Experience Inc. Jobs

Home View All Jobs (2,209,101)

Job Information

El Paso County Senior Information Security Engineer in Colorado Springs, Colorado

Senior Information Security Engineer

Print (https://www.governmentjobs.com/careers/elpasocountyco/jobs/newprint/4653117)

Apply



Senior Information Security Engineer

Salary

$97,530.00 - $146,190.00 Annually

Location

Colorado Springs, CO

Job Type

Full-Time

Remote Employment

Flexible/Hybrid

Job Number

2400490

Department

Digital, Strategy, & Technology Department

Division

Infrastructure & Operations

Opening Date

09/16/2024

Closing Date

9/18/2024 11:59 PM Mountain

FLSA

Exempt

  • Description

  • Benefits

  • Questions

    Need more information on completing a job application? See the EPC Application process here (https://admin.elpasoco.com/human-resources/#ApplicationProcess) .

Job Summary

Join our cutting-edge Information Security team and lead the defense of critical infrastructure in El Paso County, Colorado! As a Senior Information Security Engineer, you will design and implement secure solutions, tackle advanced cyber security challenges, and mentor the next generation of security experts. If you thrive in a dynamic environment, working on complex projects involving everything from SOC operations to cloud security, this role is your chance to make an impact. Be the architect of our cybersecurity future – Apply Today!

Hiring Range: $100,000.00 - $118,000.00 annually

(salary to be commensurate with qualifications)

This position has an anticipated work schedule of Monday – Friday, 8:00am – 5:00pm, subject to change.

This is a senior position responsible for ensuring that all County IT resources are optimally protected against undue threats to system and data confidentiality, integrity, and availability. Responsible for the design and maintenance of El Paso County's (EPC) MAN/WAN/LAN security architecture. Provides a secure, reliable, available architecture/infrastructure that facilitates the execution of County business applications and data. Utilizes an understanding of the technology and security needs of El Paso County to implement technology solutions for customers. This is a hybrid role on a small team which encompasses the domains of security operations, information security risk management, compliance, and security technical engineering.

This position requires extensive technical, analytical, and “soft” skills. As a senior-level engineer, this job also requires mentoring and training other junior engineers as well as non-security staff members in all topics related to information security. Senior engineers are also responsible for developing training and reference materials, including but not limited to briefings, process and procedure documentation, knowledge base articles (KBAs), data flow diagrams, and network diagrams for all things related to Information Security.

Essential Duties/Responsibilities

  • Performs common Security Operations Center (SOC) analyst functions, including but not limited to frequent reviews of security-relevant log data, alerts, and threat intelligence for indicators of attack (IOAs) and indications of compromise (IOCs).

  • Evaluates technology and designs, builds, validates, and implements security solutions that integrate security controls with process, procedure, and technology to achieve the desired degree of protection for El Paso County applications, infrastructure, systems, and data.

  • Serves as a technical lead for information security incidents and investigations. Develops, directs, and implements investigation, containment, and recovery procedures for all internal and external security threat actions and incidents.

  • Develops, deploys, maintains, and optimizes information security applications, components, and systems (e.g., e-mail security tools, endpoint detection and response (EDR) tools, and SIEM).

  • Participates in complex network design, performance engineering and/or problem resolution projects to solve complex, cross-functional security and connectivity issues across many technologies.

  • Collaborates with others in the department to develop and standardize security policies and procedures, manage organizational risk, safeguard mobile access and collaboration, prove compliance and secure virtual and cloud environments.

  • Designs network security architecture that incorporates cyber security controls to protect against malware and unauthorized access, deny access to systems, services and/or data, and prevent adverse impact to the operation of systems/networks/equipment. Designs, implements, manages, and maintains all County firewalls.

  • Designs and integrates IT security solutions such as SIEM, Vulnerability Management, DLP, and Identity and Access Management.

  • Establishes and deploys real-time malicious code protection mechanisms at security boundary devices on the network to detect and eradicate malicious code.

  • Constantly learning new hard/technical and soft/personal/analytical skills and relays new information to peers, senior leaders, and non-technical staff.

  • Conducts research of technical and IT security topics; maintains information on current industry trends.

  • Collaborates with others in the department to perform design review and analysis of proposed and on-going deployments, modifications, and removals of IT infrastructure, systems, and applications for on-prem and externally-hosted (e.g., Cloud) services.

  • Develops and maintains processes, procedures, knowledge base articles (KBAs), and diagrams related to all information security functions.

  • Performs security assessments, risk identification, and mitigation planning and execution.

  • Evaluates, selects and ensures secure implementation of vendor products and services.

  • Prepares preventative maintenance schedules and backup program necessary to ensure robust network environment including software upgrades and regular maintenance on infrastructure or security related devices.

  • Leads Vulnerability Management program and actively participates in patch management and risk management processes.

  • Must be able to provide guidance on NIST, FISMA, PCI, PII, and CJIS compliance. Develops and maintains required documentation and artifacts of compliance in support of routine inspections.

  • Leads from the front. Demonstrates good decision-making and leadership abilities. Able to make informed decisions about complex technical issues with little guidance from higher levels of organizational leadership.

  • Assists with the development and implementation of the Cyber Training and Awareness Program.

  • Performs other duties as required.

Supervision Exercised:This classification does not have supervisory authority; however, may be required to provide expertise or limited guidance or direction to employees, such as overseeing work quality, training, and guidance. Typically serves as a subject matter expert on the scope of functional area.

Supervision Received:Receives general supervision. This classification typically performs job duties by following established standard operating procedures and/or policies. Regular direction, guidance, and coaching from supervisor may be expected. There is a choice of the appropriate procedure or policy to apply to duties. Performance reviewed periodically.

Qualifications

Knowledge, Skills & Abilities

  • Must have extensive knowledge of the following information security domains: security operations, network security, identity and access management, malware, and exploitation, email security, system hardening/asset security, information security compliance/information assurance, vulnerability management, security assessments, and testing.

  • Must be familiar and competent with two or more of the following solutions: Palo Alto Network Firewalls, EDR tools, SIEM tools, Active Directory Domain Services, Azure, AWS, Mimecast, Rapid 7/Tenable Nessus.

  • Solid understanding of common network services and protocols, including but not limited to IPv4, SSH, DNS, DHCP, LDAP, and SAML.

  • Understanding of DNS, DHCP and LDAP.

  • Network forensics expertise using SIEM.

  • Understanding of network and firewall technologies and architectures.

  • Must have strong customer service and teamwork skills.

  • Ability to communicate effectively with leadership and others within El Paso County as necessary to accomplish security responsibilities.

  • Must possess strong analytical and troubleshooting skills.

  • Ability to serve as a technical resource to IT staff.

  • Ability to read and interpret blueprints and technical schematic diagrams.

  • Must have a solid ability to communicate effectively both verbally and in writing.

  • Ability to establish and maintain effective working relationships.

  • Maintain regular and punctual attendance.

    Required Education & Experience

  • Bachelor's degree in information technology, computer networks, or related field.

  • Four years of related professional experience may substitute for the required degree.

  • Five years of direct information security analyst or information security engineering experience.

  • Five years of direct, daily experience working with two or more of the following information security products:

  • Network Firewalls and Intrusion Prevention Systems (e.g., Palo Alto, Cisco ASA)

  • EDR tools (e.g., Cortex XDR, Crowd Strike)

  • SIEM tools (e.g., LogRhythm, Splunk)

  • Active Directory Domain Services (e.g., ADUC, AD Sites and Services, DHCP, DNS)

  • Azure Security tools (e.g., Defender, Sentinel, Security Center, Compliance Center)

  • AWS Security tools (e.g., AWS IAM, CloudWatch, CloudTrail, Security Hub)

  • Email Security tools (e.g., Mimecast, Microsoft Exchange Online)

  • Vulnerability management tools (e.g., Rapid 7, Tenable Nessus)

  • Experience with network monitoring, performance tuning, network security, network equipment programming, firewall configurations, and resource utilization.

  • Experience with policy and process documentation.

  • System hardening experience utilizing STIGs, CIS, or USGCB.

    Preferred Education & Experience

  • Master's degree in information technology, computer networks, or related field.

  • Security Operations Center (SOC) experience.

  • Incident Response experience.

    Licenses/Certificates

  • Must possess and maintain a valid driver's license.

  • Criminal Justice Information System (CJIS) certification or have the ability to successfully obtain within ninety (90) days of employment.

  • CISSP Certification preferred.

  • Cisco Security and/or Cisco network certifications preferred.

  • Palo Alto Certification preferred.

    Pre-Employment Requirements

  • Must pass conditional post offer background investigation, motor vehicle record check, and drug screen.

Work Conditions

Duties are primarily performed in an office and remote work environment dependent upon Department discretion and business needs; some travel may be required. May be required to be on-call and carry a cell phone as needed.

The classification specification above is intended to represent only the key areas of responsibilities and minimum qualifications; specific job assignments, duties, education, experience, licenses/certifications, and environmental conditions will vary depending on the needs of the department/office and the particular assignment. Changes to this document may only be made by a member of the Human Resources Department.

VISION

El Paso County will be a trusted regional leader known for excellence in county service delivery.

PURPOSE

We provide essential public services to the Pikes Peak Region in support of our residents, businesses, and communities, enhancing the freedom for all to thrive.

El Paso County is an E-Verify and Equal Opportunity Employer.

El Paso County adheres to Federal drug screening guidelines and requires a pre-employment drug screen.

DirectEmployers