City Of Gainesville, FL
Operational Technology Network Analyst Senior
City Of Gainesville, FL, Sioux Falls, South Dakota, United States
# ******If you are an Internal City Employee, Retiree or Dependent/Survivor of a City Employee please apply internally via Career Icon in your Workday account.********Make a difference in the community you live in! As a Community Builder—an employee with the City of Gainesville— you will have a direct hand in building and improving your community and making a visible impact on the lives of your neighbors. Working for local government is more than a job, it’s a chance to contribute to community success and to help enhance the Gainesville way of life.****Department:**1330 GRU - Systems Control/Technical Support**Salary Range Minimum:**$68,979.59**Salary Range Maximum:**$108,234.05**Closing Date:**11/03/2025**Job Details:**This position is responsible for the administration and monitoring of next-generation firewalls, Security Information and Event Management (SIEM) systems, Intrusion Detection/Prevention Systems (IDS/IPS), and OT network components within critical utility environments. The ideal candidate will have hands-on experience with OT security tools and protocols, an understanding of Purdue model segmentation, and the ability to work collaboratively with IT and compliance teams to ensure secure and resilient operations. This role plays a key part in supporting the protection of OT systems, regulatory compliance, and the overall cybersecurity posture of the utility’s OT infrastructure.**Job Description:****SUMMARY**This position performs advanced, complex technical and analytical work to support a robust multi-facility SmartGrid environment.
Work is performed on-site and off-site in a secure, monitored environment 24/7/365.
This role supports the reliability, cybersecurity, and regulatory compliance of the bulk electric system, real-time operational systems including SCADA, ICCP, virtualization, and secure communication paths necessary to deliver energy services. Work requires a key technical expert supporting design, security, administration and optimization of Operational Technology and systems supporting critical infrastructure.This position requires exceptional expertise in network engineering, system administration and cybersecurity within an energy utility or critical infrastructure environment. The incumbent will lead high-impact projects, improve system resilience, and drive adherence to compliance with NERC CIP, NIST and other industry standards while working under minimal supervision. Work in this class is distinguished from higher classes by its lack of supervisory and design responsibility, and from lower classes by its advanced technical and analytical knowledge and skill in communication/data networks, virtual infrastructure and system security monitoring software.**EXAMPLES OF WORK\*\****\*\*This section of the job description is not intended to be a comprehensive list of duties and responsibilities of the position.
The omission of a specific job function does not absolve an employee from being required to perform additional tasks incidental to or inherent in the job.
Performance of lower-level duties may be required.***ESSENTIAL JOB FUNCTIONS**Depending on area of assignment, incumbents will have skillsets in one or more of the following areas:Design, implement, and optimize high-availability network architecture (LAN, WAN, VLAN, SD-WAN, and wireless), firewalls, VPNs, intrusion detection systems (IDS/IPS), and segmentation strategies to secure OT environments and maintain real-time communications.Communicates network security policies and procedures required for regulatory compliance, to end users, control room operators and remote facility staff.Design, install, configure, administer, monitor and optimize server infrastructure, including redundant and highly available virtualized environments, cloud-based solutions, Windows and Linux servers, databases, and storage supporting SCADA and other OT applications in a Critical Infrastructure Protection (CIP) environment.Creates, maintains, removes and audits physical and electronic access to NERC CIP environments.Utilize regulatory and industry standards, frameworks (NERC CIP, NIST 800-53, and DOE C2M2), to identify capabilities and technologies needed to provide enhanced cyber defenses.Conduct penetration tests, vulnerability scans, risk assessments, and regular audits to protect OT assets and provide recommendations and plans to mitigate identified concerns.Lead the development, execution and testing of incident response (IR), disaster recovery (DR) and business continuity (BCP) plans. Provide subject matter expertise during cyber incidents, response and remediation.Work closely with System Control, SCADA Engineers, IT Security, and external vendors to implement secure, scalable solutions.Develops and follows processes and procedures for network systems change management, configuration control, preventative maintenance, access control in accordance with GRU documented policies and the NERC Critical Infrastructure Protection (CIP) requirements.Participates in Operational Technology (OT) feasibility studies, capacity planning, performance analysis and fine-tuning, new technology evaluation, new systems and applications technical requirements specifications and review.**NON-ESSENTIAL JOB FUNCTIONS**Conducts research on emerging products, services, protocols, and standards in support of network component procurement, enhancements and development efforts.Performs cost-benefit and return-on-investment analyses for proposed network components to aid management in making implementation decisions.Performs other related duties as assigned.Attends required on-the-job or coursework training.Attends work on a continuous and regular basis.Drives to remote locations.**QUALIFICATIONS***To perform this job successfully, an individual must be able to perform each essential job function satisfactorily.
Below are the required education, experience, knowledge, skills and abilities to perform the essential functions.***EDUCATION AND EXPERIENCE**Bachelor's degree from an accredited four-year college or university with major course work in computer science, information systems, network engineering, cybersecurity or related field; and four (4) years of experience in at least two of the following areas of: data communications, computer networks/systems/security, communication projectsor an Associate degree and six (6) years of experience in at least two of the following areas of: data communications, computer networks/systems/security, communication projects,or an equivalent combination of education, training and experience which provides the required knowledge, skills and abilities.**CERTIFICATIONS OR LICENSES****Licenses**A valid Florida Driver License is required at time of appointment and at all times while employed in this classification. **Certifications**Firewall certification, Security+ for network knowledge.Microsoft Certified: Azure Administrator Associate, Virtualization certification, or Linux LPIC for system expertise.GIAC Global Industrial Cyber Security Professional (GICSP) or ISA/IEC 62443 for OT security knowledge.ITIL Certification for process management.**KNOWLEDGE, SKILLS AND ABILITIES**Working knowledge of OT protocols (ICCP, DNP3, Modbus, OPC) and other industrial communication standards.Proficiency in firewalls, IDS/IPS, SIEM, and access control strategies for critical infrastructure.Strong virtualization experience with virtualized OT environments.Leadership and process management skills to drive OT initiatives and mentor new employees.Ability to analyze and mitigate cyber threats in OT environment.Ability, experience and willingness to observe all proper and safe work practices and use of tools, communication and testing equipment to ensure the safety of systems, hardware, self and others.Ability, experience and willingness to work without direct supervision and to #J-18808-Ljbffr
Work is performed on-site and off-site in a secure, monitored environment 24/7/365.
This role supports the reliability, cybersecurity, and regulatory compliance of the bulk electric system, real-time operational systems including SCADA, ICCP, virtualization, and secure communication paths necessary to deliver energy services. Work requires a key technical expert supporting design, security, administration and optimization of Operational Technology and systems supporting critical infrastructure.This position requires exceptional expertise in network engineering, system administration and cybersecurity within an energy utility or critical infrastructure environment. The incumbent will lead high-impact projects, improve system resilience, and drive adherence to compliance with NERC CIP, NIST and other industry standards while working under minimal supervision. Work in this class is distinguished from higher classes by its lack of supervisory and design responsibility, and from lower classes by its advanced technical and analytical knowledge and skill in communication/data networks, virtual infrastructure and system security monitoring software.**EXAMPLES OF WORK\*\****\*\*This section of the job description is not intended to be a comprehensive list of duties and responsibilities of the position.
The omission of a specific job function does not absolve an employee from being required to perform additional tasks incidental to or inherent in the job.
Performance of lower-level duties may be required.***ESSENTIAL JOB FUNCTIONS**Depending on area of assignment, incumbents will have skillsets in one or more of the following areas:Design, implement, and optimize high-availability network architecture (LAN, WAN, VLAN, SD-WAN, and wireless), firewalls, VPNs, intrusion detection systems (IDS/IPS), and segmentation strategies to secure OT environments and maintain real-time communications.Communicates network security policies and procedures required for regulatory compliance, to end users, control room operators and remote facility staff.Design, install, configure, administer, monitor and optimize server infrastructure, including redundant and highly available virtualized environments, cloud-based solutions, Windows and Linux servers, databases, and storage supporting SCADA and other OT applications in a Critical Infrastructure Protection (CIP) environment.Creates, maintains, removes and audits physical and electronic access to NERC CIP environments.Utilize regulatory and industry standards, frameworks (NERC CIP, NIST 800-53, and DOE C2M2), to identify capabilities and technologies needed to provide enhanced cyber defenses.Conduct penetration tests, vulnerability scans, risk assessments, and regular audits to protect OT assets and provide recommendations and plans to mitigate identified concerns.Lead the development, execution and testing of incident response (IR), disaster recovery (DR) and business continuity (BCP) plans. Provide subject matter expertise during cyber incidents, response and remediation.Work closely with System Control, SCADA Engineers, IT Security, and external vendors to implement secure, scalable solutions.Develops and follows processes and procedures for network systems change management, configuration control, preventative maintenance, access control in accordance with GRU documented policies and the NERC Critical Infrastructure Protection (CIP) requirements.Participates in Operational Technology (OT) feasibility studies, capacity planning, performance analysis and fine-tuning, new technology evaluation, new systems and applications technical requirements specifications and review.**NON-ESSENTIAL JOB FUNCTIONS**Conducts research on emerging products, services, protocols, and standards in support of network component procurement, enhancements and development efforts.Performs cost-benefit and return-on-investment analyses for proposed network components to aid management in making implementation decisions.Performs other related duties as assigned.Attends required on-the-job or coursework training.Attends work on a continuous and regular basis.Drives to remote locations.**QUALIFICATIONS***To perform this job successfully, an individual must be able to perform each essential job function satisfactorily.
Below are the required education, experience, knowledge, skills and abilities to perform the essential functions.***EDUCATION AND EXPERIENCE**Bachelor's degree from an accredited four-year college or university with major course work in computer science, information systems, network engineering, cybersecurity or related field; and four (4) years of experience in at least two of the following areas of: data communications, computer networks/systems/security, communication projectsor an Associate degree and six (6) years of experience in at least two of the following areas of: data communications, computer networks/systems/security, communication projects,or an equivalent combination of education, training and experience which provides the required knowledge, skills and abilities.**CERTIFICATIONS OR LICENSES****Licenses**A valid Florida Driver License is required at time of appointment and at all times while employed in this classification. **Certifications**Firewall certification, Security+ for network knowledge.Microsoft Certified: Azure Administrator Associate, Virtualization certification, or Linux LPIC for system expertise.GIAC Global Industrial Cyber Security Professional (GICSP) or ISA/IEC 62443 for OT security knowledge.ITIL Certification for process management.**KNOWLEDGE, SKILLS AND ABILITIES**Working knowledge of OT protocols (ICCP, DNP3, Modbus, OPC) and other industrial communication standards.Proficiency in firewalls, IDS/IPS, SIEM, and access control strategies for critical infrastructure.Strong virtualization experience with virtualized OT environments.Leadership and process management skills to drive OT initiatives and mentor new employees.Ability to analyze and mitigate cyber threats in OT environment.Ability, experience and willingness to observe all proper and safe work practices and use of tools, communication and testing equipment to ensure the safety of systems, hardware, self and others.Ability, experience and willingness to work without direct supervision and to #J-18808-Ljbffr