Cybersecurity Engineer

City of Alexandria VA
Alexandria, VA
Sep 20, 2020
Sep 24, 2020
Engineer, IT, QA Engineer
Full Time
Cybersecurity Engineer (Computer Programmer Analyst IV)The OverviewThe City of Alexandria's Department of Information Technology Services (ITS) is seeking a Cybersecurity Engineer to help support the information security team in their efforts to protect, detect, and respond to cyber-attacks. As the Cybersecurity Engineer, you will be part of the City's Information Security team. The Information Security Engineer will be responsible for providing engineering design, analysis, and support for routers, firewalls, networks, and operating systems.The OpportunityThe Cybersecurity Engineer will provide a variety of services to the City in support of the Information Security Program such as:* Researching, designing, and implementing information security solutions for organization systems and products that comply with all applicable security policies and standards* Analyzing and recommending improvements to network, system, and application architectures* Examining network, server, and application logs to determine trends and identify security incidents* Assisting in the review and update of information security policies, architectures, and standards* Assisting in responding to audits, penetration tests and vulnerability assessments* Staying abreast of current and emerging security threats and engineering solutions to reduce their impact, including utilizing threat intelligence, and working with other states, local, and federal partners* Administrating our identity and access management (IAM) solution, including single sign-on integrations* Working with our public key infrastructure team to provide secure authentication* Assist in creating security tool integrations* Engineering solutions that protect the confidentiality, integrity, and availability of city services* Working on tools to protect elections infrastructure* Working with our server team to provide guidance around secure GPO configurations* Working with the information security team and server team to create security baseline configurations* Assisting the eGov team in infrastructure monitoring* Automating our security responseThe ideal candidate will demonstrate:* Teamwork and communication* Technical expertise in network security knowledge, to include VPN, Firewall, network monitoring, intrusion detection, web server security, and wireless security* Strong knowledge of common vulnerabilities and exploitation techniques* Deep understanding of both Linux and Windows* Practical experience with database security, content filtering, vulnerability scanning, and anti-malware* Proficiency with at least one scripting language (eg: Perl, Python, PowerShell)* An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business* An understanding of organizational mission, values, and goals and consistent application of this knowledge* Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate oneAbout the DepartmentThe Information Technology Services (ITS) Department is responsible for enterprise technology operations for the City of Alexandria. ITS provides technology services and solutions to City departments to enhance service delivery and aligns its work with City needs by providing leadership, resources, expertise, and products that enable departments to better serve the City's residents, businesses, and visitors. All resources support initiatives funded through the multi-year Information Technology Capital Improvement Plan (IT/CIP) to improve the overall technology landscape. The City of Alexandria's ITS Department has been a Top Ten National Finalist in the Digital Cities Award program for the past 15 consecutive years.Minimum RequirementsFour Year College Degree; Five years as a Computer Programmer Analyst III; Three years' experience in communicating and negotiating with high-level executives.Preferred QualificationsPreferred candidates will have all the above as well as the following:* Four Year College degree in computer science, mathematics, or related subjects* Strong technical background in both Linux and Windows* Vulnerability Assessment and Remediation Experience* Networking experience, especially with firewalls* Experience engineering Security Information Event Management (SIEM - Splunk)* Some security Certifications (CEH, Security+, CISSP);* Experience in the public sector