2013). To obtain the credit, veterans must attach to the application a DD214 discharge document or proof of disability and complete/submit the Veteran's Preference Application no later than the closing date of the posting. For more information about this credit please go to the Veteran's Preference Policy and Application link at