Cybersecurity Engineer

Education and Experience: Bachelor’s Degree or higher in Information Technology, Management Information Systems, Computer Science, Systems Engineering or a related field and?four (4) years of combined software and hardware development or configuration experience within a LAN/WAN network and/or a cloud environment such as AWS or Azure, including two (2) years of experience with incident detection, incident response, or forensic analysis.

Licenses and Certifications: Valid Texas Class “C” Driver’s License or equivalent from another state by the time of appointment. Must obtain one (1) of the following industry certifications within twelve (12) months from the date of appointment: CISSP, CISM, CCSP, CISA, CRISC, Microsoft Certified-Cybersecurity Architect Expert, or other related and approved certification.

Special Requirements: Applicants for positions assigned to the Department of Information Technology Services must pass a Criminal Justice Information Systems (CJIS) fingerprint-based background check within the first six months of appointment and maintain CJIS eligibility. CJIS requirements are related to system access and the following list of convictions and/or deferred adjudications will fail the CJIS background check and disqualification and/or termination of employment; Felony convictions, Felony deferred adjudication, Class A or B Misdemeanor deferred adjudication, Class A or B Misdemeanor convictions, and/or open arrest warrants for any criminal offense (Felony or Misdemeanor) and family violence convictions.

Under general direction, strategically design and build out technical infrastructure and organizational policies that harden the organization against attacks. Provide recommendations on information security improvements to Information Technology Services staff and stakeholders.

Protect & Monitor City Assets. Involves: Plan, design, implement, manage, and upgrade security measures across data, systems, and networks; continuously monitor for threats and anomalies.

Incident Response. Involves: Triage and respond to security events, coordinate remediation, and document findings and corrective actions.

Vulnerability & Penetration Testing. Involves: Identifying and validating vulnerabilities, conducting pen tests against key digital infrastructure, and delivering risk-based recommendations.

Security Tools Management. Involves: Configure and maintain HIDS/HIPS, NIDS/NIPS, firewalls, antivirus, logging, SIEM, encryption, vulnerability scanning, identity/access controls, authentication, and authorization technologies.

Architecture & Governance. Involves: Collaborating with the CISO to design and implement security and data-governance procedures, participating in change management.

Procurement & Vendor Reviews. Involves: Evaluating hardware, software, and services for security risk, developing security requirements for RFPs and contracts.

Stakeholder Communication. Involves: Preparing clear status updates and reports, collaborating across departments to evaluate and adopt security-enhancing technologies and processes.

Perform other duties as assigned.