Network Security and Firewall Engineer

Job Description

$43.12 - $65.93 Hourly

Note : The normal starting pay for this position is the minimum of the pay range listed above. A higher rate of pay may be considered, dependent on the qualifications and experience of the selected applicant and/or the City's step placement policy.

Important APPLICANT Information:
•  When completing the application, applicants will be asked to respond to application questions. These application questions are based on the Job Requirements for the position.
•  Completion of the application questions is required.
•   Applicant responses to the application questions must specifically answer the questions asked.
•   Responses to application questions must be supported by work history/information listed on the application/resume, sufficient to demonstrate qualifications for the position.
•  Applications may not be reviewed if specific responses to application questions have not been provided.
•  Each application submission is reviewed independently. Important BENEFITS Information:
•  The City offers competitive pay and robust benefits: SAFETY SENSITIVE

This job classification has been designated as a safety sensitive job classification in accordance with the Oklahoma Medical Marijuana and Patient Protection Act, 63 O.S., 427.1 et seq., (OSCN 2019), effective August 29, 2019. This means employees in this job classification can be subject to disciplinary action up to and including termination if they test positive for marijuana components or metabolites, even if they possess a medical marijuana license.

This job classification has been designated as a cyber security sensitive job classification effective June 26, 2023 , in order to comply with United States Department of Justice, Federal Bureau of Investigation, Criminal Justice Information Services (CJIS) Division's Criminal Justice Information Services Security Policy (Version 5.9.2, 12/07/2022), 5.12 Policy Area 12 Personnel Security. The policy requires national fingerprint-based records checks be conducted prior to granting access to criminal justice information for all personnel who have unescorted access to unencrypted Criminal Justice Information (CJI) or unescorted access to physically security locations or controlled areas (during times of CJI processing). Employees in this job classification will be subject to a Criminal Justice Information Services (CJIS) Interstate Identification Index (III) Fingerprint Background check after receiving a conditional offer of employment. Additionally, employees in this job classification must complete the required CJIS Security and Privacy Training and pass the online certification test.

JOB SUMMARY

The Network Security and Firewall Engineer is located in the Technology Infrastructure Division of the I nformation Technology Department within the City of Oklahoma City and is under the direction of the Information Technology Business Systems Manager. This position is responsible for managing and maintaining the City of Oklahoma City firewall infrastructure to protect the network from external threats, ensuring network security, and implementing security policies and best practices. A Network and Firewall Engineer is also responsible for designing, implementing, configuring, and maintaining the firewall infrastructure to ensure the security and integrity of the network. This role is essential for safeguarding sensitive data, preventing unauthorized access, and mitigating security threats.

VETERANS PREFERENCE

Honorably discharged veterans of the United States Active Duty Armed Forces, National Guard, and Reserve Forces who are not currently employed full-time by the City of Oklahoma City and who meet the qualifications for the position shall be given preference. To receive preference, veterans must submit verification of honorable discharge from the United States military service (Department of Defense Form DD214 or NGB Form 22) prior to the closing date of the vacancy announcement.

ESSENTIAL JOB FUNCTIONS
•  Configures, installs, and maintains firewall hardware and software solutions, including next-generation firewalls (NGFW), to protect the organization's network.
•  Develops, implements, and enforces firewall security policies, rules, and access controls to safeguard sensitive data and ensure compliance with industry regulations.
•  Monitors network traffic for suspicious activities, security breaches, and vulnerabilities using intrusion detection and prevention systems (IDPS).
•  Responds to security incidents and breaches promptly, investigates root causes, and implements corrective actions to prevent future occurrences.
•  Analyzes firewall logs and generates reports to identify security threats, trends, and potential vulnerabilities.
•  Manages user access and permissions by configuring VPNs, ACLs, and other access control mechanisms.
•  Ensures firewall hardware and software are up to date by applying patches, firmware updates, and security patches.
•  Implements network segmentation to isolate critical assets and limits lateral movement in the event of a breach.
•  Monitors and optimizes firewall performance to ensure it does not adversely affect network speed or latency.
•  Maintains accurate documentation of firewall configurations, policies, and network diagrams for reference and audit purposes.
•  Collaborates with other IT teams, such as network engineers, system administrators, and security analysts, to ensure a cohesive and secure network environment.
•  Provides training and guidance to employees and IT staff on firewall security best practices and security awareness.
•  Configures and monitors firewalls.
•  Monitors daily usage, performs regular maintenance, and patches as needed.
•  Troubleshoots complex errors and configurations to determine root cause.
•  Creates documentation of procedures, configurations, and network topologies.
•  Stays abreast of changes and processes for compliance to ensure requirements are met. MINIMUM QUALIFICATIONS
•  Bachelor's degree in Computer Science, Information Technology, or a related field.
•  Three (3) years firewall administration and five (5) years Information Technology experience.
•  Possession of valid industry certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Firewall Administrator (CFA). KNOWLEDGE, SKILLS, AND ABILITIES
•  Knowledge and experience in firewall administration, network security, and intrusion detection/prevention systems.
•  Knowledge of Firewalls (e.g., Cisco ASA, Palo Alto, Juniper, Fortinet), Intrusion Detection and Prevention Systems (IDPS), VPN technologies, Network monitoring and logging tools, Security Information and Event Management (SIEM) systems, Access Control Lists (ACLs) and Network segmentation techniques.
•  Knowledge of firewall technologies, including both hardware and software solutions; staying abreast of the latest cybersecurity threats and industry best practices.
•  Knowledge of network protocols, routing, and switching.
•  Skill in analysis and problem-solving to identify and respond to security threats.
•  Skill in verbal and written communications.
•  Ability to work in a fast-paced, dynamic environment and adapt to changing security threats. COMPETENCIES
•   Execution and Results: (1) Sets well-defined and realistic goals and high standards of performance for self or self and others; (2) displays a high level of initiative, effort, and commitment toward performing work; (3) completes assignments in a thorough, accurate, and timely manner, and delivers results; (4) works with minimal supervision, is motivated to achieve, and demonstrates responsible behavior; (5) demonstrates understanding of all aspects of the job and application of accrued knowledge in carrying out duties and responsibilities; technical knowledge; skill in the techniques, equipment, procedures, and work required; (6) recognizes opportunities and takes action for improvement to programs, policies, procedures, practices, and processes; (7) understands and is able to apply the principles, methods, and tools of quality improvement; (8) collects, examines, analyzes, and interprets data from a variety of sources; (9) makes data-driven recommendations/decisions and achieves results; (10) effectively achieves results through others to achieve the Department or City's mission.
•   Judgment: (1) Plans, coordinates, and executes business functions efficiently, effectively, and in a fiscally responsible manner; (2) identifies risks and develops and implements measures to avoid, mitigate, or minimize those risks; (3) makes effective, timely, well-informed, objective, and transparent work-related decisions; (4) exhibits emotional maturity and stability, effectively manages conflict, and remains optimistic and calm during stressful situations; (5) uses resources effectively to achieve results aligned with organizational priorities; (6) applies understanding of financial management/budgeting principles to ensure decisions are fiscally sound and responsible and in accordance with policies, procedures, processes, rules, regulations, and laws; (7) makes business decisions that drive positive, fiscally responsible performance; (8) manages ambiguity, business insight, financial acumen . click apply for full job details