Share this Job

SYSTEMS SECURITY ENGINEER - 72003995

Date: Feb 22, 2021

Location: TALLAHASSEE, FL, US, 32399

The State Personnel System is an E-Verify employer. For more information click on our E-Verify website.

Requisition No: 318185 

Agency: Management Services

Working Title: SYSTEMS SECURITY ENGINEER - 72003995

Position Number: 72003995 

Salary:  $90,000.00 - $110,000.00 

Posting Closing Date: 03/08/2021 

Systems Security Engineer

Florida Digital Service

State of Florida Department of Management Services

This position is located in Tallahassee

The Florida Department of Management Services (DMS) is a customer-oriented agency responsible for managing the various business and workforce-related functions of state government. Under the direction of Governor Ron DeSantis and DMS’ Executive Leadership Team, the agency oversees the real estate, procurement, human resources, group insurance, retirement, technology, private prisons, fleet, and federal property assistance programs utilized throughout Florida’s state government. DMS is relied upon to establish, maintain and improve the business processes used by state employees to create a better, not bigger government. DMS facilitates the delivery of these programs and services and provides tools and training to bolster the efficiency and effectiveness of the state’s workforce. It is against this backdrop that DMS strives to demonstrate its motto, “We serve those who serve Florida.” DMS’ employees embody four pillars on a daily basis: lead by example, serve with excellence, create efficiencies, and challenge the status quo.

Position Responsibilities:

  • Provide targeted attack detection and analysis, including the development of custom signatures and SIEM/EDR queries and analytics for the identification of attacks.
  • Participate in investigations towards identifying root cause for security events evaluating anomalous activity and tuning for frequent false positives.
  • Provide forensic analysis of network packet captures, live memory and drive acquisitions, malware, as well as logs from various types of security sensors, applications, and operating systems.
  • Participate in Security Architecture reviews for new projects to ensure proposed solutions align with risk requirements.
  • Participate in the design and execution of vulnerability assessments, penetration tests, and security audits.
  • Participate in the development of custom scripting and security orchestration.
  • Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes, and the development of new attacks and threat vectors.
  • Provide after business hours support in response to security alerts and investigations.
  • Perform other duties and tasks as assigned.

Knowledge, Skills, and Abilities:

  • Ability to accurately define incidents, problems, and events in the trouble ticketing system.
  • Ability to apply an organization's goals and objectives to develop and maintain architecture.
  • Ability to develop, update, and/or maintain standard operating procedures (SOPs).
  • Ability to operate common network tools (e.g., ping, traceroute, nslookup).
  • Ability to monitor measures or indicators of system performance and availability.
  • Ability to collaborate effectively with others.
  • Ability to function effectively in a dynamic, fast-paced environment.
  • Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation). 
  • Ability to establish and maintain automated security control assessments.
  • Knowledge of computer networking concepts and protocols, and network security methodologies. 
  • Knowledge of risk management processes (e.g., methods for assessing and mitigating risk). 
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy. 
  • Knowledge of cybersecurity and privacy principles. 
  • Knowledge of cyber threats and vulnerabilities. 
  • Knowledge of specific operational impacts of cybersecurity lapses. 
  • Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption). 
  • Knowledge of local area and wide area networking principles and concepts including bandwidth management. 
  • Knowledge of measures or indicators of system performance and availability.
  • Knowledge of performance tuning tools and techniques.
  • Knowledge of server and client operating systems.
  • Knowledge of systems administration concepts.
  • Knowledge of the enterprise IT architecture.
  • Knowledge of the type and frequency of routine hardware maintenance. 
  • Knowledge of Virtual Private Network (VPN) security.
  • Knowledge of file system implementations (e.g., New Technology File System [NTFS], File Allocation Table [FAT], File Extension [EXT]).
  • Knowledge of virtualization technologies and virtual machine development and maintenance.
  • Knowledge of organizational IT user security policies (e.g., account creation, password rules, access control).
  • Knowledge of system administration, network, and operating system hardening techniques.
  • Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). 
  • Knowledge of Personally Identifiable Information (PII) data security standards. 
  • Knowledge of Payment Card Industry (PCI) data security standards. 
  • Knowledge of Personal Health Information (PHI) data security standards.
  • Knowledge of transmission records (e.g., Bluetooth, Radio Frequency Identification (RFID), Infrared Networking (IR), Wireless Fidelity (Wi-Fi). paging, cellular, satellite dishes, Voice over Internet Protocol (VoIP)), and jamming techniques that enable transmission of undesirable information, or prevent installed systems from operating correctly.
  • Knowledge of systems engineering theories, concepts, and methods.
  • Knowledge of system/server diagnostic tools and fault identification techniques.
  • Knowledge of operating system command-line tools. 
  • Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  • Knowledge of principles and methods for integrating system components.
  • Skill in configuring and optimizing software.
  • Skill in diagnosing connectivity problems.
  • Skill in maintaining directory services. (e.g., Microsoft Active Directory, LDAP, etc.). 
  • Skill in using virtual machines (e.g., Microsoft Hyper-V, VMWare vSphere, Citrix XenDesktop/Server, Amazon Elastic Compute Cloud, etc.). 
  • Skill in configuring and utilizing software-based computer protection tools (e.g., software firewalls, antivirus software, anti-spyware).
  • Skill in interfacing with customers.
  • Skill in conducting system/server planning, management, and maintenance.
  • Skill in correcting physical and technical problems that impact system/server performance.
  • Skill in troubleshooting failed system components (i.e., servers)
  • Skill in identifying and anticipating system/server performance, availability, capacity, or configuration problems.
  • Skill in installing system and component upgrades. (i.e., servers, appliances, network devices). 
  • Skill in monitoring and optimizing system/server performance.
  • Skill in recovering failed systems/servers. (e.g., recovery software, failover clusters, replication, etc.). 
  • Skill in operating system administration. (e.g., account maintenance, data backups, maintain system performance, install and configure.
  • Accountability, Communication, Empowerment, Flexibility, Integrity, Respect, Teamwork.

Minimum Qualifications:

  • Skill in conducting system/server planning, management, and maintenance.
  • Knowledge of system administration, network, and operating system hardening techniques.
  • Experience with vulnerability management solutions.

​​​​​​​DMS is committed to successfully recruiting and onboarding talented and skilled individuals into its workforce. We recognize the extensive training, experience and transferrable skills that veterans and individuals with disabilities bring to the workforce. Veterans and individuals with disabilities are encouraged to contact our recruiter for guidance and answers to questions through the following provided email addresses.

DMS.Ability@dms.myflorida.com  

DMS.Veterans@dms.myflorida.com

An individual with a disability is qualified if he or she satisfies the skills, experience, and other job-related requirements for a position and can perform the essential functions of the position with or without reasonable accommodation.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must contact the DMS Human Resources (HR) Office at (850) 488-2707. DMS requests applicants notify HR in advance to allow sufficient time to provide the accommodation.

Successful completion of background screening will be required for this position.​​​​​​​

The State of Florida is an Equal Opportunity Employer/Affirmative Action Employer, and does not tolerate discrimination or violence in the workplace.

Candidates requiring a reasonable accommodation, as defined by the Americans with Disabilities Act, must notify the agency hiring authority and/or People First Service Center (1-866-663-4735). Notification to the hiring authority must be made in advance to allow sufficient time to provide the accommodation.

The State of Florida supports a Drug-Free workplace. All employees are subject to reasonable suspicion drug testing in accordance with Section 112.0455, F.S., Drug-Free Workplace Act.

VETERANS’ PREFERENCE.  Pursuant to Chapter 295, Florida Statutes, candidates eligible for Veterans’ Preference will receive preference in employment for Career Service vacancies and are encouraged to apply.  Candidates claiming Veterans’ Preference must attach supporting documentation with each submission that includes character of service (for example, DD Form 214 Member Copy #4) along with any other documentation as required by Rule 55A-7, Florida Administrative Code.  Veterans’ Preference documentation requirements are available by clicking here.  All documentation is due by the close of the vacancy announcement. 


Nearest Major Market: Tallahassee