Utah Staffing
Airport Cybersecurity Engineer I
Under the guidance of the CISO/Director of IT and in collaboration with the Cybersecurity Engineering Manager of Salt Lake City, the Cybersecurity Engineer's role is to ensure that cybersecurity projects meet objectives across the organization and ensure the security, stability, and integrity of network services. Focus is not only limited to assessing vulnerabilities but also how those risks could be mitigated, responding to security incidents, as well as training and mentoring fellow employees on security. Works to ensure the security of Salt Lake City's business information, employee data, and constituent data throughout the entire network. Join Salt Lake City Department of Airports as a Cybersecurity Engineer I and help safeguard the technology backbone of one of the nation's most dynamic airport systems. In this role, you'll play a key part in protecting critical infrastructure, data, and systems from emerging threats while supporting a culture of security awareness across the organization. From assessing vulnerabilities and responding to incidents to implementing cutting-edge network defenses, you'll contribute directly to the City's mission of secure, reliable operations. This position offers the opportunity to grow your technical expertise, lead impactful projects, and stay at the forefront of cybersecurity innovation in the public sector. Position Salary Range: $101,623 to $135,498 annually based on qualifications and experience. This position is eligible for full city benefits, including: Health Insurance (95% of premium paid by city) Dental, Vision and Life Insurance Paid vacation and personal leave 6-12 weeks of paid parental leave available Retirement contributions toward a pension plan and/or 401(k) A robust Employee Assistance Plan (EAP) Up to $4,000 tuition reimbursement annually Discounted supplemental benefits like pet insurance and legal services Typical Duties: Collaborate with executive management and department leaders to assess near- and long-term cybersecurity threat prevention and network capacity needs. Create and maintain documentation as it relates to firewalls, security policy, and network security. Develop, implement, and maintain policies, procedures, and associated training plans for security and network administration, usage, and network redundancy. Architect, install, maintain, test, troubleshoot and repair enterprise-class network equipment, LANs, WANs, VLANs, wireless networks, firewalls, servers, routers, switches, and other hardware. Implement and maintain a multilayer security infrastructure by supporting firewalls, IDS/IPS, DNS, security products (app control, EDR, PAM), site-to-site VPNs, Activate Directory permissions and group policy, and remote-access VPNs. Conduct research on security, intrusion prevention, and network products, services, protocols, and standards to remain abreast of developments in the security industry, networking industry, and cloud services. Configure networks to ensure their smooth and reliable operation for fulfilling business objectives, processes, and security. Troubleshooting security infrastructure and device outages; scheduling upgrades; network optimization. Implement Identity and access management, oversee employee access related to employee onboarding and separation. Implement security intrusion testing by reviewing policies, procedures and facilitating network penetration testing both internally and externally. Implement and operate security software SIEM/SOC tools by configuring, managing, and tuning security rules to assign risk for alerting. Manage approved application lists including monitoring CVE reports and security updates to ensure endpoints are properly secured. Implement, maintain, and modify MDM (Mobile Device Management) and MAM (Mobile Application Management) policies for managing control to company resources. Create and manage Single Sign-On and SAML applications, including access assignments and Certificate rotation. Conduct annual organization wide access reviews campaigns to enforce Least Privileged Access. Design and manage cloud app infrastructure including connectivity and security between public facing web apps, API managers, and databases as well as communication to on-premises resources. Diagram and document cloud specific infrastructure and security resources. Implement solutions between software developers and infrastructure teams as well as providing best security practices. Identify and adopt cybersecurity practices, like MFA and zero trust, into the policies and objectives of the airport such as those from recognized organizations such as NIST, CISA, and the Utah Cyber Center. Remain up to date on ongoing threats to government entities and airports and create plans in accordance with recognized threat vectors. Work with auditors and regulatory organizations to keep the airport in compliance with governing policies and secure based on their recommendations and requirements. Minimum Qualifications: Any combination of 4 years of related experience and/or education in the administration of an enterprise class networking environment. Possession of one (or more) of the following certifications may be required: Cisco Certified Network Associate (CCNA), CompTIA Security+, or CompTIA Network+. Other relevant security certifications may be substituted with Management approval. Must be able to demonstrate proficiency in project and resource management. Must show accountability and responsibility to see all projects and issues to an end resolution. Must be able to effectively prioritize tasks in a high-pressure environment. Display a knowledge of cybersecurity, intrusion prevention, incident response, recovery, SIEM tools, email security, cloud security and penetration testing. Display a knowledge of ip addressing, subnetting and core routing, switching design and routing principles. Knowledge of Best practices and related technologies including, but not limited to firewalls, mail filtering, web filtering, DNS/DNS filtering, routers, switches, and leased lines. Display a knowledge of the following: Azure Active Directory / Entra Id, Intune and other Microsoft security products. Experience working with cloud applications / infrastructure security and implementation. Knowledge of NIST and PCI security standards as well as a familiarity with CJIS/FBI/BCI security policies. Must be a problem solver with excellent hardware and software troubleshooting knowledge and experience. Experience in implementing and managing SIEM and SOC systems desired. Ability to communicate clearly, both verbally and in written form and demonstrate strong customer service orientation. Experience working in a team-oriented, collaborative environment. Working Conditions: Moderate physical effort. Comfortable working conditions, handling moderate weights, intermittent sitting, standing and walking. Intermittent exposure to moderate noise levels. May require 24/7 support for mission critical systems. Exposure to stressful situations. Career Ladder: After all qualification requirements for Cyber Security Engineer II are met, incumbent may be promoted to a Cyber Security Engineer II with approval of CIO and Department Head, provided sufficient funding is appropriated for the impacted budget year. The above statements are intended to describe the general nature and level of work being performed by persons assigned to this job. They are not intended to be an exhaustive list of all duties, responsibilities and skills required of personnel so classified. All requirements are subject to possible modification to reasonably accommodate individuals with disabilities. POSITION TYPE Full-Time DEPARTMENT Airport Full Time/Part Time: Full Time Scheduled Hours: 40 Salt Lake City is a place where your skills and dedication directly contribute to the community. With a team serving over 200,000 residents, we take pride in delivering meaningful workfrom maintaining infrastructure to shaping public programswith integrity and professionalism. We value experience, accountability, and results. Our organization recognizes talent and rewards contribution, offering employees opportunities to grow, lead, and make a lasting difference.
Under the guidance of the CISO/Director of IT and in collaboration with the Cybersecurity Engineering Manager of Salt Lake City, the Cybersecurity Engineer's role is to ensure that cybersecurity projects meet objectives across the organization and ensure the security, stability, and integrity of network services. Focus is not only limited to assessing vulnerabilities but also how those risks could be mitigated, responding to security incidents, as well as training and mentoring fellow employees on security. Works to ensure the security of Salt Lake City's business information, employee data, and constituent data throughout the entire network. Join Salt Lake City Department of Airports as a Cybersecurity Engineer I and help safeguard the technology backbone of one of the nation's most dynamic airport systems. In this role, you'll play a key part in protecting critical infrastructure, data, and systems from emerging threats while supporting a culture of security awareness across the organization. From assessing vulnerabilities and responding to incidents to implementing cutting-edge network defenses, you'll contribute directly to the City's mission of secure, reliable operations. This position offers the opportunity to grow your technical expertise, lead impactful projects, and stay at the forefront of cybersecurity innovation in the public sector. Position Salary Range: $101,623 to $135,498 annually based on qualifications and experience. This position is eligible for full city benefits, including: Health Insurance (95% of premium paid by city) Dental, Vision and Life Insurance Paid vacation and personal leave 6-12 weeks of paid parental leave available Retirement contributions toward a pension plan and/or 401(k) A robust Employee Assistance Plan (EAP) Up to $4,000 tuition reimbursement annually Discounted supplemental benefits like pet insurance and legal services Typical Duties: Collaborate with executive management and department leaders to assess near- and long-term cybersecurity threat prevention and network capacity needs. Create and maintain documentation as it relates to firewalls, security policy, and network security. Develop, implement, and maintain policies, procedures, and associated training plans for security and network administration, usage, and network redundancy. Architect, install, maintain, test, troubleshoot and repair enterprise-class network equipment, LANs, WANs, VLANs, wireless networks, firewalls, servers, routers, switches, and other hardware. Implement and maintain a multilayer security infrastructure by supporting firewalls, IDS/IPS, DNS, security products (app control, EDR, PAM), site-to-site VPNs, Activate Directory permissions and group policy, and remote-access VPNs. Conduct research on security, intrusion prevention, and network products, services, protocols, and standards to remain abreast of developments in the security industry, networking industry, and cloud services. Configure networks to ensure their smooth and reliable operation for fulfilling business objectives, processes, and security. Troubleshooting security infrastructure and device outages; scheduling upgrades; network optimization. Implement Identity and access management, oversee employee access related to employee onboarding and separation. Implement security intrusion testing by reviewing policies, procedures and facilitating network penetration testing both internally and externally. Implement and operate security software SIEM/SOC tools by configuring, managing, and tuning security rules to assign risk for alerting. Manage approved application lists including monitoring CVE reports and security updates to ensure endpoints are properly secured. Implement, maintain, and modify MDM (Mobile Device Management) and MAM (Mobile Application Management) policies for managing control to company resources. Create and manage Single Sign-On and SAML applications, including access assignments and Certificate rotation. Conduct annual organization wide access reviews campaigns to enforce Least Privileged Access. Design and manage cloud app infrastructure including connectivity and security between public facing web apps, API managers, and databases as well as communication to on-premises resources. Diagram and document cloud specific infrastructure and security resources. Implement solutions between software developers and infrastructure teams as well as providing best security practices. Identify and adopt cybersecurity practices, like MFA and zero trust, into the policies and objectives of the airport such as those from recognized organizations such as NIST, CISA, and the Utah Cyber Center. Remain up to date on ongoing threats to government entities and airports and create plans in accordance with recognized threat vectors. Work with auditors and regulatory organizations to keep the airport in compliance with governing policies and secure based on their recommendations and requirements. Minimum Qualifications: Any combination of 4 years of related experience and/or education in the administration of an enterprise class networking environment. Possession of one (or more) of the following certifications may be required: Cisco Certified Network Associate (CCNA), CompTIA Security+, or CompTIA Network+. Other relevant security certifications may be substituted with Management approval. Must be able to demonstrate proficiency in project and resource management. Must show accountability and responsibility to see all projects and issues to an end resolution. Must be able to effectively prioritize tasks in a high-pressure environment. Display a knowledge of cybersecurity, intrusion prevention, incident response, recovery, SIEM tools, email security, cloud security and penetration testing. Display a knowledge of ip addressing, subnetting and core routing, switching design and routing principles. Knowledge of Best practices and related technologies including, but not limited to firewalls, mail filtering, web filtering, DNS/DNS filtering, routers, switches, and leased lines. Display a knowledge of the following: Azure Active Directory / Entra Id, Intune and other Microsoft security products. Experience working with cloud applications / infrastructure security and implementation. Knowledge of NIST and PCI security standards as well as a familiarity with CJIS/FBI/BCI security policies. Must be a problem solver with excellent hardware and software troubleshooting knowledge and experience. Experience in implementing and managing SIEM and SOC systems desired. Ability to communicate clearly, both verbally and in written form and demonstrate strong customer service orientation. Experience working in a team-oriented, collaborative environment. Working Conditions: Moderate physical effort. Comfortable working conditions, handling moderate weights, intermittent sitting, standing and walking. Intermittent exposure to moderate noise levels. May require 24/7 support for mission critical systems. Exposure to stressful situations. Career Ladder: After all qualification requirements for Cyber Security Engineer II are met, incumbent may be promoted to a Cyber Security Engineer II with approval of CIO and Department Head, provided sufficient funding is appropriated for the impacted budget year. The above statements are intended to describe the general nature and level of work being performed by persons assigned to this job. They are not intended to be an exhaustive list of all duties, responsibilities and skills required of personnel so classified. All requirements are subject to possible modification to reasonably accommodate individuals with disabilities. POSITION TYPE Full-Time DEPARTMENT Airport Full Time/Part Time: Full Time Scheduled Hours: 40 Salt Lake City is a place where your skills and dedication directly contribute to the community. With a team serving over 200,000 residents, we take pride in delivering meaningful workfrom maintaining infrastructure to shaping public programswith integrity and professionalism. We value experience, accountability, and results. Our organization recognizes talent and rewards contribution, offering employees opportunities to grow, lead, and make a lasting difference.