Key skills
Information technologyServer managementNetwork securityApplication developmentHardware platform securitySecurity program policiesSecurity processesSecurity standardsSecurity requirementsSecurity proceduresSecurity technologiesInformation securitySecurity operationsSecurity InformationEvent Management (SIEM)Endpoint DetectionResponse (EDR)Data Loss Prevention (DLP)Data classificationTechnical controls for data-at-restTechnical controls for data-in-motionScriptingSecurity OrchestrationAutomationResponse (SOAR)Collaboration
About this role
NEOGOV is part of the State of Colorado's Governor's Office of Information Technology, focused on improving the lives of Coloradans through innovation and collaboration. They are seeking a Senior Cyber Security Engineer to lead the design, building, and maintenance of Security Operations Center tool sets while coordinating security strategy across domains and evaluating risks.
Responsibilities:
- Design new tools and controls and apply them to major known threats
- Ensure IT environment domains are secure
- Address any issues, events, incidents, vulnerabilities, or weaknesses
- Work with vendors and partners to develop and manage information security programs
- Guide the team in maintaining and assessing operational requirements and service issues for improvement opportunities
Requirements:
- Seven (7) years of increasingly challenging work experience in the information technology field
- Operational knowledge of: Information technologies such as servers, networks, and/or application development
- Operational knowledge of: Information systems industry and best practices in network, application, and hardware platform security
- Operational knowledge of: Security program policies, processes, standards, requirements, procedures, and various supporting security technologies
- Experience working in an information security position or have obtained information security certifications
- Comfortable in a 'hands on' role, driving security operations work to completion, and working closely with the technical leads to monitor the progress of assigned work
- Capable of deploying an information technology service from beginning to end
- Experience in architecting and optimizing enterprise logging platforms and Security Information and Event Management (SIEM) systems for proactive threat detection
- Proven track record in deploying and managing Endpoint Detection and Response (EDR) solutions to secure complex server and workstation environments
- Knowledge of designing and implementing Data Loss Prevention (DLP) programs, including data classification and technical controls for data-at-rest and data-in-motion
- Proficiency in using scripting or orchestration tools (SOAR) to integrate disparate security technologies and automate operational workflows