Sr. Cyber Security Engineer

Sr. Cyber Security Engineer Posting Details Position Information Functional Title Sr. Cyber Security Engineer Recruitment Category Type Standard Functional Category Information Technology Grade IT.17 FLSA Status Exempt Requisition Number 26-0208 Number of Vacancies 1 Job Level Non-Management Job Code N/A Job Description Summary Organization Name Department Office Reports to Deputy Director, Cyber Security Services Division Full or Part Time Full Time If Part Time how many hours per week Regular or Temporary Regular Position End Date (if temporary) Work Schedule Monday - Friday (8 Hours/day) with some on-call requirements Position Location Laurel Position Summary Information General Summary This is a non-merit, employment-at-will contract position. The Senior IT Cyber Security Engineer is a critical role in protecting WSSC Water's digital assets, infrastructure, and data from cyber threats. This position is responsible for designing, implementing, and managing advanced security solutions to protect enterprise systems, networks, and data across on-premise, cloud, and hybrid environments. This role involves threat assessments, vulnerability management, incident response, security architecture and security operations. Essential Functions Configure test, implement, deploy, maintain, review, and administer the infrastructure hardware and software Lead complex security engineering projects from planning through execution Develop and maintain runbooks for security operations and incident handling Integrate security controls in CI/CD pipeline, SDLC and cloud environments Configure and tune SIEM and other security monitoring tools for optimal detection Monitor network activity and collaborate with the SOC/Security Team to recommend log sources for ingestion, ensuring comprehensive visibility. Identify and prioritize data required for Business Intelligence (BI) tools to support cross-functional team analysis and reporting Develop / write and maintain business, systems, and information processes to support enterprise mission needs; develops information technology (IT) rules and requirements that describe baseline and target architectures Document the various security control implementations as well as gather the artifacts that support the Risk Management Framework (RMF) for the various Assessment and Architectural review Authorization (A&A) efforts Integrate cybersecurity engineering responsibilities into the design and deployment of new networks, technologies, and operations across all environments, including business IT, operational technology (OT)/SCADA systems, and physical infrastructure Mentor team members and delegate tasks effectively to support professional development and ensure timely project completion Other Functions Performs other duties as assigned by the Deputy Director of Cyber Security Services or the Chief Information Officer. Work Environment And Physical Demands Business casual office environment Required Knowledge, Skills, And Abilities Knowledge of computer networking concepts and protocols, and network security methodologies (e.g. Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware). Deep understanding of cybersecurity frameworks (e.g., NIST

CSF, CIS

Controls) Experience with security tools: SIEMS (e.g. Splunk), EDR (e.g., Sentinel One, Purple AI), IDS/IPS, DLP, and vulnerability scanners. Proficiency in scripting (e.g., PowerShell, Bash, Python) for automation and integration Understanding of identity and access management (IAM), PKI and authentication protocols High level of understanding with secure architecture principles, zero trust models, and defense-in-depth strategies Strong Collaboration and interpersonal skills, with the ability to work effectively across technical and non-technical teams Excellent communication and presentation skills, including the ability to clearly articulate complex technical concepts to stakeholders at all levels Excellent problem-solving, analytical, and critical thinking skills. Ability to manage multiple priorities and projects in a fast-paced environment Knowledge of risk management processes (e.g., methods for assessing and mitigating risk) Knowledge of new and emerging information technology (IT) and cybersecurity technologies Minimum Education, Experience Requirements Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related field. 5+ years experience in cybersecurity or information security Proven track record in: Designing, implementing, and maintaining security architecture Leading incident response and threat mitigation efforts Managing and securing complex enterprise environments (cloud, hybrid, on-prem) Risk assessment and compliance (NIST, ISO 27001, CIS, SOC 2, etc.) Security Operations (SIEM, EDR, IDS/IPS, SOAR) Cloud security (AWS, Azure, GCP) Network and endpoint security Scripting (Python, Bash, PowerShell) Deep experience designing and implementing security architecture Leadership in incident response and threat hunting Strong grasp of risk management and compliance Log analysis, threat hunting, and forensics OR High School Diploma or equivalent 9+ years experience in cybersecurity or information security Proven track record in: Designing, implementing, and maintaining security architecture Leading incident response and threat mitigation efforts Managing and securing complex enterprise environments (cloud, hybrid, on-prem) Risk assessment and compliance (NIST, ISO 27001, CIS, SOC 2, etc.) Security Operations (SIEM, EDR, IDS/IPS, SOAR) Cloud security (AWS, Azure, GCP) Network and endpoint security Scripting (Python, Bash, PowerShell) Deep experience designing and implementing security architecture Leadership in incident response and threat hunting Strong grasp of risk management and compliance Log analysis, threat hunting, and forensics Additional Requirements Completion of the WSSC Water Financial Disclosure statement within 30 days of employment and annually thereafter; Preferences CISSP Experience in

ICS/SCADA

security environment Salary $135,814 - $231,251 Posting Detail Information EEO Statement

AN EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER

It is the policy of the Commission to select new employees and to promote current employees without regard to race, sexual orientation, sex, religion, national origin, marital status, or handicap. The Commission does not discriminate against qualified individuals with a disability and will make reasonable accommodation for any disability that does not result in undue hardship for the Commission. Close Date 05/06/2026 Open Until Filled No Special Instructions to Applicants