SNI Technology's client is looking to immediately hire a Cybersecurity Engineer for an exciting, full-time, direct-hire position located in Thornton, CO.
SNI Technology's client is seeking to hire an experienced cybersecurity engineer ready to engage with a mission-oriented IT team and leadership team in support of a large school district north of Denver, CO, with approximately 40 customers across 50+ buildings.
The successful candidate will have broad involvement in strategic planning of controls, threat/risk assessment, defense of systems, forensic investigation, vulnerability analysis, policy development, user training, technology evaluation, and security evangelism. Certifications are a plus. This new position for our client will involve working with the other member of the cybersecurity team and would also be a specialist on the larger Infrastructure Team, reporting directly to the Manager of Infrastructure Engineering.
While we are not specifically looking for deep experience with core networking and/or other datacenter technologies like storage, servers, virtualization, etc., any significant exposure to such areas is a good thing for the candidate, as this may allow them to be more valuable in terms of cross-training with the rest of the team in key areas of infrastructure.
While SNI Technology's client has had a consistent cross-disciplinary priority on cybersecurity, the formation of this new team is part of an initiative to establish higher levels of capabilities in this area. The person in this position will have opportunity to help craft practice and architect new security implementations, achieving greater resilience, responsiveness, and awareness for our client. The types of production systems included in the security include the following: WAF, NGFW, CDN, SIEM, ERP, SAML, SIS, SDN, and fleet management systems. In addition the successful candidate will become part of the on-call incident response team for the District, and cross train to the level of a first responder for infrastructure incidents.
Ability to fit in with, and be a thought leader and partner on small but mighty Infrastructure team who have deep and broad expertise and experience in various parts of the infrastructure is crucial. SNI Technology's has set as a high priority the safety and privacy of our users, the protection of PII and regulated data, and ensuring the reliability of digital infrastructure with which to learn and work.
If you are looking for an IT workplace that:
- Values and actively supports work-life balance
- Prides itself in its customer service, and leading-edge technology vision and strategy
- Has an altruistic mission that is not about making more money for shareholders but is about improving the future of our users and our community
- Allows one to have a large-scale, strategic impact on the technological future of one of Colorado's largest school districts, look no further!
ESSENTIAL DUTIES AND RESPONSIBILITIES:
- Security Operations, Maintenance, & Defense: Provide systems defense, troubleshooting, timely incident response, forensics, investigation, log analysis, URL filter tuning, and solution designs across the district-wide sets of systems. The range of systems that the Cybersecurity Engineer is responsible for includes any technological infrastructure where the District has risk including, diverse server operating systems, various types of virtualization, streaming media and transactional services, network management systems, security infrastructure, wireless/wired clients, Guest and BYOD access, secure transaction systems, education environments, radio communications and related infrastructure. Provide scripting, automated response, automated deployment, and remote servicing options to the district to support these systems.
- Policy & Strategy: Ensure a strong information assurance posture for the district by developing strategy, contributing to institutional policy, researching technologies, testing infrastructure, and implementing security designs in support of the district's systems architecture. Develop plans to implement vulnerability analysis, threat analytics, incident response and testing procedures, and implement training to maintain security readiness. Do this by implementing designs, processes, configurations, and technologies based on international and federal standards, RFCs, peer best practices, and other standards sources in additional to current professional practice and due diligence appropriate for the District. Provide evaluation of strategic options of cybersecurity services, auditing, vulnerability testing, consulting, and partnerships to fulfill a range of District Cybersecurity options, while performing 'build or buy' options analysis.
- Architecture & Engineering: Provide and implement cybersecurity design and engineering solutions that support a forward-looking enterprise systems and lead to secure network, systems, and data footprint. Perform the business analysis necessary to ensure that these cybersecurity technologies, solutions, and implementations meet the District's compliance, privacy, availability, and business continuity needs at a scale appropriate for the District.
TECHNICAL SKILLS, KNOWLEDGE, AND ABILITIES:
- Strategic, current and detailed knowledge of the cybersecurity controls and practices related to enterprise-class information systems technologies and architectures at the scale of the district or greater.
- Ability to work with groups that vary from highly technical consultants to non-technical personnel and effectively convey issues, organize activities, and translate requirements into clear technical options. Maintained awareness of external cybersecurity groups, standards bodies, agencies, and professional. The ability to use this awareness and common vulnerability databases to implement patch management strategies, malware protection, encryption, APT detection, SIEM, DDoS resilience, and system hardening procedures.
- Ability to propose, justify, plan, and bring to closure highly complex and large scale cybersecurity technology projects.
- Ability to design and implement change management processes, testing procedures, enterprise-scale security systems and network management systems, large scale systems management technologies, service level agreements, and information assurance measures.
- Ability to implement systems that meet FERPA, COPPA, CIPA and other relevant state and federal regulations related to cybersecurity, safety, privacy, content appropriateness, and related areas.
- Ability to communicate, interact and work effectively and cooperatively with all people, including those from diverse ethnic and educational backgrounds. Willingness to contribute to cultural diversity for educational enrichment.
- High level of skill in writing strategic documents, policy, and procedures in support of information systems functional requirements and the needs of the district.
- Strategic knowledge of a range of enterprise class cybersecurity technologies, and the cybersecurity aspects of enterprise-class equipment and user devices. Cybersecurity technology expertise should include SIEMs, forensic tools, firewalls, WAFs, host-based protections, DDoS protections, and alert systems. Expertise performing risk analysis, hardening, and mitigation of a variety of technologies is essential including: Internet protocol networks, system and desktop virtualization, enterprise application environments, portal services, enterprise infrastructure services, wide area networks, enterprise-scalable cloud services, telecommunications systems, end-user devices, and secure remote & mobile computing technologies.
- The ability to assess the physical security of an install base is important including aspects like physical security, system resilience, business continuity, and access control practices.
- Expert cybersecurity support capabilities in support of web portal, enterprise data systems, cloud, and web applications like SharePoint, Drupal, Google Sites, and others.
- Ability to provide end-to end security analysis, incident response, and investigation related to converged technologies that include VoIP, streaming media, transactional databases, and end-user devices both mobile and wired.
- Secure authentication services skill using technologies like SSO, SAML, RADIUS, Windows domains and LDAP systems.
- Advanced knowledge of security related to complex server and service integration designs, internal and external cloud provisioning, security testing and configuration, and forensic analysis.
EDUCATION AND RELATED WORK EXPERIENCE:
- Bachelor's degree in cybersecurity, computer science, systems administration, information systems, or related area. Four (4) additional years of similar and relevant experience may be substituted for this requirement.
- Minimum of four (4) years' experience implementing and supporting cybersecurity technologies, especially in areas of systems security, network defense, forensics, incident response, monitoring, vulnerability analysis, and policy/process development at institutions of similar scale.
- Minimum of three (3) years' hands-on experience with operations and maintenance of key IT infrastructure in one or more of the following areas: desktop management, virtualization, storage, digital data communications, application server support, wired/wireless networks, software development, and systems integration.