CYBERSECURITY ENGINEER - 72004172

About The Position

Requirements

• Enterprise cybersecurity governance, risk management, threat analytics, cyber intelligence, and incident response principles.
• SOC operations, telemetry, advanced detection analytics, and operational workflows.
• Enterprise architecture frameworks and standards (TOGAF, SOA, OCSF, Cloud Architecture Frameworks).
• Cloud architectures (IaaS, PaaS, SaaS), multi-cloud governance, and security practices.
• Relevant statutes, regulations, and administrative rules, including s. 282.318 and s. 282.3185, F.S., and Chapter 60GG, F.A.C.
• Leading multi-disciplinary teams and building high-performing organizational cultures.
• Planning, coordinating, and executing enterprise-scale cybersecurity and modernization programs.
• Communicating complex technical, operational, and strategic concepts to executive leadership and stakeholders.
• Coordinating cross-agency initiatives and aligning diverse technical teams with enterprise priorities.
• Make timely, high-impact decisions during cybersecurity incidents and enterprise initiatives.
• Build and sustain collaborative relationships with executive leadership, agency partners, and external stakeholders.
• Drive adoption of modern technology, architecture, and cybersecurity practices statewide.
• Integrate insights from analytics, threat intelligence, and operational experience into enterprise security operations.
• Anticipate emerging threats, technology changes, and organizational needs to ensure readiness and continuous improvement.
• Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, or a related field; graduate degree preferred.
• 10+ years of progressively responsible IT/cybersecurity experience, including at least 5 years in a leadership role overseeing enterprise security, SOC, or architecture functions.
• Demonstrated experience managing multi-disciplinary teams in large-scale government, regulated, or enterprise environments.
• Ability to sit for extended periods of time.
• Ability to stand for extended periods of time.
• Ability to drive and/or fly for long distances.
• Ability to lift, push and pull up to 30lbs.

Nice To Haves

• Relevant industry certifications preferred, such as CISSP, CISM, ISSMP, or CCISO.

Responsibilities

• Implement and maintain configurations for security tools and integrations in alignment with established standards and architecture.
• Support deployment, updates, and lifecycle management of detections, data sources, and platform components.
• Assist in integrating new telemetry sources and security capabilities into existing platforms.
• Follow established change management and configuration management processes.
• Configure, maintain, and support enterprise security tools, including SIEM, data platforms, SOAR, and related detection and telemetry systems.
• Support ingestion, parsing, normalization, and retention of security telemetry to ensure data is usable for detection and investigation.
• Monitor performance and availability of security tooling and identify issues impacting SOC operations.
• Assist in evaluating telemetry sources for relevance, quality, and operational usefulness.
• Develop, implement, and maintain SIEM detections using structured detection logic and defined standards.
• Support tuning and validation of detection rules to improve accuracy, reduce false positives, and ensure operational effectiveness.
• Assist in translating detection requirements into platform-specific implementations.
• Support testing and validation of detections and telemetry pipelines in development and production environments.
• Support day-to-day engineering operations that enable SOC detection, response, and analytic workflows.
• Troubleshoot and resolve technical issues related to security tools, integrations, and telemetry pipelines.
• Assist in root-cause analysis of detection failures, data gaps, or platform issues.
• Provide technical support during incident response activities where tooling or telemetry expertise is required.
• Support enterprise-wide incident response leadership and support in alignment with statutory requirements and best practices.
• Leverage cyber intelligence and advanced analytics to proactively identify emerging risks and guide improvements in detection and response capabilities.
• Act as the executive liaison to agency leadership and external partners, including FDLE, DEM, and other public-sector entities.
• Coordinate cross-functional initiatives and advise agencies on technical investments, modernization, and security priorities.
• Establish the security and modernization advisory capability to assist enterprise or local entities with solving complex technical challenges.
• Provide guidance, performance management, professional development, and succession planning for SOC, engineering, and architecture teams.
• Manage program budgets, resource allocation, and operational performance metrics to ensure effective delivery of enterprise objectives.
• Foster a culture of accountability, collaboration, operational excellence, and continuous improvement across cybersecurity and enterprise programs.
• Perform other duties as assigned.

Benefits

• The State of Florida supports a Drug-Free workplace.