Cyber Security Engineer I
Published Date: Nov 14, 2024
Location: US
Company: Los Angeles Unified School District
SALARY DETAILS
$53.89 - $67.07 Hourly
APPLICATION FILING DATES
Open date: 09/17/24
Close date: Until filled
INFORMATION ABOUT LAUSD
We are LAUSD. We are at the forefront of innovation in public education, focused on a clear and inspiring vision of the future for all of our students as they venture forward on their journey as lifelong learners. Here, you will have the opportunity to exercise your potential in a role supporting the business of education. Our work directly contributes toward the goal of ensuring that our students graduate ready for the world – ready to thrive in college, career and life. LAUSD is the second largest school district in the nation with an enrollment of nearly 575,000 students. We serve an area totaling 710 square miles, with over 1,190 schools and educational centers, and we employ over 74,000 individuals, making us one of the largest employers in our city.
LAUSD Employees: Please be advised that all LAUSD employees must sign in to the GlobalProtect Virtual Private Network (VPN) in order to submit an application from an external network outside of an LAUSD location. For assistance with installing the GlobalProtect virtual network, please contact Information Technology Services at (213) 443-1300 or (213) 241-5200.
BENEFITS
Insurance: Paid premiums for your choice of several medical, dental, vision, and life insurance plans. Retirement: Membership in the California Public Employee Retirement System (CalPERS). Vacation: Full-time employees earn up to two weeks of paid vacation to start. Three weeks after five years of year-round paid service. Paid Holidays: Up to 13 days.
JOB DUTIES/RESPONSIBILITIES
- Analyzes, monitors, and correlates security event information from logs, endpoints, networks, and cloud environments, across multiple systems, applications, and users to detect and mitigate external and internal threats.
- Regularly monitors network security devices and systems to identify false positives and perform tuning to collect the right cyber security-related events.
- Monitors, installs, and upgrades security devices and controls, that manage the flow of information between networks of different trust levels in order to prevent attackers from exploiting District information assets.
- Researches IT security issues and industry trends to make recommendations for internal improvement.
- Implements, maintains, and applies cryptographic protocols, keys, and credentials to secure information in transit and at rest, authenticate machines and users, and sign data.
- Monitors, troubleshoots and maintains messaging systems to identify malicious email attacks and correlate email telemetry with wider security events, behavior analytics, and other threat information to determine if a cyber attack has occurred, is occurring, or will occur.
- Participates in incident response activities and provides security threat analytics in support of Computer Incident Response Team (CIRT).
- Configures, maintains, and monitors endpoint protection controls such as auto-sandboxing, web filtering, and antivirus to prevent, detect, and remove malware.
- May assist higher level engineers with the configuration and validation of Domain Name Server (DNS) requests by creating internal and external A records, internal and external C name aliases, and creating external TXT records.
- Monitors the ongoing operational use of ports, protocols, and services on networked devices in order to prevent potential security risks and vulnerabilities.
- Monitors signs of data exfiltration and escalates for mitigation to ensure the privacy and integrity of sensitive District information.
- May assist with network security device and appliance testing by performing functional reviews, validating findings and implementing remediation processes.
- Performs related duties as assigned.
MINIMUM REQUIREMENTS
Education:
Graduation from a recognized college or university with a bachelor’s degree in computer science or a related field. Qualifying experience in addition to that required may be substituted on a year-for-year basis provided that the requirement of a high school diploma or equivalent is met.
Experience:
Two years of recent experience in the engineering, installation, configuration, and maintenance of security devices for a large organization; such as next-generation firewalls, Virtual Private Networks, intrusion detection/prevention systems, multi-factor authentication, next-generation endpoint security, and Security Information Event Management systems.
Special:
Cisco Certified Network Associate or equivalent certification such Cisco Certified CyberOps Associate is required and must be kept valid during the term of employment.
Information Technology Infrastructure Library (ITIL) Foundation level certification is preferable.
A valid driver’s license to legally operate a motor vehicle in the state of California and the use of a motor vehicle.
Employees in this class may be subject to call at any hour.
DESIRABLE QUALIFICATIONS
Knowledge of:
- Current firewall, VPN, content filtering, and intrusion detection methodologies
- TCP/IP protocols including IP addressing, subnetting and well known ports
- Industry standards for encryption including but not limited to FTP, SFTP and SSH
- Basic networking concepts and services such as DNS, SMTP, HTTP, and HTTPS
- Risk and threat assessment processes and practices
- Malware such as worms, viruses and Trojans
- Unsecure protocols ports and services
- Incident response procedures and processes
- Windows and Linux security processes
- SEIM tool or other similar correlational tools
Ability to:
- Develop, analyze, and maintain tools that support and automate processes for software product release
- Install, configure and monitor network security devices, including firewalls, VPN, content filtering, and Intrusion Detection Systems
- Analyze and diagnose malfunctions and perform required changes
- Learn characteristics of new security threats, vulnerabilities, and countermeasure techniques and technology
- Effectively communicate technical information to all levels of staff
- Maintain effective working relationships
- Identify and analyze trends related to threats
- Conduct WireShark captures
- Maintain up-to-date detailed knowledge of the IT Security industry including awareness of new or revised security solutions, improved security processes, and the deployment of new attacks and threat vectors
EMPLOYMENT SELECTION PROCESS
The selection process for this position will tentatively consist of the following: Technical Project and Technical Interview
Please be sure to include correspondence from @lausd.net and @successfactors.com as an approved sender so that messages aren't accidentally placed into your spam/junk e-mail folder. For more information about the LAUSD employment assessment process, visit the hiring process section of our website at https://careers.lausd.org/.
APPLICATION PROCESS
ADDITIONAL POSTING INFORMATION
The Los Angeles Unified School District is committed to providing a working and learning environment free from discrimination, harassment, intimidation, abusive conduct, or bullying. The District prohibits discrimination, harassment, intimidation, abusive conduct or bullying based on actual or perceived race or ethnicity, gender/sex (including gender identity, gender expression, pregnancy, childbirth, breastfeeding/lactation status and related medical conditions), sexual orientation, religion, color, national origin (including language use restrictions and possession of a driver’s license issued under Vehicle Code), ancestry, immigration status, physical or mental disability (including clinical depression and bipolar disorder, HIV/AIDS, hepatitis, epilepsy, seizure disorder, diabetes, multiple sclerosis, and heart disease), medical condition (cancer related and genetic characteristics), military and veteran status, marital status, registered domestic partner status, age (40 and above), genetic information, political belief or affiliation (unless union related), a person's association with a person or group with one or more of these actual or perceived characteristics, or any other basis protected by federal, state or local law, ordinance, or regulation in any program or activity it conducts or to which it provides significant assistance. For inquiries or complaints contact our Equal Opportunity Section, (213) 241-7685. Selection and promotion are based on a competitive employment assessment process. Candidates who pass all parts of the assessment process are placed on a hiring (eligibility) list based on their assessment score. Hiring departments may make job offers to candidates on the top three ranks of the hiring list. Eligibility typically lasts for 12 months. The hiring list resulting from this assessment process may be used to fill open positions in related job classifications.
Follow us on:
https://twitter.com/lausdjobs
https://www.facebook.com/LAUSDjobs/
https://www.linkedin.com/groups/1997274
https://www.instagram.com/lausdjobs/