Chicago Housing Authority
Chicago Housing Authority | Cyber Security Engineer
Chicago Housing Authority, Chicago, Illinois, United States,
The Cyber Security Engineer designs, implements, and maintains secure infrastructure to protect the organization's data, systems, and networks. This role requires hands-on expertise in managing cybersecurity tools, particularly Palo Alto firewalls, and emphasizes threat identification, risk mitigation, and compliance with industry standards. Additionally, the engineer collaborates across departments to embed security in organizational processes.
DUTIES AND RESPONSIBILITIES Design, Develop, and Maintain Security Infrastructure : Lead the design, implementation, and management of robust security systems, including firewalls, intrusion prevention systems, and endpoint protection. Firewall Management
Configure, monitor, optimize, and evaluate the performance of existing Palo Alto firewalls to meet evolving security needs. Recommend changes or upgrades as necessary to ensure optimal functionality. Manage Security Solutions : Oversee the deployment, integration, and configuration of new security solutions, and enhance existing systems, ensuring compliance with industry best practices. Incident and Risk Management:
Develop, test, and execute comprehensive incident response plans to swiftly address security breaches and vulnerabilities. Conduct regular information security risk assessments and penetration tests to identify and mitigate risks. Disaster Recovery and Business Continuity:
Contribute to the development, testing, and maintenance of disaster recovery and business continuity plans. Automation and Scripting:
Provide automation via scripting for tasks like incident response, log analysis, and system monitoring. Security Awareness and Training : Assist in the creation and delivery of security awareness programs and training to employees to improve organizational cybersecurity posture and ensure adherence to security protocols. Enforce Security Policies:
Develop, implement, and enforce enterprise-wide information security policies and procedures. Collaboration : Partner with cross-functional teams to integrate cybersecurity measures into both new and existing organizational processes and systems, ensuring alignment with security objectives and enterprise-wide awareness. Cloud Security:
Implement and manage security measures in cloud environments to ensure secure cloud architecture and operations. Stay Current with Security Trends : Stay informed on cybersecurity technologies, legislation, regulations, vulnerabilities, and industry alerts to ensure the organization remains compliant and up to date. Security Monitoring and Reporting:
Regularly review system security logs to identify and address potential threats. Mentorship:
Guide and mentor junior staff, fostering their technical growth and understanding of cybersecurity principles and tools . Governess and Compliance : Oversee the development, implementation, and enforcement of enterprise-wide information security policies and procedures while ensuring compliance with relevant cybersecurity laws, regulations, and industry standards. Reporting to Senior Management : Prepare and present security metrics and risk assessments to senior leadership, offering actionable insights and recommendations.
QUALIFICATIONS This position requires a Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field, with a minimum of 3 years of hands-on experience in cybersecurity engineering, with a focus on firewall management and incident response. CISSP, CISM, CEH, or equivalent certifications required; additional certifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), CompTIA Security+, or GIAC are a plus. Strong knowledge of Palo Alto firewalls, intrusion detection and prevention systems (IDS/IPS), endpoint protection, and SIEM tools. Familiarity with frameworks such as NIST, ISO 27001, and regulatory requirements like GDPR or CCPA. Excellent analytical and troubleshooting skills to address complex security challenges. Exceptional verbal and written communication skills to present technical insights to diverse audiences. The ability to communicate clearly and write procedures and documentation to support both technical and non-technical stakeholders. Demonstrate the ability to prioritize tasks, adapt to changing security landscapes, and make critical decisions in high-pressure situations, ensuring effective incident response and security management. Demonstrates ability to work collaboratively and mentor junior staff.
ALL APPLICANTS MUST APPLY DIRECTLY TO THE COMPANY WEBPAGE AT:
CAREERS.THECHA.ORG
Salary Range: $110,000 – 120,000 Grade: S9 FLSA: Exempt Union: None
DUTIES AND RESPONSIBILITIES Design, Develop, and Maintain Security Infrastructure : Lead the design, implementation, and management of robust security systems, including firewalls, intrusion prevention systems, and endpoint protection. Firewall Management
Configure, monitor, optimize, and evaluate the performance of existing Palo Alto firewalls to meet evolving security needs. Recommend changes or upgrades as necessary to ensure optimal functionality. Manage Security Solutions : Oversee the deployment, integration, and configuration of new security solutions, and enhance existing systems, ensuring compliance with industry best practices. Incident and Risk Management:
Develop, test, and execute comprehensive incident response plans to swiftly address security breaches and vulnerabilities. Conduct regular information security risk assessments and penetration tests to identify and mitigate risks. Disaster Recovery and Business Continuity:
Contribute to the development, testing, and maintenance of disaster recovery and business continuity plans. Automation and Scripting:
Provide automation via scripting for tasks like incident response, log analysis, and system monitoring. Security Awareness and Training : Assist in the creation and delivery of security awareness programs and training to employees to improve organizational cybersecurity posture and ensure adherence to security protocols. Enforce Security Policies:
Develop, implement, and enforce enterprise-wide information security policies and procedures. Collaboration : Partner with cross-functional teams to integrate cybersecurity measures into both new and existing organizational processes and systems, ensuring alignment with security objectives and enterprise-wide awareness. Cloud Security:
Implement and manage security measures in cloud environments to ensure secure cloud architecture and operations. Stay Current with Security Trends : Stay informed on cybersecurity technologies, legislation, regulations, vulnerabilities, and industry alerts to ensure the organization remains compliant and up to date. Security Monitoring and Reporting:
Regularly review system security logs to identify and address potential threats. Mentorship:
Guide and mentor junior staff, fostering their technical growth and understanding of cybersecurity principles and tools . Governess and Compliance : Oversee the development, implementation, and enforcement of enterprise-wide information security policies and procedures while ensuring compliance with relevant cybersecurity laws, regulations, and industry standards. Reporting to Senior Management : Prepare and present security metrics and risk assessments to senior leadership, offering actionable insights and recommendations.
QUALIFICATIONS This position requires a Bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field, with a minimum of 3 years of hands-on experience in cybersecurity engineering, with a focus on firewall management and incident response. CISSP, CISM, CEH, or equivalent certifications required; additional certifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), CompTIA Security+, or GIAC are a plus. Strong knowledge of Palo Alto firewalls, intrusion detection and prevention systems (IDS/IPS), endpoint protection, and SIEM tools. Familiarity with frameworks such as NIST, ISO 27001, and regulatory requirements like GDPR or CCPA. Excellent analytical and troubleshooting skills to address complex security challenges. Exceptional verbal and written communication skills to present technical insights to diverse audiences. The ability to communicate clearly and write procedures and documentation to support both technical and non-technical stakeholders. Demonstrate the ability to prioritize tasks, adapt to changing security landscapes, and make critical decisions in high-pressure situations, ensuring effective incident response and security management. Demonstrates ability to work collaboratively and mentor junior staff.
ALL APPLICANTS MUST APPLY DIRECTLY TO THE COMPANY WEBPAGE AT:
CAREERS.THECHA.ORG
Salary Range: $110,000 – 120,000 Grade: S9 FLSA: Exempt Union: None