Security Engineer II (IT)
Security Engineer II (IT)
Serves in the Information Security Department of the Office of Technology at the Headquarters Office Building.
Implements security tools; monitors, tests, and reports on the confidentiality, integrity, and availability of information assets in compliance with Airports Authority's information security programs and policies, and with other security and compliance standards. Performs related functions.
Maintains, upgrades, and implements new information security tools.
Works with other IT staff and system custodians to ensure all networks, devices and applications in use by the Airports Authority are implemented to meet and enforce the policies and standards in the Information Security Directive and applicable laws and regulations.
Assists in the security certification of both new and legacy systems as required in the Information Security Directive.
Maintains the Security Information and Event Management (SIEM) systems by providing real-time monitoring of security events and notifications, and reporting.
Monitors and maintains the intrusion prevention systems (IPS), by responding to and resolving security alerts; escalates high risk events to the appropriate team for resolution.
Monitors and participates in review of firewalls to ensure adequacy of rules for data and systems and under the direction of the Information Security Director deploys assigned firewall changes.
Conducts continuous vulnerability scans and penetration testing on all networks; participates in patch management processes and assists with needed changes and improvements.
Works with other Information Security staff to ensure Payment Card Industry (PCI) regulated environments are continuously compliant with Data Security Standards (PCI-DSS).
Monitors user access to ensure access is authorized, provisioned, and de-provisioned according to policy. Identifies and reports violations.
Keeps abreast of security industry developments to proactively identify threats against networks and systems; identifies and reports the need for action to mitigate information security threats.
As assigned, ensures security architecture standards align with legal and mandated compliance standards.
Assists with and supports the development of newsletters to educate staff and other users on securing networks, systems, and data. Conducts information security awareness training.
Assists in conducting period phishing tests, as directed.
Performs other duties as assigned.
Nine years of progressively responsible experience in Information Technology support functions.
Four of the nine years of experience must include implementing, upgrading, and maintaining security tools and conducting security assessments.
Knowledge of network and application firewalls, SIEMs, VPNs, and IPS and ability to use at least two of the following technologies: SPLUNK, Tripwire Enterprise, Cisco ASA firewall, Palo Alto firewalls, Sourcefire IPS, or Websense.
Ability to create security dashboards and reports on security status updates.
Ability to conduct basis security reviews and/or assessments of major operating systems (Microsoft, Linux, IOS), databases, web applications, and firewalls using network and web application scanning tools, scripting languages test, and to report security postures/statistics.
Ability to perform detailed analyses of data and information and make recommendations.
Ability to speak and write effectively, with emphasis on communicating technical issues to nontechnical audiences.
A Bachelor's Degree in Computer Science, Computer Engineering, Information Security, Information Assurance, or related field.
Certification as a Certified Information Systems Security Professional (CISSP) or Systems Security Certified Practitioner (SSCP) from the International Information Systems Security Certification Consortium (ICS2) or ability to obtain CISSP or SSCP certification within one year from the date of hire, promotion, or placement.
A high school diploma or a Certificate of General Education Development (GED).
CERTIFICATIONS AND LICENSES REQUIRED
NECESSARY SPECIAL FACTORS
Work is typically reviewed in progress and upon completion for quantity, quality, timeliness, teamwork, customer service, and other factors.
Must be able to work varied schedule of days and outside normal business hours for scheduled and emergency maintenance and/or upgrades, as well as standard on-call rotation.
Is subject to hold-over and recall for IT emergencies.
A background security investigation will be required for all new hires.
Metropolitan Washington Airports Authority is an Equal Opportunity Employer.| Follow us on Twitter @MWAAcareers.