Airport Cybersecurity Engineer II

Position Title:

Airport Cybersecurity Engineer II

Job Description:

Under the guidance of Airport IT management, the CISO/Director ITS and the Cybersecurity Engineering Manager, you will play a crucial role in ensuring the security, stability, and integrity of our network services both on-premises and in the cloud. Your mission will be to assess vulnerabilities, mitigate risks, respond to security incidents, and train fellow employees on security best practices.

About the Position:

As a Cybersecurity Engineer II, you will be at the forefront of the Airport's cybersecurity initiatives. Your responsibilities will include collaborating with executive management to assess cybersecurity threats, serving as a technical project lead, and creating comprehensive documentation for network security. You will develop and implement policies, procedures, and training plans for security and network administration. Your expertise will be vital in architecting, installing, maintaining, and troubleshooting enterprise-class network equipment, firewalls, and cloud infrastructure.

Key duties include:

• Assessing and mitigating cybersecurity threats.
• Leading technical projects and implementing complex solutions.
• Creating and maintaining security documentation.
• Developing and delivering training plans.
• Researching and staying abreast of industry developments.
• Managing incident response and recovery plans.
• Interacting with vendors to secure products and services.

We are looking for a professional with:

• Requires 6-8 years of work/educational experience
• Requires a bachelor's degree in computer science or related field
• Minimum 2-4 years experience in enterprise networking/network security
• Certifications like CISSP, CCNP (security), or Security+ may be required

About the Team:

Our team values continuous learning, proactive problem-solving, and effective communication. We foster a supportive environment where each member’s contributions are valued, and professional growth is encouraged. Together, we aim to create a secure, stable, and resilient network for the Airport and its constituents.

This position will remain open until filled and may close at any time.

Position Salary Range:

$131,162 - $145,736

* annually based on qualifications and experience.

This position is eligible for full city benefits, including:

• Health Insurance (95% of premium paid by city)
• Dental, Vision and Life Insurance
• Paid vacation and personal leave
• Up to 6 -12 weeks of paid parental leave available
• Retirement contributions toward a pension plan and/or 401(k)
• A robust Employee Assistance Plan (EAP)
• Up to $4,000 tuition reimbursement annually
• Discounted supplemental benefits like pet insurance and legal services

TYPICAL DUTIES:

• Collaborate with executive management and department leaders to assess near- and long-term cybersecurity threat prevention and network capacity needs. Serve as a technical project lead by planning, coordinating, and implementing complex new solutions.
• Create and maintain documentation as it relates to firewall and filtering policy, network, and cloud security.
• Create and maintain documentation as it relates to network infrastructure, fiber optics paths, copper cabling (cat 5e/6/6a) leased line circuits like MOE, GPON, DSL, SIP, and SDWAN solutions.
• Develop, implement, and maintain policies, procedures, and associated training plans for security and network administration, usage, and network redundancy. Deliver training as required by business objectives.
• Architect, install, maintain, test, troubleshoot and repair enterprise-class network equipment, LANs, WANs, VLANs, wireless networks, cloud network infrastructure, firewalls, email and web filtering appliances, servers, routers, switches, and other hardware.
• Implement and support firewalls, intrusion prevention systems, DNS, email and web filtering, site-to-site VPNs, and remote-access VPNs.
• Conduct research on security, intrusion prevention, and network products, services, protocols, and standards to remain abreast of developments in the security industry, networking industry, and cloud services. 
• Ensure that the cybersecurity team has an up-to-date incident response and recovery plan. This would include runbooks and playbooks for regular tabletop exercises.
• Oversee new and existing equipment, intrusion prevention hardware, network hardware, and software upgrades. 
• Interact and negotiate with vendors and 3rd parties to secure products and services. 
• Configure networks to ensure their smooth and reliable operation for fulfilling business objectives, processes, and security. 
• Ensure network connectivity and security of all servers, workstations, telephony equipment, and other network appliances. 
• Practice network asset management, including maintenance of network component inventory and related documentation and technical specifications.
• Monitor, maximize, and test network performance, network security, and provide network performance statistics and reports.
• Recommend alterations and upgrades to systems, services, and applications to improve the quality and supportability of the network systems and products. 
• Troubleshooting security infrastructure and device outages; scheduling upgrades; network optimization.
• Implement, maintain, and modify a multilayer security infrastructure with firewalls, IDS/IPS and any other tools available.
• Maintain and modify CISCO ISE (Identity Services Engine)/Radius or equivalent with profiling devices, posture assessment, VPN and Wi-Fi authentication.
• Implement Identity and access management, oversee employee access related to employee onboarding and separation. 
• Implement security intrusion testing by reviewing policies, procedures and facilitating network penetration testing both internally and externally.
• Implement and operate security software SIEM/SOC tools by configuring, managing, and tuning security rules to assign risk for alerting. Review ingested logs to develop new risk rules based on the MITRE framework.
• Manage approved application lists including monitoring CVE reports and security updates to ensure endpoints are properly secured.
• Identifying corporate cybersecurity awareness training needs and assist in identifying and approving the appropriate training curriculum.

MINIMUM QUALIFICATIONS:

• Any combination of 6 years of related experience and/or education in the administration of an enterprise class networking environment.
• Possession of one (or more) of the following certifications may be required: Certified Information Systems Security Professional (CISSP), Cisco Certified Network Professional (CCNP) with emphasis in security, route and switching or CompTIA Security+. Other relevant security certifications may be substituted with Management approval.
• Must be able to demonstrate proficiency in project and resource management. Must show accountability and responsibility to see all projects and issues to an end resolution. Must be able to effectively prioritize tasks in a high-pressure environment.
• Display a knowledge of cybersecurity, intrusion prevention, incident response, recovery, SIEM tools, email security, cloud security and penetration testing. Display a knowledge of ip addressing, subnetting and core routing, switching design and routing principles.  Knowledge of Best practices and related technologies including, but not limited to firewalls, mail filtering, web filtering, DNS/DNS filtering, routers, switches, and leased lines.
• Display a knowledge of the following: Azure Active Directory / Entra Id, Intune and other Microsoft security products. Experience working with cloud applications / infrastructure security and implementation. Knowledge of NIST and PCI security standards as well as a familiarity with CJIS/FBI/BCI security policies.
• Must be a problem solver with excellent hardware and software troubleshooting knowledge and experience.
• Experience in implementing and managing SIEM and SOC systems desired.
• Ability to communicate clearly, both verbally and in written form and demonstrate strong customer service orientation
• Experience working in a team-oriented, collaborative environment.
• Must have a valid state driver’s license or Utah Driving Privilege card.

WORKING CONDITIONS:

• Moderate physical effort.  Comfortable working conditions, handling moderate weights, intermittent sitting, standing and walking.  Intermittent exposure to moderate noise levels.
• May require 24/7 support for mission critical systems.
• Exposure to stressful situations.

CAREER LADDER:

After all qualification requirements for Cyber Security Engineer III are met, incumbent may be promoted to a Cyber Security Engineer III with approval of CIO and Department Head, provided sufficient funding is appropriated for the impacted budget year.

Additional Information:

We are committed to fostering a diverse and inclusive workplace and encourage individuals from all backgrounds to apply. The above statements are intended to describe the general nature and level of work being performed by persons assigned to this job.  They are not intended to be an exhaustive list of all duties, responsibilities and skills required of personnel so classified. All requirements are subject to possible modification to reasonably accommodate individuals with disabilities.

POSITION SALARY RANGE

$131,162 - $145,736

* annually based on qualifications and experience.

DEPARTMENT

Airport

Full Time/Part Time:

Full time

Scheduled Hours:

40