Security Administrator 5

Job ID: 11552

Business Unit: MTA Headquarters

Location: New York, NY, United States

Regular/Temporary: Regular

Department: IT CISO

Date Posted: Apr 24, 2025

Description

JOB TITLE : Security Administrator - Level 5

SALARY RANGE: Level 5 - Min.: $86,703 Max.: $123,862

DEPT/DIV : MTA Information Technology/ IT Security

SUPERVISOR : Cybersecurity Officer/Manager

LOCATION : 2 Broadway and other locations as required

HOURS OF WORK : 9:00 am - 5:00 pm/8 hrs. or as required.

DURATION : Open Until Filled

The Metropolitan Transportation Authority is North America's largest transportation network, serving a population of 15.3 million people across a 5,000-square-mile travel area surrounding New York City, Long Island, southeastern New York State, and Connecticut. The MTA network comprises the nation's largest bus fleet and more subway and commuter rail cars than all other U.S. transit systems combined. MTA strives to provide a safe and reliable commute, excellent customer service, and rewarding opportunities.

Summary:

This position is responsible for the administration of access to the railroad's computer systems on all computing platforms, administration of the various firewall and network technologies utilized to protect the perimeter of the network from intrusion. This includes resolving complex security problems, researching and implementing new security technology, providing firewall and network security solutions for large-scale initiatives, recommending policy changes to management, and developing security procedures, policies, and documentation for the IT Department and the end user community.

Responsibilities:

Level 5

• Provide first level security support for all IT related technical problems and services to ensure that all MTA application and systems availability targets are met.
• The implementation, administration, and monitoring of data security procedures on all computing platforms, ensuring appropriate documentation.
• Work with IT staff and customers to ensure awareness of security concerns, mitigation techniques, and assist in following procedures or implementing controls as necessary.
• Implementation, administration, and monitoring of physical security procedures within the IT Department and the associated documentation.
• Install, configure, and troubleshoot complex hardware and/or software solutions supporting critical business functions and customer facing services.
• Maintain compliance with PCI-DSS Controls.
• Participate in the evaluation of new security products and security related technologies.
• Assist and back up other Security Administrators.
• Recommend solutions for security problems to management.
• Recommend and draft security policies and procedures for MTA computing platforms and coordinate with other MTA agencies as necessary.
• Implement and maintain compliance with PCI-DSS Controls.
• Perform and coordinate electronic data discoveries, maintaining confidentiality and meeting required deliverable time frames.
• Identify security problems and review them with other Security Administrators.
• Identify security problems and recommend solutions to management.
• Plan, design, and engineer solutions and projects to be implemented within the security section.
• Perform security related project management tasks.
• Guide less senior technicians and staff in the performance of their tasks.
• Lead the planning and coordination of security tasks and activities in support of IT related projects and initiatives.
• Assume complete ownership of the firewall and network security elements of a project or the implementation of any large-scale system.
• Lead and participate in all technical and non-technical tasks, such as procurement, while ensuring that milestones are met according to plan and that the quality of the final product is high.
• Design, implement, and maintain compliance with PCI-DSS controls. Communicate the importance of controls to less senior Security Administrators and other IT personnel.

Qualifications :

Level 5

• Expert knowledge of PeopleSoft security architecture, including row-level security and permission list configurations.
• Proven leadership in driving security architecture enhancements and leading compliance initiatives across enterprise systems.
• Extensive experience in developing and enforcing security policies, procedures, and governance frameworks to support organizational security goals.
• Skilled in conducting security audits and risk assessments, with the ability to develop and implement effective remediation plans.
• Track record of successfully leading complex IAM and ERP security projects from planning through execution.
• Adept at delivering technical recommendations to senior leadership and influencing long-term strategic security planning.
• Deep understanding of industry-standard security frameworks (e.g., NIST, ISO 27001, CIS Controls) and experience ensuring regulatory compliance (e.g., SOX, HIPAA).
• Basic Knowledge of Endpoint Detection and Response Technologies
• Basic knowledge of Antivirus, Data Loss Prevention (DLP), Encryption, and USB Protection.
• Basic knowledge and familiarity with installing and maintaining various components of an information security system, including firewalls, authentication protocols, encryption software, remote access systems, and commercial off the shelf security products.
• Basic knowledge of troubleshooting methodologies appropriate to the implementation platform, e.g., servers, desktops, laptops, or mobile devices on a large scale.
• Basic knowledge and familiarity with internet technologies and computer networking.
• Ability to plan and schedule the installation of new or modified hardware, operating systems, and application software on various endpoint platforms.
• Ability to plan, schedule and maintain, and deploy endpoint security software to systems on a large scale.
• Ability to troubleshoot and support technical issues both remotely and on-site using standard MTA tools and techniques.
• Ability to read and understand schematic diagrams, technical manuals, and documentation such that supported equipment and software can be maintained with minimal training.
• Strong oral and written communication skills.
• Strong analytical skills.
• Strong people skills.
• Must be able to move 25 lbs of equipment such as monitors, keyboards, CPUs, laptops, firewalls, etc.
• Must possess a valid driver's license.
• Proven knowledge and familiarity with installing, maintaining and troubleshooting security resources, including, but not limited to, MS Active Directory, Checkpoint security software, Encryption software, remote access solutions, commercial off the shelf security software, with the ability to support this software on servers, desktops, laptops, and mobile devices.
• Proven knowledge of and familiarity with installing and maintaining various components of an information security system, including firewalls, authentication protocols, encryption software, remote access systems, and commercial-off-the-shelf security products.
• Research, identify, and drive the implementation of innovative approaches to system administration tasks with a focus on automation, error reduction, and service improvement.
• Knowledge of troubleshooting methodologies appropriate to the implementation platform, e.g., servers, desktops, laptops, or mobile devices on a large scale.
• Demonstrated knowledge of and familiarity with internet technologies and computer networking.
• Strong critical thinking skills.
• Ability to guide less senior staff in the performance of their tasks.
• Strong knowledge of and familiarity with installing and maintaining various components of an information security system, including firewalls, authentication protocols, encryption software, remote access systems, and commercial-off-the-shelf security products.
• Strong knowledge of and familiarity with internet technologies and computer networking.
• Ability to provide technical direction to less senior staff members, and to guide new lower level staff members who enter the security team.
• Ability to perform electronic data recovery and computer forensics efficiently, utilizing industry standard tools.
• Ability to recommend and draft effective security policies and procedures.
• Ability to perform research and recommend solutions for security problems to management.
• Advanced knowledge of and familiarity with installing and maintaining various components of an information security system, including firewalls, authentication protocols, encryption software, remote access systems, and commercial-off-the-shelf security products. Knowledge of troubleshooting methodologies appropriate to the implementation platform, e.g., servers, desktops, laptops, or mobile devices.
• Advanced knowledge of and familiarity with internet technologies and computer networking.
• Ability to plan, design, and engineer solutions and projects for the security team.
• Ability to perform project management tasks related to solutions and projects for the security team. Expert knowledge of and familiarity with installing and maintaining various components of an information security system, including firewalls, authentication protocols, encryption software, remote access systems, and commercial-off-the-shelf security products. Knowledge of troubleshooting methodologies appropriate to the implementation platform, e.g., servers, desktops, laptops, or mobile devices.
• Expert knowledge of and familiarity with internet technologies and computer networking.
• Recommend solutions for security problems to management.

Education and Experience :

Level 5

• Bachelor's degree in Computer Science , Information Technology, or related discipline; or a minimum of 12 years' experience installing, maintaining, and supporting security technologies in an office environment.
• Must possess a minimum of 10 years' experience maintaining and supporting security hardware, software, network resources, and protocols

OTHER INFORMATION:
This is a resume-based position in the collective bargaining unit represented by the Transportation Communications Union (TCU) and will be governed by the terms of the associated TCU collective bargaining agreement for IT employees. As such, candidates selected for this position will be represented by TCU and be on the MTA payroll. In addition, candidates selected may be required to work at any MTA Agency location.

Pursuant to the New York State Public Officers Law & the MTA Code of Ethics, all employees who hold a policymaking position must file an Annual Statement of Financial Disclosure (FDS) with the NYS Commission on Ethics and Lobbying in Government (the "Commission").

Equal Employment Opportunity

MTA and its subsidiary and affiliated agencies are Equal Opportunity Employers, including with respect to veteran status and individuals with disabilities.

The MTA encourages qualified applicants from diverse backgrounds, experiences, and abilities, including military service members, to apply.