Cybersecurity Architect

The Cybersecurity Architect will report to the Director of IT Infrastructure & Cybersecurity and will be responsible for the design, development, and implementation of information security solutions and processes that are aligned with the District’s Cybersecurity Program. The District’s Cybersecurity Program is the implementation of information security governance and controls for the San Mateo County Transit District (SamTrans), the Peninsula Corridor Joint Powers Board (Caltrain), and the San Mateo County Transportation Authority (TA).

APPLICATION DEADLINE: Sunday, April 20th, 2025

Essential Functions & Duties:

• Act as a resident subject matter expert in information security, including strategies to secure multiple cloud-based tenants, on-premises virtual infrastructure, computer systems, networks, telecommunications, and applications.
• Coordinate and manage the District's information security activities and programs, and participate in, and occasionally chair, the District’s interdepartmental cybersecurity committee.
• Plan, design, implement, and then perform ongoing monitoring and analysis of information security measures and controls related to the District’s computer networks and other technology systems. Align information security activities with business risk priorities through prioritization of security risk and mitigation activities.
• Improve data security through the mitigation of cybersecurity risks and safeguarding the District’s computer networks and related systems against security intrusions.
• Investigate and lead response activity for observed or reported data security incidents.
• Provide hands-on support for a broad spectrum of technologies, including security software running on Windows and Linux systems, network devices, virtual machines, Cloud Infrastructure as well as software-as-service (SaaS) services.
• Collaborate with internal and external stakeholders in implementing and supporting technical projects, and for operational support of production platforms.
• Supervise staff. Hires, mentors, and takes appropriate corrective and/or disciplinary action. Participates in the hiring of staff, contractors, and consultants, establishes performance objectives, monitors and evaluates employee performance.

Examples of Duties:

• Develops, implements, and monitors the District’s Cybersecurity Program to protect the confidentiality, integrity, availability, privacy, and recoverability of information assets owned, controlled, or/and processed by the District.
• Develops a metrics and reporting framework to measure the efficiency and effectiveness of the District’s Cybersecurity Program, provide analysis of the metrics and recommend improvements, and report on the effectiveness of the program at all levels of management.
• Identifies, evaluates, and reports on cybersecurity risk related to assets. Recommends, and upon approval implements, measures to address identified risks in line with the District’s goals for risk management.
• Ensures organizational compliance with the District’s information security policies, standards, and procedures; responsible for maintaining an exception process that authorizes and documents all exceptions; and maintains a repository of all exceptions.
• Acts in a leadership role for all information security related audit work (internal & external). Coordinates with auditors in the execution of audits. Develops a strategy for handling audits and external assessment processes for relevant regulations.
• Provides security guidance for all IT projects, including the evaluation and recommendation of technical controls, and reviewing and recommending security protections to be included in contracts and other agreements.
• Responsible for conducting a security awareness training program that includes progressive training of all staff, creating and distributing regular communications in a variety of media of timely and relevant security information, monitoring the effectiveness of the security awareness training program, and recommending improvements to the program as needed.
• Responsible for oversight of the District’s PCI compliance program. This includes coordinating an annual PCI compliance assessment, monitoring changes to the PCI Data Security Standard, and implementing changes to security protections to stay compliant with changing regulations.
• Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action.
• Conduct cybersecurity vulnerability testing and risk analysis
• Maintain relationships with local, state, and federal law enforcement and other related government agencies to ensure that the organization is prepared for effective incident response.
• Perform all job duties and responsibilities in a safe manner to protect oneself, fellow employees, and the public from injury or harm. Promote safety awareness and follow safety procedures to reduce or eliminate accidents.
• Perform other duties as assigned.