Security Engineer Senior
Atlanta, GA, United States
Applications have closed
Job Posting; Open Until Filled
Salary Range: $80,127.63 - $106,801.13
Hiring Department: AIM
Our culture in the Department of Atlanta Information Management (AIM) is rooted in our shared core values: Transparency, accountability, collaboration, service, and integrity. The AIM team understands our role as a strategic partner to departments throughout the city; we strongly believe technology has the potential to elevate the City of Atlanta and is essential to moving the mayor’s vision forward. With the effective use of technology, we become more efficient, more effective, and innovative. We become more capable of enhancing the experience of all affected by City government. AIM’s mission is to advance Atlanta by being consistent in the delivery of innovative, reliable, secure, and user-focused technology solutions.
Our team members exemplify the shared core values above, so if you have these characteristics, consider joining us as we work to advance technology for the city, its esteemed citizens, and valued visitors.
The Atlanta Information Management (AIM) role of Security Engineer, Senior for the City of Atlanta, reports directly to the Chief Information Security Officer (CISO). The Security Engineer is responsible for patching, implementing, and administrating security hardware and software, enforcing the network security patching policy, and complying with requirements of external security audits and recommendations. Other responsibilities include analyzing, troubleshooting, and investigating security-related information systems anomalies based on security platform reporting, network traffic, log files, and host-based and automated security alerts.
Major Duties and Responsibilities
List the essential job duties that are specific to the position. These are typical responsibilities for this position and should not be construed as exclusive or all-inclusive.
· Leads security patching for system servers, endpoints, applications, and special systems.
· Attends weekly vulnerability meetings to understand threats facing the environment.
· Works closely with the Security team to prioritize patching efforts and track progress to complete remediation.
· Ensures security vulnerabilities are remediated within the organization's service level agreement.
· Supports the installation, maintains the security system, and supports new and existing corporate Windows servers.
· Manages single-resource and multi-resource internal team projects and provides assessment, costing, design, planning, and management of new projects and processes.
· Designs, plans, and manages deployment of new and multi-specialty technologies.
· Supports the annual audit of the active directory.
· Recommends, schedules, and performs software and hardware improvements, upgrades, patches, reconfigurations, and purchases.
· Monitors and administers appropriate systems to ensure system and service availability and peak performance and that modifications to existing environments are effective and efficient.
· Documents all systems procedures, practices, job responsibilities, and processes.
· Administers and provides technical support for various system and network software packages, including but not limited to electronic mail, databases, file services, print services, anti-virus, backup, monitoring, etc.
· Applies decision-making skills to select from multiple procedures and methods to accomplish tasks. ·
Applies organizational policies. May interpret organizational policies and recommend exceptions.
· Establishes work methods, timetables, performance standards, etc.
· Provides leadership, guidance, and training to work groups and less experienced staff. Serves as a technical resource or mentor to other employees. May lead or instruct skilled workers in high-level or technical jobs.
· Analyzes system, server, and application performance.
· Provides status reports and reports on vulnerabilities.
· Creates and maintains diagrams, knowledge articles, and other documentation related to systems configuration.
· Participates in on-call rotation.
· Creates shell scripts as required for automation and to expedite any rote process.
· Checks the service desk database for entries on enterprise applications or server resource issues; prioritizes and responds to help desk tickets as appropriate.
· Provides follow-up services to ensure customer satisfaction and resolve client issues.
· Provides advice and recommendations to management on processes and techniques required for improved work operations.
Knowledge Skills and Abilities
Required:
· Software packaging/package software for SCCM (System Configuration Central Management) or Intune delivery (two or more years of minimal experience) is required.
· Software/patch delivery via SCCM, Qualys, or Intune.
· Strong knowledge of Azure Security Center, Azure, Azure Networking, AWS, VMware, MS
Group Policy, Active Directory, Azure IaaS, and PaaS.
· Good knowledge of networking, including zero-trust models.
· Good knowledge of application and infrastructure security solutions.
· Understanding of the Proofpoint application and email routing.
· Cloud knowledge of AWS, Azure, and/or Oracle.
· Ability to plan and carry out virtually all typical assignments within network administration.
· Ability to build effective relationships within the City and to train others.
Desired:
· Strong knowledge of vSphere, vCenter, Windows Server, Storage, Cisco, VMware, Linux,
automation, Cisco, Proofpoint, Office 365, Azure, AWS, DNS, Backup & Storage.
· Well-developed network technical skills. Skills in organizing and presenting information,
proposals, etc.
Minimum Qualifications – Education and Experience
A bachelor’s degree in computer science or engineering (equivalent professional experience may be considered for substitution for the required degree on an exception basis). Five years of specific security experience.
· Experience with security patching.
· Hands-on experience with one or more platforms or technologies: Palo Alto, Windows
Defender, Qualys, CISCO Systems, EDR platforms, Okta, and Proofpoint.
Preferred Qualifications - Education & Experience
Master’s degree is preferred in computer science or engineering (equivalent professional experience may be considered for substitution for the master’s degree on an exception basis) with 5-8 years of directly related professional work.
· Advanced knowledge of Unix, Linux, Windows, and operating systems.
· Advanced knowledge of networking protocols and services such as the following: FTP, HTTP,
SSH, SMB, LDAP, etc.
· Packet analysis tools (e.g., tcpdump, Wireshark, ngrep, etc.).
Licensures and Certifications
The following certifications are preferred: GCIA, GPEN, GWAPT, GCIH, GSEC, OSCP, OSCE, OSCP, or similar certification.
The City of Atlanta is an Equal Opportunity Employer and does not unlawfully discriminate on the basis of race, color, religion, age, disability, sex, sexual orientation, ender identity, marital status, veteran’s
Tags: Active Directory Audits Automation AWS Azure CISO Cloud Computer Science DNS EDR GCIA GCIH GPEN GSEC GWAPT IaaS LDAP Linux Log files Monitoring Network security Okta Oracle OSCE OSCP PaaS Qualys SSH UNIX VMware Vulnerabilities Windows
Perks/benefits: Transparency
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.