CYBERSECURITY ENGINEER - 72004172 1

Requisition No: 875040 

Agency: Management Services

Working Title: CYBERSECURITY ENGINEER - 72004172 1

 Pay Plan: Career Service

Position Number: 72004172 

Salary:  $80,000 - $115,000 

Posting Closing Date: 05/05/2026 

Total Compensation Estimator Tool

Cybersecurity Engineer
Florida Digital Service
State of Florida Department of Management Services
This position is located in Tallahassee, FL

Position Overview and Responsibilities:

The Cybersecurity Engineer provides hands-on technical support for the development, implementation, and sustainment of enterprise security tooling and telemetry pipelines that enable SOC detection, analysis, and incident response operations. This role is responsible for configuring, maintaining, and optimizing security platforms, detections, and data flows to ensure accurate, reliable, and actionable security monitoring.

Working under the direction of the Engineering Team Lead, the Cybersecurity Engineer supports both current-state enterprise security platforms and the transition to modernized, integrated SOC tooling. The role requires practical experience with security technologies, telemetry sources, and detection logic, as well as the ability to troubleshoot technical issues and support operational workflows.

Key Responsibilities:

Security Tooling and Platform Support – 30%

• Configure, maintain, and support enterprise security tools, including SIEM, data platforms, SOAR, and related detection and telemetry systems.
• Support ingestion, parsing, normalization, and retention of security telemetry to ensure data is usable for detection and investigation.
• Monitor performance and availability of security tooling and identify issues impacting SOC operations.
• Assist in evaluating telemetry sources for relevance, quality, and operational usefulness. 

Detection Engineering and Telemetry Implementation – 20%

• Develop, implement, and maintain SIEM detections using structured detection logic and defined standards.  
• Support tuning and validation of detection rules to improve accuracy, reduce false positives, and ensure operational effectiveness. 
• Assist in translating detection requirements into platform-specific implementations.
• Support testing and validation of detections and telemetry pipelines in development and production environments.

Engineering Operations and Incident Support -20%

• Support day-to-day engineering operations that enable SOC detection, response, and analytic workflows.
• Troubleshoot and resolve technical issues related to security tools, integrations, and telemetry pipelines.
• Assist in root-cause analysis of detection failures, data gaps, or platform issues.
• Provide technical support during incident response activities where tooling or telemetry expertise is required.

Configuration, Integration, and Lifecycle Management – 10%

• Implement and maintain configurations for security tools and integrations in alignment with established standards and architecture.
• Support deployment, updates, and lifecycle management of detections, data sources, and platform components
• Assist in integrating new telemetry sources and security capabilities into existing platforms.
• Follow established change management and configuration management processes.

Documentation and Continuous Improvement – 10%

• Develop and maintain technical documentation, runbooks, and standard operating procedures.
• Identify opportunities to improve detection coverage, telemetry quality, and platform performance.
• Support continuous improvement initiatives related to security tooling, engineering processes, and SOC enablement.
• Participate in testing and validation of new tools, features, or integrations.

Coordination and Collaboration – 10%

• Work with SOC analysts to understand detection requirements and operational challenges.
• Coordinate with engineering and architecture teams to support implementation of new capabilities.
• Collaborate with IT, data, and cybersecurity teams to support integrations and enterprise initiatives
• Participate in team activities, projects, and knowledge-sharing efforts.

Knowledge, skills and abilities, including utilization of equipment, required for the position:

Knowledge

• Security platform technologies, including SIEM, SOAR, security data platforms, and detection systems.
• Security telemetry sources across endpoint, identity, network, cloud, and application domains.
• Detection engineering concepts, including correlation logic, thresholds, enrichment, and alerting behavior.
• Data pipeline concepts, including ingestion, normalization, parsing, and retention of security data.
• Systems security principles related to monitoring, detection, and response.
• Incident response processes and the role of engineering support in investigations.
• Configuration management and change management practices for security tooling.
• Basic understanding of enterprise architecture principles and integration patterns.

Skills

• Configuring, maintaining, and troubleshooting security tools and integrations.
• Developing and tuning detection rules within SIEM or similar platforms.
• Analyzing telemetry data to support detection, investigation, and troubleshooting activities.
• Troubleshooting data pipeline and integration issues affecting detection and visibility.
• Supporting incident response efforts through technical analysis and tooling support.
• Implementing changes in accordance with established processes and procedures.
• Documenting technical configurations, procedures, and troubleshooting steps.
• Collaborating with analysts and engineers to resolve issues and improve workflows.

Abilities

• Apply technical knowledge to support reliable operation of security platforms and telemetry pipelines.
• Translate detection requirements into effective technical implementations.
• Identify and resolve technical issues affecting detection accuracy and platform performance.
• Work effectively in a fast-paced operational environment supporting SOC activities.
• Follow established engineering processes while contributing to continuous improvement.
• Adapt to evolving technologies, tools, and operational requirements.
• Communicate technical information clearly to team members and stakeholders.
• Support both legacy systems and modernization efforts within a transitioning environment.

Minimum Qualifications:

Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, or a related field; equivalent professional experience may be considered in lieu of a degree.

• 3+ years of experience in cybersecurity engineering, security operations, or related technical roles.
• Hands-on experience configuring or supporting security tools such as SIEM, EDR, SOAR, or log/data platforms.
• Experience working with security telemetry, logs, or data pipelines used for monitoring and detection.
• Demonstrated experience developing, tuning, or supporting detection rules or alerting logic in a SOC or similar environment.
• Experience troubleshooting technical issues involving security tools, integrations, or data quality.
• Familiarity with incident response processes and supporting tooling or data requirements.
• Experience following change management or configuration management processes.
• Strong written and verbal communication skills.
• Relevant professional certifications such as CISSP, CCSP, cloud security certifications, or equivalent, preferred.

Other job-related requirements for this position: 

• Ability to sit for extended periods of time.
• Ability to stand for extended periods of time.
• Ability to drive and/or fly for long distances.
• Ability to lift, push and pull up to 30lbs. 

Our Organization and Mission:
Under the direction of Governor Ron DeSantis, Interim Secretary Tom Berger and DMS’ Executive Leadership Team, the Florida Department of Management Services (DMS) is a customer-oriented agency with a broad portfolio that includes the efficient use and management of real estate, procurement, human resources, group insurance, retirement, telecommunications, fleet, and federal property assistance programs used throughout Florida’s state government. It is against this backdrop that DMS strives to demonstrate its motto, “We serve those who serve Florida.”

Special Notes:
DMS is committed to successfully recruiting and onboarding talented and skilled individuals into its workforce. We recognize the extensive training, experience and transferrable skills that veterans and individuals with disabilities bring to the workforce. Veterans and individuals with disabilities are encouraged to contact our recruiter for guidance and answers to questions through the following provided email addresses:
DMS.Ability@dms.myflorida.com
DMS.Veterans@dms.myflorida.com
An individual with a disability is qualified if he or she satisfies the skills, experience, and other job related requirements for a position and can perform the essential functions of the position with or without reasonable accommodation. Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must contact the DMS Human Resources (HR) Office at (850) 488-2707. DMS requests applicants notify HR in advance to allow sufficient time to provide the accommodation.
Criminal background investigation including fingerprinting and statewide and national criminal history records check per Section 110.1127 Florida Statutes, Chapter 435 Florida Statutes and the Federal Bureau of Investigation’s CJIS Security Policy CJISD-ITS-DOC-08140.
Pursuant to F.S. 215.422 every officer or employee who is responsible for the approval or processing of vendors’ invoices or distribution of warrants to vendors are mandated to process, resolve and comply as section 215.422 requires

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.

VETERANS’ PREFERENCE.  Pursuant to Chapter 295, Florida Statutes, candidates eligible for Veterans’ Preference will receive preference in employment for Career Service vacancies and are encouraged to apply.  Certain service members may be eligible to receive waivers for postsecondary educational requirements.  Candidates claiming Veterans’ Preference must attach supporting documentation with each submission that includes character of service (for example, DD Form 214 Member Copy #4) along with any other documentation as required by Rule 55A-7, Florida Administrative Code.  Veterans’ Preference documentation requirements are available by clicking here.  All documentation is due by the close of the vacancy announcement.