CrawlJobs Logo
AMTRAK Logo AMTRAK · IT - Administration

Director of Cybersecurity Assessments

United States, Washington 179300.00 - 232416.00 USD / Year · Job Posted December 18, 2025
Apply Position
Job Link Share

Job Description

The Director DT Cyber Defense Assessments oversees enterprise cybersecurity assessments for both Information Technology (IT) and Operational Technology (OT) networks and systems. This role is critical to safeguarding Amtrak’s operational and business systems, directly influencing national infrastructure resilience. The director will lead a unified strategy for identifying, prioritizing, and assessing critical business and safety systems across both IT and OT environments.

Job Responsibility

  • Oversees enterprise penetration testing and cyber assessments against both IT and OT systems
  • Conducts risk assessments following NIST SP 800-30, tailored for both IT and OT contexts
  • Develops and implements remediation plans
  • Crafts policies that address security in both IT and OT
  • Directs a team that includes both IT and OT security specialists
  • Ensures adherence to regulatory standards, manages audits, and reports on key findings to executive leadership
  • Coordinates with IT and OT incident response teams to manage vulnerabilities
  • Assigns or serves as cybersecurity SME in support of Amtrak projects

Requirements

  • Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or an equivalent combination of training, education, and relevant experience
  • 10 plus years of experience in cybersecurity, with at least 4 years specifically in penetration testing across IT and OT
  • In-depth knowledge of cybersecurity frameworks such as NIST, ISO/IEC 27001, IEC 62443, and PCI DSS
  • Experience with penetration testing tools tailored for both IT and OT environments
  • Proficiency in operating systems including Windows and Linux
  • Strong understanding of IT and OT networking and associated protocols
  • Familiarity with industrial control systems (ICS) and their security implications

Nice to have

  • Master’s degree in Cybersecurity, Information Assurance, or a related field
  • Certifications such as CISSP, GICSP, or CSSLP
  • Demonstrated experience in managing security for SCADA systems, PLCs, or other OT environments
  • Familiarity with scripting for automation (Python, PowerShell) in both IT and OT contexts
  • Proven leadership in cross-functional, multi-disciplinary teams

What we offer

  • health, dental, and vision plans
  • health savings accounts
  • wellness programs
  • flexible spending accounts
  • 401K retirement plan with employer match
  • life insurance
  • short and long term disability insurance
  • paid time off
  • back-up care
  • adoption assistance
  • surrogacy assistance
  • reimbursement of education expenses
  • Public Service Loan Forgiveness eligibility
  • Railroad Retirement sickness and retirement benefits
  • rail pass privileges
AMTRAK - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Director of Cybersecurity Assessments

8 matching positions

Director of Cybersecurity & Compliance

L+M Development Partners is seeking a hands-on Director of Cybersecurity & Compl...
Location
Location
United States of America , New York
Salary
Salary:
170000.00 - 190000.00 USD / Year
lmdevpartners.com Logo
L+M Development Partners
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of progressive experience in cybersecurity, with at least 3 years in a senior or lead technical role
  • Hands-on, practitioner-level expertise — this role requires the ability to configure, operate, and troubleshoot security tools directly
  • Deep expertise with Microsoft 365 security, Entra ID / Azure AD, Conditional Access, and Defender suite
  • Experience managing or overseeing Managed Email Security and MDR engagements
  • Experience with email security platforms
  • Strong working knowledge of PII handling obligations, data breach notification laws, and multi-state regulatory requirements
  • Familiarity with NIST Cybersecurity Framework and the ability to translate it into practical operational controls
  • Experience developing and enforcing security policies, vendor security requirements, and employee training programs
Job Responsibility
Job Responsibility
  • Administer and optimize Microsoft 365 / Entra ID security configurations, including Conditional Access, MFA policies, and re-authentication session controls
  • Manage and tune email security platforms, MDR and firewalls for threat detection and PII content filtering
  • Oversee email security and MDR engagement for 24/7 threat monitoring
  • serve as primary internal contact for escalation and incident triage
  • Administer firewall and other network security controls and access policies
  • Manage restrictions on personal email access, personal device access to SharePoint/company resources, and shared drive to OneDrive/SharePoint migration security controls
  • Implement and maintain DLP policies to prevent PII from being transmitted via email, with programmatic deletion of historical PII from employee mailboxes
  • Own incident response, remediation and data breach management and reporting
  • Investigate and document security incidents
  • produce post-incident reports for leadership and the board
  • Fulltime
Read More
Arrow Right

Director of Technology

Our Client is seeking a Director of Technology who will lead their overall techn...
Location
Location
United States , New York
Salary
Salary:
180000.00 - 200000.00 USD / Year
solomonpage.com Logo
Solomon Page
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Technology, Engineering, or related field
  • 8+ years of progressive technology and IT leadership experience
  • Experience within commercial finance, specialty lending, banking, fintech, or other regulated financial services environments preferred
  • Strong understanding of cybersecurity, infrastructure management, cloud technologies, and enterprise systems
  • Experience managing software implementations, systems integrations, reporting platforms, and operational technology projects
  • Strong knowledge of Microsoft environments, Excel-based operational tools, Power BI, and ERP systems
  • Experience supporting customer-facing SaaS platforms and teams preferred
  • Demonstrable understanding of AI/ML concepts, capabilities, and limitations, with the ability to evaluate tools, assess vendor claims, and guide technology decisions
  • Working knowledge of AI-related data privacy, security, and regulatory frameworks (e.g. GDPR, CCPA, SOC 2, ISO42001), with experience establishing or maintaining governance policies that manage risk across client-facing data environments
  • Strong communication, organizational, and stakeholder management skills
Job Responsibility
Job Responsibility
  • Develop and execute the company's technology roadmap aligned with business objectives and growth initiatives
  • Serve as a strategic partner to executive leadership on technology planning, systems optimization, cybersecurity, AI governance, and operational scalability
  • Define and implement the company's AI usage policies, governance standards, and technology initiatives
  • Identify opportunities to automate workflows, improve reporting, and enhance operational efficiency across the organization
  • Evaluate and implement new technologies that support business growth and operational resilience
  • Effectively communicate strategies, opportunities, risks, project/program updates, issues, and go-forward options to senior management
  • Oversee company-wide laptop, mobile device, and end-user technology setup, administration, and lifecycle management
  • Provide and manage first-level technology support for all employees across the organization
  • Escalate and manage technology issues with external managed service providers, including primary oversight of the relationship with the company's MSP
  • Establish IT operational standards, documentation, and support procedures
  • Fulltime
Read More
Arrow Right

Director of Enterprise Architecture

We are looking for a strategic technology leader to shape and advance the enterp...
Location
Location
United States , Seguin
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Computer Science, Engineering, or a related discipline
  • an advanced degree is preferred
  • At least 15 years of experience in enterprise architecture, including 5 or more years in a senior leadership capacity
  • Strong command of recognized enterprise architecture methodologies such as TOGAF, Zachman, or similar frameworks
  • Demonstrated success leading digital transformation initiatives within manufacturing, industrial, or similarly complex operational environments
  • Experience with major enterprise platforms, including ERP, MES, supply chain technologies, and integrated business systems
  • Deep knowledge of cloud platforms, hybrid infrastructure, edge computing, and Industry 4.0 or IIoT concepts
  • Proven ability to lead cross-functional teams, influence executive stakeholders, and communicate technology strategy clearly
  • Solid understanding of governance, cybersecurity, compliance, and risk management within large-scale enterprise environments
Job Responsibility
Job Responsibility
  • Create and direct an enterprise architecture roadmap that supports growth, digital advancement, and improved business efficiency
  • Establish architecture standards, guiding principles, and governance practices to promote consistency across systems, teams, and business functions
  • Work closely with senior leadership to align technology direction, investment priorities, and platform decisions with organizational goals
  • Lead the consolidation of major business and operational platforms into a cohesive, scalable technology ecosystem
  • Drive modernization efforts for legacy environments while expanding the use of cloud solutions, edge technologies, and industrial connectivity capabilities
  • Provide architectural oversight for enterprise data platforms, analytics environments, cybersecurity strategies, infrastructure, and related technology domains
  • Manage and mentor enterprise, solution, and domain architects to encourage innovation and maintain architectural discipline across initiatives
  • Assess emerging technologies and market trends to inform strategic planning and strengthen long-term competitiveness
  • Promote compliance with regulatory expectations, security standards, and enterprise risk management practices across architecture initiatives
What we offer
What we offer
  • competitive compensation
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • free online training
  • Fulltime
Read More
Arrow Right

Director of Enterprise Architecture

We are looking for a strategic technology leader to shape and advance the enterp...
Location
Location
United States , Seguin
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Engineering, or a related discipline
  • an advanced degree is preferred
  • At least 15 years of experience in enterprise architecture, including 5 or more years in a senior leadership capacity
  • Strong command of recognized enterprise architecture methodologies such as TOGAF, Zachman, or similar frameworks
  • Demonstrated success leading digital transformation initiatives within manufacturing, industrial, or similarly complex operational environments
  • Experience with major enterprise platforms, including ERP, MES, supply chain technologies, and integrated business systems
  • Deep knowledge of cloud platforms, hybrid infrastructure, edge computing, and Industry 4.0 or IIoT concepts
  • Proven ability to lead cross-functional teams, influence executive stakeholders, and communicate technology strategy clearly
  • Solid understanding of governance, cybersecurity, compliance, and risk management within large-scale enterprise environments
Job Responsibility
Job Responsibility
  • Create and direct an enterprise architecture roadmap that supports growth, digital advancement, and improved business efficiency
  • Establish architecture standards, guiding principles, and governance practices to promote consistency across systems, teams, and business functions
  • Work closely with senior leadership to align technology direction, investment priorities, and platform decisions with organizational goals
  • Lead the consolidation of major business and operational platforms into a cohesive, scalable technology ecosystem
  • Drive modernization efforts for legacy environments while expanding the use of cloud solutions, edge technologies, and industrial connectivity capabilities
  • Provide architectural oversight for enterprise data platforms, analytics environments, cybersecurity strategies, infrastructure, and related technology domains
  • Manage and mentor enterprise, solution, and domain architects to encourage innovation and maintain architectural discipline across initiatives
  • Assess emerging technologies and market trends to inform strategic planning and strengthen long-term competitiveness
  • Promote compliance with regulatory expectations, security standards, and enterprise risk management practices across architecture initiatives
  • Fulltime
Read More
Arrow Right

Director of Threat Exposure Engineering

The Director of CTEM Development defines the technical vision and strategic dire...
Location
Location
United States , Philadelphia
Salary
Salary:
Not provided
comcastcorporation.com Logo
Comcast
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10 - 15+ years of engineering leadership experience overseeing large, complex technical environments
  • Strong engineering background with deep understanding of development practices, SDLC, coding standards, and modern architecture
  • Ability to lead technical strategy, set engineering direction, and own platform roadmaps
  • Experience managing engineering teams of 15- 20+ people, including global and distributed teams
  • Skilled in people leadership, team development, performance management, and talent retention
  • Experience with scanning, discovery, configuration assessment, telemetry, and exposure validation platforms
  • Strong understanding of secure coding, CI/CD pipelines, automation, testing, observability, and reliability engineering
  • Broad familiarity with multiple programming languages and development methodologies
  • Proven ability to manage budgets, resource planning, forecasting, and operational execution
  • Experience collaborating across architecture, SDLC, product, and cybersecurity teams
Job Responsibility
Job Responsibility
  • Oversees engineering, operation, and continuous improvement of CTEM platforms, including scanning, discovery, configuration assessment, exposure validation, and telemetry
  • Leads the global engineering lifecycle, including architecture for distributed assessment engines, telemetry pipelines, detection logic, secure configuration evaluation, and adversarial validation workflows
  • Drives automation-first engineering and ensures excellence in CI/CD, secure coding, testing, observability, and reliability to deliver scalable and resilient platforms
  • Ensures CTEM platforms meet operational, reliability, scalability, and performance standards, while leading technical analysis to improve detection accuracy, discovery fidelity, telemetry quality, and overall exposure reduction
  • Owns the global CTEM roadmap, set engineering strategies, and define technical direction aligned with broader cybersecurity and business goals
  • Collaborates across internal teams—including SDLC, Security Architecture, and Product—to ensure interoperability and alignment with enterprise standards
  • Supports financial and operational planning, prepare and manage budgets, monitor forecasts and expenditures, and guide headcount strategy
  • Establishes reporting standards, track engineering progress, analyze costs, and use operational metrics to drive measurable outcomes
  • Manages vendors and partners
  • Leads globally distributed engineering teams, including managers and professional staff
What we offer
What we offer
  • Paid Time off
  • Physical Wellbeing benefits
  • Financial Wellbeing benefits
  • Emotional Wellbeing benefits
  • Life Events + Family Support benefits
  • Fulltime
Read More
Arrow Right

IT & Cybersecurity Director

We are seeking a highly skilled IT Director to lead our technology strategy, imp...
Location
Location
France , Bordeaux
Salary
Salary:
100000.00 - 110000.00 EUR / Year
acc-emotion.com Logo
Automotive Cells Company (ACC)
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 10 years' experience in technical fields in an industrial environment (architecture, infrastructure)
  • Higher education in computer science (Master’s degree or equivalent)
  • Strong background in IT architecture and cloud technologies
  • Expertise in security, compliance, and data governance
  • Excellent leadership, communication, and strategic thinking skills
  • Proven experience as senior technology leadership role, with managerial skills
  • Knowledge of AI, IoT, emerging technical trends, agile methodologies and DevOps practices
  • Ability to scale technology in fast-growing environments
  • Backgrounds from the pharmaceutical industry (manufacturers), aerospace, or large-scale civil construction will also be considered with interest
Job Responsibility
Job Responsibility
  • Develop and implement a technology roadmap aligned with business goals
  • Identify emerging technologies and assess their potential impact
  • Oversee the design and development of solutions (applications, infrastructure, data) while ensuring quality and scalability
  • Define technical architectures (Cloud, CI/CD, microservices)
  • Implement quality and security standards from the development phase onwards
  • Lead major projects: cloud migration, automation, integration
  • Oversee initiatives to promote innovation
  • Ensure robust, secure, and compliant technology infrastructure
  • Implement cybersecurity best practices and risk mitigation strategies
  • Ensure the operational condition (MCO) of the systems (24h/7d)
What we offer
What we offer
  • Remote Work Agreement
  • Profit-Sharing Agreement and Company Savings Plan (PEG)
  • Attractive Works Council (CSE) with cultural, sports, and vacation subsidies
  • Company Restaurant
  • Meal and Grocery Delivery Service
  • Mileage Allowance
  • Referral Bonus
  • Modern, Diverse, and Inclusive Work Environment
  • ACC'tivity: preferential rates on activities (cooking classes, wine tasting, etc.)
  • Access to the goFluent platform to develop your language skills
  • Fulltime
Read More
Arrow Right

Director of Technology - Governance, Risk, and Compliance

We are seeking a Director of Technology - Governance, Risk, and Compliance to de...
Location
Location
United States , San Jose
Salary
Salary:
219000.00 - 290000.00 USD / Year
archer.com Logo
Archer Aviation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8 plus years of experience in Technical Governance, Risk, and Compliance, Risk Management, Audit, or Information Security
  • Minimum of 3 years in a director or senior manager role leading a GRC function or compliance program
  • Expert-level understanding of NIST CSF, SP 800-171, and CMMC Level 2 frameworks
  • Hands-on experience managing NIST CSF, 800-171 compliance programs or leading CMMC Level 2 assessments and certification initiatives
  • Strong knowledge of SOX Section 404 requirements, particularly IT General Controls (ITGC)
  • Deep understanding of ITAR and EAR export control regulations
  • Proficiency in risk management methodologies
  • Experience designing and operating control frameworks (ISO 27001, NIST CSF, SOC 2 Type II)
  • Strong communication skills to present complex compliance and risk concepts
  • Demonstrated ability to lead and mentor teams, manage budgets, and drive cross-functional initiatives
Job Responsibility
Job Responsibility
  • Develop and execute a comprehensive Cyber-focused Governance, Risk, and Compliance (GRC) strategy
  • Lead the design and implementation of System Security Plans (SSPs) and Plans of Action and Milestones (POA&Ms)
  • Establish and manage an enterprise-wide risk management program
  • Design and enforce a control framework
  • Conduct or coordinate regular compliance assessments and internal audits
  • Manage relationships with external auditors, assessors, and regulators
  • Develop and maintain comprehensive compliance documentation
  • Lead the design of third-party and vendor risk management processes
  • Drive compliance training and awareness programs across the organization
  • Stay current with emerging regulatory changes
  • Fulltime
Read More
Arrow Right

Director of Information Security

Join Brandeis University as Director of Information Security. Brandeis Universit...
Location
Location
United States , Waltham
Salary
Salary:
160000.00 - 174800.00 USD / Year
brandeis.edu Logo
Brandeis University
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree required
  • Master’s preferred
  • 8+ years of information security experience
  • 3–5 years in supervisory roles
  • Expertise in cybersecurity frameworks (NIST, CIS), compliance requirements, risk management, and incident response
  • Strong communication and collaboration skills across technical and non-technical stakeholders
  • Discretion, sound judgment, and the ability to balance mission and security priorities
Job Responsibility
Job Responsibility
  • Lead the Information Security Program: Develop, implement, and manage policies, governance, and risk management programs that protect the university’s digital assets and data
  • Drive Cybersecurity Operations & Resilience: Monitor threats, manage vulnerabilities, and oversee incident response and business continuity planning
  • Ensure Compliance & Vendor Security: Support regulatory adherence (FERPA, GLBA, federal research mandates) and manage third-party risk assessments
  • Engage Campus Partners: Advise leadership, faculty, researchers, and staff on security risks, emerging threats, and mitigation strategies
  • Promote Security Awareness: Build a culture of cybersecurity through training, outreach, and community engagement
  • Fulltime
Read More
Arrow Right