Security Engineer

City of Gainesville•Gainesville, FL

1d•$103,646 - $169,053

About The Position

The City of Gainesville is seeking a skilled Security Engineer to join our Technology department. This role is vital to ensuring the confidentiality, integrity, and availability of city systems and data. The ideal candidate will bring deep expertise in core IT security practices and demonstrate familiarity with Criminal Justice Information Services (CJIS) compliance standards. This role is ideal for someone who thrives on building new technology solutions from the ground up, enjoys continuous learning, and is passionate about automating operational tasks and scripting to maximize efficiency. We’re looking for a creative problem-solver who can take initiative, work independently, and help modernize our security posture across a mid-sized environment. The successful candidate will have a track record of providing security solutions that enable business outcomes while ensuring confidentiality, integrity, and availability of systems rather than focusing on implementing restrictive controls that hinder operations.

Requirements

Bachelor’s degree from an accredited college or university in cyber security, computer science, management information systems, business administration, or a related field. (or equivalent experience)
Three (3) years of experience in cyber security engineering, preferably with a mid-sized organization.
Strong understanding of network security, identity and access management (IAM), M365 security, cloud security, and vulnerability management.
Familiarity with CIS, NIST, ISO 27001, and other security frameworks.
Proficiency with security tools such as firewalls, endpoint detection and response, network detection and response, SIEM, SOAR, email security and web security gateways.
Proficiency with a scripting language. E.g. Python, PowerShell
Excellent problem-solving, communication, and documentation skills.
Ability to manage confidential information with a high level of discretion and professionalism.
Knowledge of audit processes and the ability to interface with internal/external auditors and regulators.
Knowledge of security performance metrics and reporting tools.
Ability to foster a culture of security while enabling operational excellence through the use of technology and innovation.

Nice To Haves

Experience with CJIS Security Policy implementation and compliance preferred.
Experience working in a government or public sector IT environment preferred.
Certified Information Systems Security Professional (CISSP)
Certified Information Security Manager (CISM)
Certified Ethical Hacker (CEH)
GIAC Security Essentials (GSEC)
CompTIA Security+
Microsoft Certified: Azure Security Engineer Associate

Responsibilities

Design, implement, and manage security solutions to protect city infrastructure, networks, and data.
Monitor and respond to security incidents, vulnerabilities, and threats across systems and applications.
Conduct regular security assessments, audits, and penetration tests to identify risks and recommend mitigation strategies.
Maintain and enforce security policies, procedures, and standards in alignment with CJIS and other regulatory frameworks.
Collaborate with IT teams to integrate security into system architecture, software development, and operational workflows.
Manage endpoint protection, firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM/SOAR platforms, IAM, CASB, MFA, SSO, and more.
Provide training and guidance to staff on cybersecurity best practices and awareness.
Stay current with emerging threats, technologies, and compliance requirements relevant to municipal IT environments and incorporate threat feeds into operational security tooling.
Attends work on a continuous and regular basis.
Performs related duties as required or assigned by the Information Security Officer (ISO)