IT Information Security Specialist

About Our Job

With competitive pay, great benefits, and endless opportunities, working for the City and County of Denver means seeing yourself working with purpose — for you, and those who benefit from your passion, skills and expertise. Join our diverse, inclusive and talented workforce of more than 11,000 team members who are at the heart of what makes Denver, Denver. 

What We Offer 

The City and County of Denver offers a competitive salary commensurate with education and experience. The salary target range we are looking to offer is $120,000 - $150,000. We also offer generous benefits for full-time employees which include but are not limited to: 

• 140 hours of PTO earned within first year + 11 paid holidays, 1 personal holiday, 1 wellness day and 1 volunteer day per year. 
• Competitive medical, dental and vision plans effective within 1 month of start date.
• Pension Plan for Life (Employee contributes 8.45%, Employer matches at 17.95%)
• 457 (b) Retirement Plan (no early withdrawal fee!)
• STD, LTD, HSA, FSA, Life Insurance
• CARE Bank, Family Leave Benefits
• Employee Assistance Program, Employee Volunteer Program
• Tuition Reimbursement (up to $2000/year), We Qualify for Student Loan Forgiveness Program
• Learning and Development Opportunities; Courses and Career Development Resources
• EcoPass (unlimited free RTD bus/train rides)

Location

The City and County of Denver supports a hybrid workplace model. Employees work where needed, at a job site several days a week and off-site as needed. Employees must work within the state of Colorado on their off-site days.   

The City and County of Denver utilizes a hybrid model workplace that balances the responsibilities of public service with the benefits of a flexible work environment. Employees work where needed, at a city site and/or in the field at least 1 day a week and telecommute remotely at a designated workplace within the State of Colorado the remaining days.

What You’ll Do 

DEN is looking for an IT Security Specialist to join our Information Security team. The Information Security team is responsible for the protection of DEN’s information, infrastructure, and IT services through the execution of our on-going security program, which incorporates elements of security architecture, security operations, risk management, and compliance.

In this position, you will provide cybersecurity expertise, serving as an intermediary between Information Security and our project and operational teams, providing security engineering expertise and operational risk management for the protection of DEN’s information and service availability.

Additionally, you will have an opportunity to accomplish the following:

• Perform information security risk assessments and write summary reports for existing and new IT services, hardware, and applications.
• Assess and enhance security configurations for cloud platforms such as Azure, AWS, and Google Cloud.
• Stay current with and socialize emerging cybersecurity threats, trends, and regulatory requirements related to cloud computing.
• Collaborate with architecture, engineering, and operations teams to create roadmaps and support plans for the lifecycle of our portfolio of security capabilities such as CSPM/CNAPP/CWAPP, Data Loss Prevention, EPP/EDR/XDR, Firewalls, VPN Devices, IPS Systems, Web Application Firewalls, Vulnerability Management systems, etc.
• Research, test, and evaluate new technologies, systems, and tools relevant to DEN’s needs, security posture, and risk appetite.
• Work with other IT teams to maximize SOC visibility for events occurring in DEN’s ecosystem.
• Guide technology decisions by partnering across functions to ensure security best practices are followed and to ensure the application of advanced cybersecurity capabilities for platforms we already utilize.
• Practice supply chain security through vendor and contract reviews; educate others in the practice and importance of securing supply chain.
• Create policies, processes, and procedures for securing DEN data.
• Respond to audit, investigation, litigation, and open records requests.
• Additional projects and responsibilities as assigned.

What You’ll Bring 

Denver International Airport (DEN) is the third-busiest airport in the United States and one of the top ten busiest airports in the world, connecting our community globally through flight and business. DEN is the primary economic engine for the state of Colorado, generating more than $47.2 billion for the region annually and employing nearly 37,000 people. At DEN, we are committed to fostering a diverse, inclusive and equitable workplace. We celebrate individuality and uplift all races, ethnicities, gender identities, national origins, ages, abilities, religion, and LGBTQIA+ communities. We know that our diversity makes us stronger, and we strive to keep Equity, Diversity, Inclusion & Accessibility (EDIA) at the center of all that we do.

We are looking for candidates with the following skills and experience:

• Providing a focus on the customer
• The ability to be self-directed as well as the ability to work independently and within groups
• Sensitivity to accuracy, timeliness, and professionalism
• A strong background and proven experience in Cybersecurity concepts, controls, and Security Engineering, exhibited by dedicated work in the cybersecurity domain and / or professional certifications
• Familiarity with automation tools (Terraform, Ansible, etc.) and secure DevOps (DevSecOps) principles.
• Knowledge of security frameworks such as CIS Benchmarks, NIST CSF, and ISO 27001.
• Experience with container security (Docker, Kubernetes)

Required Minimum Qualifications 

• Education:  Bachelor's Degree in Computer Science, Information Systems, Business Administration, Mathematics or a related field.
• Experience:   Three (3) years of administering information security systems to include any or all of the following: information security architecture, information security procedures and controls, physical security, attack & penetration testing, application testing, information assurance program gap analysis and incident response.
• Experience Equivalency:   One (1) year of the appropriate type and level of experience may be substituted for each required year of posthigh school education. Additional appropriate education may be substituted for the minimum experience requirements.
• Licensure & Certification- none.

Application Deadline 

This position is expected to stay open until April 11th , 2025. Please submit your application as soon as possible and no later than April 11th, 2025, date at midnight to ensure consideration.

FBI Background Check: FBI criminal background check is required for all positions at Denver International Airport (DEN). Employees are also required to report any felony convictions and/or moving violations to maintain this clearance and be eligible for continued employment. By position, a pre-employment physical/drug test may be required.

Snow / Emergency Duties: Denver International Airport is a 24/7/365 team operation. If weather conditions warrant or an emergency crisis occurs, all DEN employees may be required to work extended hours and/or shifts.

About Everything Else

Job Profile

CI2796 IT Security Specialist

To view the full job profile including position specifications, physical demands, and probationary period, click here.

Position Type

Unlimited

Position Salary Range

$112,972.00 - $192,052.00

Starting Pay

Based on education, relevant experience and internal equity

Agency

Denver International Airport

The City and County of Denver provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, national origin, disability, genetic information, age, or any other status protected under federal, state, and/or local law. 

It is your right to access oral or written language assistance, sign language interpretation, real-time captioning via CART, or disability-related accommodations. To request any of these services at no cost to you, please contact Jobs@Denvergov.org with three business days’ notice.

Applicants for employment with the City and County of Denver must have valid work authorization that does not require sponsorship of a visa for employment authorization in the U.S.

For information about right to work, click here for English or here for Spanish.