Cybersecurity Engineer I

Position Title:

Cybersecurity Engineer I

Job Description:

Under the guidance of the CISO/Director ITS and the Cybersecurity Engineering Manager, the Engineer's role is to ensure that cybersecurity projects meet objectives across the organization and ensure the security, stability, and integrity of network services both on premises and in the cloud. Focus is not only limited to assessing vulnerabilities but also how those risks could be mitigated, responding to security incidents, as well as training and mentoring fellow employees on security. Works to ensure the security of Salt Lake City’s business information, employee data, and constituent data throughout the entire network.

ABOUT THE TEAM:

The Cybersecurity Team  is a supportive, collaborative, exciting place to work.  There are ample opportunities for professional growth and unique experiences for the right proactive and ambitious candidate.

TYPICAL DUTIES:

• Collaborate with executive management and department leaders to assess near- and long-term cybersecurity threat prevention and network capacity needs. Serve as a technical project lead by planning, coordinating, and implementing complex new solutions.
• Create and maintain documentation as it relates to firewall and filtering policy, network, and cloud security. Create and maintain documentation as it relates to network infrastructure, fiber optics paths, copper cabling (cat 5e/6/6a) leased line circuits like DIA, MOE, GPON, DSL, SIP, and SDWAN solutions. Ensure that the cybersecurity team has an up-to-date incident response and recovery plan. This would include runbooks and playbooks for regular tabletop exercises.
• Develop, implement, and maintain policies, procedures, and associated training plans for security and network administration, usage, and network redundancy. Identifying corporate cybersecurity awareness training needs and assist in identifying and approving the appropriate training curriculum. Deliver training as required by business objectives.
• Architect, install, maintain, test, troubleshoot and repair enterprise-class network equipment, LANs, WANs, VLANs, wireless networks, cloud network infrastructure, firewalls, email and web filtering appliances, servers, routers, switches, and other hardware.
• Implement, maintain, a multilayer security infrastructure, support firewalls, intrusion prevention systems IDS/IPS, DNS, email and web filtering, site-to-site VPNs, and remote-access VPNs . Preformed regular hardware, and software upgrades on these systems. Recommend alterations and upgrades to systems, services, and applications to improve the quality and supportability of the network and security systems and products.
• Conduct research on security, intrusion prevention, and network products, services, protocols, and standards to remain abreast of developments in the security industry, networking industry, and cloud services. 
• Configure networks to ensure their smooth and reliable operation for fulfilling business objectives, processes, and security. Ensure network connectivity and security of all servers, workstations, telephony equipment, and other network appliances. Monitor, maximize, and test network performance, network security, and provide network performance statistics and reports. Practice network asset management, including maintenance of network component inventory and related documentation and technical specifications.
• Troubleshooting security infrastructure and device outages; scheduling upgrades; network optimization.
• Maintain and modify CISCO ISE (Identity Services Engine)/Radius or equivalent with profiling devices, posture assessment, VPN and Wi-Fi authentication.
• Implement Identity and access management, oversee employee access related to employee onboarding and separation. 
• Implement security intrusion testing by reviewing policies, procedures and facilitating network penetration testing both internally and externally.
• Implement and operate security software SIEM/SOC tools by configuring, managing, and tuning security rules to assign risk for alerting. Review ingested logs to develop new risk rules based on the MITRE framework.
• Manage approved application lists including monitoring CVE reports and security updates to ensure endpoints are properly secured.
• Implement, maintain, and modify MDM (Mobile Device Management) and MAM (Mobile Application Management) policies for managing control to company resources.
• Create and manage Single Sign-On and SAML applications, including access assignments and Certificate rotation.
• Conduct annual organization wide access reviews campaigns to enforce Least Privileged Access.
• Design and manage cloud app infrastructure including connectivity and security between public facing web apps, API managers, and databases as well as communication to on-premises resources.
• Diagram and document cloud specific infrastructure and security resources.
• Implement solutions between software developers and infrastructure teams as well as provide best security practices.

MINIMUM QUALIFICATIONS:

• Any combination of 4 years of related experience and/or education in the administration of an enterprise class networking environment.
• Possession of one (or more) of the following certifications may be required: Cisco Certified Network Associate (CCNA), CompTIA Security+, or CompTIA Network+. Other relevant security certifications may be substituted with Management approval.
• Must be able to demonstrate proficiency in project and resource management. Must show accountability and responsibility to see all projects and issues to an end resolution. Must be able to effectively prioritize tasks in a high-pressure environment.
• Display a knowledge of cybersecurity, intrusion prevention, incident response, recovery, SIEM tools, email security, cloud security and penetration testing. Display a knowledge of ip addressing, subnetting and core routing, switching design and routing principles.  Knowledge of Best practices and related technologies including, but not limited to firewalls, mail filtering, web filtering, DNS/DNS filtering, routers, switches, and leased lines.
• Display a knowledge of the following: Azure Active Directory / Entra Id, Intune and other Microsoft security products. Experience working with cloud applications / infrastructure security and implementation. Knowledge of NIST and PCI security standards as well as a familiarity with CJIS/FBI/BCI security policies.
• Must be a problem solver with excellent hardware and software troubleshooting knowledge and experience.
• Experience in implementing and managing SIEM and SOC systems desired.
• Ability to communicate clearly, both verbally and in written form and demonstrate strong customer service orientation
• Experience working in a team-oriented, collaborative environment.
• Must have a valid state driver’s license or Utah Driving Privilege card.

WORKING CONDITIONS:

• Moderate physical effort.  Comfortable working conditions, handling moderate weights, intermittent sitting, standing and walking.  Intermittent exposure to moderate noise levels.
• May require 24/7 support for mission critical systems.
• Exposure to stressful situations.

CAREER LADDER:

After all qualification requirements for Cyber Security Engineer II are met, incumbent may be promoted to a Cyber Security Engineer II with approval of CIO and Department Head, provided sufficient funding is appropriated for the impacted budget year.

The above statements are intended to describe the general nature and level of work being performed by persons assigned to this job.  They are not intended to be an exhaustive list of all duties, responsibilities and skills required of personnel so classified. All requirements are subject to possible modification to reasonably accommodate individuals with disabilities.

This position is eligible for full city benefits, including:

• Health, dental, vision, and life insurance
• 13 paid holidays per year
• Paid vacation and personal leave
• Six weeks of paid parental leave
• Retirement contributions toward a pension plan or 401(k)
• A robust EAP that provides emotional support, work-life solutions, legal guidance, and financial resources, including up to 15 counseling sessions for you and your household family members at no cost
• Tuition reimbursement
• Discounted supplemental benefits like pet insurance, legal services, and shopping

This position will remain open until filled and may close at any time without notice.

POSITION TYPE

Full-Time

POSITION SALARY RANGE

$96,797 -$132,193

DEPARTMENT

Information Management Systems

Full Time/Part Time:

Full time

Scheduled Hours:

40