Sr. Cyber Security Engineer

Position Summary

This is a non-merit, employment-at-will contract position.

The Senior IT Cyber Security Engineer is a critical role in protecting WSSC Water's digital assets, infrastructure, and data from cyber threats. This position is responsible for designing, implementing, and managing advanced security solutions to protect enterprise systems, networks, and data across on-premise, cloud, and hybrid environments. This role involves threat assessments, vulnerability management, incident response, security architecture and security operations.

Essential Functions

• Configure test, implement, deploy, maintain, review, and administer the infrastructure hardware and software
• Lead complex security engineering projects from planning through execution
• Develop and maintain runbooks for security operations and incident handling
• Integrate security controls in CI/CD pipeline, SDLC and cloud environments
• Configure and tune SIEM and other security monitoring tools for optimal detection
• Monitor network activity and collaborate with the SOC/Security Team to recommend log sources for ingestion, ensuring comprehensive visibility.
• Identify and prioritize data required for Business Intelligence (BI) tools to support cross-functional team analysis and reporting
• Develop / write and maintain business, systems, and information processes to support enterprise mission needs; develops information technology (IT) rules and requirements that describe baseline and target architectures
• Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) for the various Assessment and Architectural review Authorization (A&A) efforts
• Integrate cybersecurity engineering responsibilities into the design and deployment of new networks, technologies, and operations across all environments, including business IT, operational technology (OT)/SCADA systems, and physical infrastructure
• Mentor team members and delegate tasks effectively to support professional development and ensure timely project completion

Other Functions

Performs other duties as assigned by the Deputy Director of Cyber Security Services or the Chief Information Officer.

Work Environment And Physical Demands

Business casual office environment

Required Knowledge, Skills, And Abilities

• Knowledge of computer networking concepts and protocols, and network security methodologies (e.g. Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware).
• Deep understanding of cybersecurity frameworks (e.g., NIST CSF, CIS Controls)
• Experience with security tools: SIEMS (e.g. Splunk), EDR (e.g., Sentinel One, Purple AI), IDS/IPS, DLP, and vulnerability scanners.
• Proficiency in scripting (e.g., PowerShell, Bash, Python) for automation and integration
• Understanding of identity and access management (IAM), PKI and authentication protocols
• High level of understanding with secure architecture principles, zero trust models, and defense-in-depth strategies
• Strong Collaboration and interpersonal skills, with the ability to work effectively across technical and non-technical teams
• Excellent communication and presentation skills, including the ability to clearly articulate complex technical concepts to stakeholders at all levels
• Excellent problem-solving, analytical, and critical thinking skills.
• Ability to manage multiple priorities and projects in a fast-paced environment
• Knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
• Knowledge of new and emerging information technology (IT) and cybersecurity technologies

Minimum Education, Experience Requirements

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related field.
• 5+ years experience in cybersecurity or information security
• Proven track record in:
  • Designing, implementing, and maintaining security architecture
  • Leading incident response and threat mitigation efforts
  • Managing and securing complex enterprise environments (cloud, hybrid, on-prem)
  • Risk assessment and compliance (NIST, ISO 27001, CIS, SOC 2, etc.)
  • Security Operations (SIEM, EDR, IDS/IPS, SOAR)
  • Cloud security (AWS, Azure, GCP)
  • Network and endpoint security
  • Scripting (Python, Bash, PowerShell)
  • Deep experience designing and implementing security architecture
  • Leadership in incident response and threat hunting
  • Strong grasp of risk management and compliance
  • Log analysis, threat hunting, and forensics

OR

• High School Diploma or equivalent
• 9+ years experience in cybersecurity or information security
• Proven track record in:
  • Designing, implementing, and maintaining security architecture
  • Leading incident response and threat mitigation efforts
  • Managing and securing complex enterprise environments (cloud, hybrid, on-prem)
  • Risk assessment and compliance (NIST, ISO 27001, CIS, SOC 2, etc.)
  • Security Operations (SIEM, EDR, IDS/IPS, SOAR)
  • Cloud security (AWS, Azure, GCP)
  • Network and endpoint security
  • Scripting (Python, Bash, PowerShell)
  • Deep experience designing and implementing security architecture
  • Leadership in incident response and threat hunting
  • Strong grasp of risk management and compliance
  • Log analysis, threat hunting, and forensics

Additional Requirements

Completion of the WSSC Water Financial Disclosure statement within 30 days of employment and annually thereafter;

Preferences

• CISSP
• Experience in ICS/SCADA security environment

Salary

$135,814 - $231,251

Posting Detail Information

EEO Statement

AN EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER

It is the policy of the Commission to select new employees and toプロmote current employees without regard to race, sexual orientation, sex, religion, national origin, marital status, or handicap. The Commission does not discriminate against qualified individuals with a disability and will make reasonable accommodation for any disability that does not result in undue hardship for the Commission.

Close Date

05/06/2026

Open Until Filled

No

Special Instructions to Applicants

All applicants selected will be subject to drug screening and a background check/verification.