Security Engineer (Information Technology)

Posting expires: October 3, 2025

Salary: $120,000

General Description And Classification Standards:

Responsible for securing the Department of Watershed Management’s IT assets. This position addresses issues and inquiries related to IT security from Watershed stakeholders and relevant third-party business partners. Responsibilities include defining IT security prerequisites for Watershed projects, supervising the integration of IT security technologies, and fostering collaboration with diverse Watershed and other City of Atlanta Departmental teams to ensure the uniform application of risk-based methodologies across all IT endeavors. 

Supervision Received:

Minimal supervision, direction received is very general and focuses on end results and is typically collaborative in nature. Position plans own work and project schedules and sequences.

Essential Duties And Responsibilities:

• Analyze security systems and seek improvements on a continuous basis. 
• Help drive security standards and best practices.
• Advise and implement application, and infrastructure security strategy.
• Perform breach, threat, and vulnerability analysis.
• Troubleshoot and fix security infrastructure issues.
• Handle escalations from Cybersecurity Analysts.
• Interact with, configure, and troubleshoot network intrusion detection devices and other security systems via proprietary and commercial consoles, both local and remote.
• Report possible threats or software issues.
• Research weaknesses and find ways to counter them.
• Assist fellow employees with cybersecurity, software, hardware or IT needs.
• Develop, implement, and monitor security measures to safeguard information, network infrastructure, and computer systems. 
• Deploy, configure, and monitor new security tools.
• Help drive user education on information security best practices
• Design and execute a comprehensive cybersecurity strategy and architecture. 
• Identify, define, and document system security requirements, proposing solutions to management. 
• Configure, troubleshoot, and maintain security infrastructure software and hardware. 
• Install and manage software for monitoring systems and networks to detect security breaches and intrusions. 
• Monitor systems for unusual activity and establish preventive measures. 
• Plan, develop, implement, and update the company's information security strategy. 
• Provide education and training to staff on best practices for information system security. 
• Analyze alerts for potential security threats. 
• Manage vulnerability assessments and remediation efforts. 
• Conduct risk assessments and develop mitigation strategies. 
• Collaborate on IT projects to ensure security considerations are addressed. 
• Attend meetings to provide input on security-related matters. 
• May perform other duties as assigned.

 The above statements reflect the general duties, responsibilities and competencies considered necessary to perform the essential duties and responsibilities of the job and should not be considered as a detailed description of all the work requirements of the position. COA may change the specific job duties with or without prior notice based on the needs of the organization. 

Knowledge Skills And Abilities:

This is a partial listing of necessary knowledge, skills, and abilities required to perform the job successfully, it is not an exhaustive list. 

Hands on experience with one or more of the following platforms or technologies: 

Palo Alto Firewalls, Microsoft Defender(Windows Defender), Microsoft Sentinel, Cisco Umbrella or other EDR platforms, Proofpoint, and Qualys.

• Advanced knowledge of Unix, Linux, Windows and operating systems.
• Understanding of Networking concepts.
• Familiar with Internet of Things (IoT) security concepts.
• Advanced knowledge of networking protocols and services such as the following: SFTP, HTTPS, SSH, SMB, LDAP, etc.
• Packet analysis tools (tcpdump, Wireshark, ngrep, etc.)
• Vulnerability assessment and remediation through patching and other relevant configuration changes.
• Experience as a network intrusion analyst.
• Familiar with Cloud platforms such as AWS, Azure etc.
• Knowledge on security event triaging, investigations pertaining to Cyber threats such as Business Email Compromise(BEC).
• Knowledge of information security standards (e.g., PCI, NIST framework, ISO etc.), rules and regulations related to information security and data confidentiality (e.g., FERPA, HIPAA, etc.) 

Minimum Qualifications – Education and Experience:

• Bachelor’s degree in computer science, Computer, Engineering, Electrical Engineering, Network Security, Information Security, Information Technology, or Mathematics.
• 4-6 years of relevant experience or equivalent combination of education and work experience: undergraduate degree and 1-2 years of relevant experience, graduate degree and 0-2 years of relevant experience.
• Certifications: GCIA, CISSP GPEN, GWAPT, GCIH, GSEC, OSCP, OSCE, OSCP, CASP+, CompTIA Security + or similar certification.

Licensures And Certifications:

Position would be expected to have licensure or professional certifications appropriate to the position.  

Required:

Valid Georgia driver’s license

Essential Capabilities And Work Environment:

Working in a hazardous environment or near hazardous equipment:

Lifting Requirements:

Light work: Exerting up to 20 pounds of force occasionally, and/or up to 10 pounds of force to move objects.  

The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.