Metropolitan Council
Senior Security Engineer (Systems Engineer 2 or 3)
Metropolitan Council, Saint Paul, Minnesota, United States, 55130
Senior Security Engineer (Systems Engineer 2 or 3)
Print (https://www.governmentjobs.com/careers/metrocouncil/jobs/newprint/4721652)
Apply
Senior Security Engineer (Systems Engineer 2 or 3)
Salary
See Position Description
Location
390 Robert St. N St. Paul, MN
Job Type
Full-Time
Job Number
2024-00271
Division
Regional Administration
Department
IS-Admin
Opening Date
11/14/2024
Closing Date
12/1/2024 11:59 PM Central
Description
Benefits
Questions
WHO WE ARE
We are the Metropolitan Council, the regional government for the seven-county Twin Cities metropolitan area. We plan 30 years ahead for the future of the metropolitan area and provide regional transportation, wastewater, and housing services.More information about us on our website. (https://metrocouncil.org/About-Us/Who-We-Are.aspx)
We are committed to supporting a diverse workforce that reflects the communities we serve.
Information Services is the central IT department supporting all divisions of the Metropolitan Council. Our 140 team members provide technology, practices, and innovative solutions that enable the core services of the Council.
How your work would contribute to our organization and the Twin Cities region:
We are seeking a highly skilled Senior Security Engineer (Systems Engineer 2 or 3) with a focus on Palo Alto Networks Cortex to join our cybersecurity team. In this role, you will be responsible for implementing, managing, and optimizing Palo Alto Networks' Cortex solutions to enhance our organization's security posture. You will be involved with advanced threat hunting and incident response.
As our Cortex Security Engineering Specialist, you will be the primary expert on Palo Alto Networks' Cortex portfolio, including Cortex XDR, XSOAR, and Cortex Xpanse. You will work closely with our internal IT and security teams to leverage these tools effectively in our environment.
The ideal candidate should have a solid understanding of Windows Server and Desktop OS, as well as networking principles, to effectively implement and manage Cortex XDR and Cortex Pro Per GB across the organization's infrastructure. This knowledge will be crucial in optimizing Cortex XDR's capabilities for threat detection, incident response, and overall security enhancement in a Windows-centric environment.
This position is eligible for a hybrid (both remote and onsite) telework arrangement. Candidate's permanent residence must be in Minnesota or Wisconsin.
Full Salary Range
Systems Engineer 2: $39.56 - $64.19 hourly/$82,285 - $133,515 yearly
Systems Engineer 3: $42.79 - $69.41 hourly/$89,003 - $144,373 yearly
What you would do in this job
Architect and Implement Identity Solutions:
Configure and fine-tune Cortex XDR policies to optimize threat detection and response capabilities, taking into account the specific needs of various Windows OS versions
Implement and maintain Cortex XDR network security features, leveraging your understanding of networking principles to enhance threat visibility and protection
Create and maintain incident response playbooks within Cortex XDR, tailored to the organization's Windows-based infrastructure
Provide regular reports and insights to management on the state of endpoint and network security, leveraging Cortex XDR's analytics capabilities
Security Best Practices:
Design, implement, and maintain our Cortex-based security infrastructure
Develop and execute security policies and procedures using Cortex tools
Conduct threat hunting and incident response activities
Automate security operations and orchestrate responses using Cortex XSOAR
Manage and optimize our attack surface reduction using Cortex Xpanse, Shodan or similar tool
Collaborate with other security teams to integrate endpoint security solutions with our existing security stack
Provide technical guidance and training to other team members on Cortex products
Stay current with the latest features, updates, and best practices for Palo Alto Networks’ solutions
Develop and maintain documentation for Cortex-related processes and configurations
What education and experience are required for this job (minimum qualifications)
Systems Engineer 2:
Any of the following combinations of education (in Computer Science, Systems Security, or similar) and related experience:
Bachelor's degree and 4 years of experience
Associate's degree and 6 years of experience
High school diploma/GED and 8 years of experience
Experience should include cybersecurity, with a focus on endpoint detection and response (EDR) and security orchestration, automation and response (SOAR) technologies.
Systems Engineer 3:
Any of the following combinations of education (in Computer Science, Systems Security, or similar) and related experience:
Bachelor's degree and 5 years of experience
Associate's degree and 7 years of experience
High school diploma/GED and 9 years of experience
Experience should include cybersecurity, with a focus on endpoint detection and response (EDR) and security orchestration, automation and response (SOAR) technologies.
Additional skills and experience (desired qualifications):
Experience with Palo Alto Networks' Cortex suite, particularly XDR and XSOAR
Understanding of threat detection, incident response, and threat hunting methodologies
Familiarity with common cybersecurity frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
Experience with scripting and automation using languages such as Python, PowerShell, or Bash
Knowledge of log analysis, SIEM technologies, and security analytics
Excellent problem-solving skills and ability to work under pressure during security incidents
Strong communication skills to explain technical concepts to both technical and non-technical audiences
Relevant certifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), Certified Information Systems Security Professional (CISSP), or GIAC Security Essentials (GSEC) are a plus
In-depth knowledge of Palo Alto Networks' Cortex products and their practical applications
Strong background in SOC processes, threat detection, and incident response
Ability to create and maintain automation workflows for security operations
Experience integrating various security tools and technologies
Strong analytical skills for interpreting security data and identifying trends
Commitment to staying updated on the latest cybersecurity threats and technologies
What you can expect from us:
We offer the opportunity to make a difference and positively influence the Twin Cities metropolitan area
We encourage our employees to develop their skills through on-site training and tuition reimbursement
We provide a competitive salary, excellent benefits and a good work/life balance
More about why you should join us! (https://metrocouncil.org/Employment/Making-A-Difference.aspx)
Additional information
Systems Engineer 2:
Union/Grade:AFSCME/Grade H
FLSA Status:Exempt
Safety Sensitive:No
Systems Engineer 3:
Union/Grade:AFSCME/Grade I
FLSA Status:Exempt
Safety Sensitive:No
Work Environment:
Work is performed in a standard office setting. May require travel between primary worksite and various locations on short notice to resolve computer system problems.
If you are new to the Metropolitan Council, you must pass a drug test (safety sensitive positions only), and a background check which verifies education, employment, and criminal history. A driving record check and/or physical may be conducted if applicable to the job. If you have a criminal conviction, you do not automatically fail. The Metropolitan Council considers felony, gross misdemeanor and misdemeanor convictions on a case-by-case basis, based on whether they are related to the job and whether the candidate has demonstrated adequate rehabilitation.
If you are already an employee of the Metropolitan Council, you must pass a drug test (if moving from a non-safety sensitive position to a safety sensitive position) and criminal background check if the job you're applying for is safety sensitive, is a supervisory or management job, is in the Finance, Information Services, Audit, or Human Resources departments, or has access to financial records, files/databases, cash, vouchers or transit fare cards. A driving record check and/or physical may be conducted if applicable to the position.
IMPORTANT: If you make a false statement or withhold information, you may be barred from job consideration.
The Metropolitan Council is an Equal Opportunity, Affirmative Action, and veteran-friendly employer. The Council is committed to a workforce that reflects the diversity of the region and strongly encourages persons of color, members of the LGBTQ community, individuals with disabilities, women, and veterans to apply.
If you have a disability that requires accommodation during the selection process, please email HR-OCCHealth@metc.state.mn.us.
We believe our employees are a key to our agency's success! In order to attract and retain high quality employees, the Council provides a highly competitive benefits package both in choice and coverage levels. Some highlights about our benefits are listed below:
Guaranteed monthly retirement income through Minnesota State Retirement System pension fund
Opportunity to save additional funds for retirement on a tax-deferred basis through a voluntary deferred compensation (457) plan
Two or more medical plans from which to choose, with employer contribution towards premiums over 80%
Dental insurance, life insurance and vision insurance
The following benefits are provided to all employees as part of working for the Council. You will have access to free:
Well@Work clinic
bus/rail pass valued at over $1200 per year
parking at many job locations
fitness centers at many job locations
Employee Assistance Program
extensive health and wellness programs and resources
01
Applicant Instructions: It is important thatyour application shows all relevant education and experienceyou possess. The supplemental questions listed below are to further evaluate your education and experience and to determine your eligibility for this position. Answer each question completely, and please do not type "see resume" otherwise your application will be considered incomplete, and you will not receive further consideration for this position. The experience you indicate in your responses should also be consistent with the Work History section of this application. If you attach a resume and/or cover letter to your application, it will be reviewed at the education and experience review step. I have read and understand the above instructions regarding my application and supplemental questions.
Yes
No
02
How did youfirsthear about this job opening?
CareerForce Center
Community Event/Organization
Employee Referral
Facebook
Glassdoor
Indeed
Job Fair
LinkedIn
Metro Transit Bus Advertisement
Twitter
Website: governmentjobs.com
Website: metrocouncil.org
Website: metrotransit.org
Website: minnesotajobnetwork.com
Other
03
If you selected 'Other', please describe where you first heard about this job. if you selected 'Employee Referral' please enter the employee's first and last name, ID number (if known), and job title. Type N/A if not applicable.
04
Please select the option that best describes your level of related education and experience.
Bachelor's degree (in Computer Science, Systems Security, or related) and 4 or more years of relevant experience
Associate's degree (in Computer Science, Systems Security, or related) and 6 or more years of relevant experience
High school diploma/GED and 8 or more years of experience
Other/none of the above
05
If you answered that you have a degree in the previous question, please enter your degree type and field of study (e.g. "Associate's degree in Computer Science"). If this does not apply, enter "N/A."
06
Please select all areas in which you have work experience (select ALL that apply):
Palo Alto Networks' Cortex suite, particularly XDR and XSOAR, and their practical applications
Threat detection, incident response, and threat hunting methodologies
Common cybersecurity frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
Scripting and automation using languages such as Python, PowerShell, or Bash
Log analysis, SIEM technologies, and security analytics
Problem-solving working under pressure during security incidents
Explaining technical concepts to both technical and non-technical audiences
SOC processes, threat detection, and incident response
Creating and maintaining automation workflows for security operations
Integrating various security tools and technologies
Using analytical skills for interpreting security data and identifying trends
Commitment to staying updated on the latest cybersecurity threats and technologies
None of the above
07
Please list any relevant certifications you have (e.g. "Palo Alto Networks Certified Network Security Engineer/PCNSE"). If this does not apply, enter "N/A."
08
This position requires working with stakeholders from diverse backgrounds and experience. Please briefly describe your experience working in a diverse environment. Note: This can be racial diversity, generational diversity, differences in professional background, etc.
Required Question
Agency
Metropolitan Council
Address
390 Robert St. N.St. Paul, Minnesota, 55101
Website
https://metrocouncil.org
Apply
Please verify your email addressVerify Email
Print (https://www.governmentjobs.com/careers/metrocouncil/jobs/newprint/4721652)
Apply
Senior Security Engineer (Systems Engineer 2 or 3)
Salary
See Position Description
Location
390 Robert St. N St. Paul, MN
Job Type
Full-Time
Job Number
2024-00271
Division
Regional Administration
Department
IS-Admin
Opening Date
11/14/2024
Closing Date
12/1/2024 11:59 PM Central
Description
Benefits
Questions
WHO WE ARE
We are the Metropolitan Council, the regional government for the seven-county Twin Cities metropolitan area. We plan 30 years ahead for the future of the metropolitan area and provide regional transportation, wastewater, and housing services.More information about us on our website. (https://metrocouncil.org/About-Us/Who-We-Are.aspx)
We are committed to supporting a diverse workforce that reflects the communities we serve.
Information Services is the central IT department supporting all divisions of the Metropolitan Council. Our 140 team members provide technology, practices, and innovative solutions that enable the core services of the Council.
How your work would contribute to our organization and the Twin Cities region:
We are seeking a highly skilled Senior Security Engineer (Systems Engineer 2 or 3) with a focus on Palo Alto Networks Cortex to join our cybersecurity team. In this role, you will be responsible for implementing, managing, and optimizing Palo Alto Networks' Cortex solutions to enhance our organization's security posture. You will be involved with advanced threat hunting and incident response.
As our Cortex Security Engineering Specialist, you will be the primary expert on Palo Alto Networks' Cortex portfolio, including Cortex XDR, XSOAR, and Cortex Xpanse. You will work closely with our internal IT and security teams to leverage these tools effectively in our environment.
The ideal candidate should have a solid understanding of Windows Server and Desktop OS, as well as networking principles, to effectively implement and manage Cortex XDR and Cortex Pro Per GB across the organization's infrastructure. This knowledge will be crucial in optimizing Cortex XDR's capabilities for threat detection, incident response, and overall security enhancement in a Windows-centric environment.
This position is eligible for a hybrid (both remote and onsite) telework arrangement. Candidate's permanent residence must be in Minnesota or Wisconsin.
Full Salary Range
Systems Engineer 2: $39.56 - $64.19 hourly/$82,285 - $133,515 yearly
Systems Engineer 3: $42.79 - $69.41 hourly/$89,003 - $144,373 yearly
What you would do in this job
Architect and Implement Identity Solutions:
Configure and fine-tune Cortex XDR policies to optimize threat detection and response capabilities, taking into account the specific needs of various Windows OS versions
Implement and maintain Cortex XDR network security features, leveraging your understanding of networking principles to enhance threat visibility and protection
Create and maintain incident response playbooks within Cortex XDR, tailored to the organization's Windows-based infrastructure
Provide regular reports and insights to management on the state of endpoint and network security, leveraging Cortex XDR's analytics capabilities
Security Best Practices:
Design, implement, and maintain our Cortex-based security infrastructure
Develop and execute security policies and procedures using Cortex tools
Conduct threat hunting and incident response activities
Automate security operations and orchestrate responses using Cortex XSOAR
Manage and optimize our attack surface reduction using Cortex Xpanse, Shodan or similar tool
Collaborate with other security teams to integrate endpoint security solutions with our existing security stack
Provide technical guidance and training to other team members on Cortex products
Stay current with the latest features, updates, and best practices for Palo Alto Networks’ solutions
Develop and maintain documentation for Cortex-related processes and configurations
What education and experience are required for this job (minimum qualifications)
Systems Engineer 2:
Any of the following combinations of education (in Computer Science, Systems Security, or similar) and related experience:
Bachelor's degree and 4 years of experience
Associate's degree and 6 years of experience
High school diploma/GED and 8 years of experience
Experience should include cybersecurity, with a focus on endpoint detection and response (EDR) and security orchestration, automation and response (SOAR) technologies.
Systems Engineer 3:
Any of the following combinations of education (in Computer Science, Systems Security, or similar) and related experience:
Bachelor's degree and 5 years of experience
Associate's degree and 7 years of experience
High school diploma/GED and 9 years of experience
Experience should include cybersecurity, with a focus on endpoint detection and response (EDR) and security orchestration, automation and response (SOAR) technologies.
Additional skills and experience (desired qualifications):
Experience with Palo Alto Networks' Cortex suite, particularly XDR and XSOAR
Understanding of threat detection, incident response, and threat hunting methodologies
Familiarity with common cybersecurity frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
Experience with scripting and automation using languages such as Python, PowerShell, or Bash
Knowledge of log analysis, SIEM technologies, and security analytics
Excellent problem-solving skills and ability to work under pressure during security incidents
Strong communication skills to explain technical concepts to both technical and non-technical audiences
Relevant certifications such as Palo Alto Networks Certified Network Security Engineer (PCNSE), Certified Information Systems Security Professional (CISSP), or GIAC Security Essentials (GSEC) are a plus
In-depth knowledge of Palo Alto Networks' Cortex products and their practical applications
Strong background in SOC processes, threat detection, and incident response
Ability to create and maintain automation workflows for security operations
Experience integrating various security tools and technologies
Strong analytical skills for interpreting security data and identifying trends
Commitment to staying updated on the latest cybersecurity threats and technologies
What you can expect from us:
We offer the opportunity to make a difference and positively influence the Twin Cities metropolitan area
We encourage our employees to develop their skills through on-site training and tuition reimbursement
We provide a competitive salary, excellent benefits and a good work/life balance
More about why you should join us! (https://metrocouncil.org/Employment/Making-A-Difference.aspx)
Additional information
Systems Engineer 2:
Union/Grade:AFSCME/Grade H
FLSA Status:Exempt
Safety Sensitive:No
Systems Engineer 3:
Union/Grade:AFSCME/Grade I
FLSA Status:Exempt
Safety Sensitive:No
Work Environment:
Work is performed in a standard office setting. May require travel between primary worksite and various locations on short notice to resolve computer system problems.
If you are new to the Metropolitan Council, you must pass a drug test (safety sensitive positions only), and a background check which verifies education, employment, and criminal history. A driving record check and/or physical may be conducted if applicable to the job. If you have a criminal conviction, you do not automatically fail. The Metropolitan Council considers felony, gross misdemeanor and misdemeanor convictions on a case-by-case basis, based on whether they are related to the job and whether the candidate has demonstrated adequate rehabilitation.
If you are already an employee of the Metropolitan Council, you must pass a drug test (if moving from a non-safety sensitive position to a safety sensitive position) and criminal background check if the job you're applying for is safety sensitive, is a supervisory or management job, is in the Finance, Information Services, Audit, or Human Resources departments, or has access to financial records, files/databases, cash, vouchers or transit fare cards. A driving record check and/or physical may be conducted if applicable to the position.
IMPORTANT: If you make a false statement or withhold information, you may be barred from job consideration.
The Metropolitan Council is an Equal Opportunity, Affirmative Action, and veteran-friendly employer. The Council is committed to a workforce that reflects the diversity of the region and strongly encourages persons of color, members of the LGBTQ community, individuals with disabilities, women, and veterans to apply.
If you have a disability that requires accommodation during the selection process, please email HR-OCCHealth@metc.state.mn.us.
We believe our employees are a key to our agency's success! In order to attract and retain high quality employees, the Council provides a highly competitive benefits package both in choice and coverage levels. Some highlights about our benefits are listed below:
Guaranteed monthly retirement income through Minnesota State Retirement System pension fund
Opportunity to save additional funds for retirement on a tax-deferred basis through a voluntary deferred compensation (457) plan
Two or more medical plans from which to choose, with employer contribution towards premiums over 80%
Dental insurance, life insurance and vision insurance
The following benefits are provided to all employees as part of working for the Council. You will have access to free:
Well@Work clinic
bus/rail pass valued at over $1200 per year
parking at many job locations
fitness centers at many job locations
Employee Assistance Program
extensive health and wellness programs and resources
01
Applicant Instructions: It is important thatyour application shows all relevant education and experienceyou possess. The supplemental questions listed below are to further evaluate your education and experience and to determine your eligibility for this position. Answer each question completely, and please do not type "see resume" otherwise your application will be considered incomplete, and you will not receive further consideration for this position. The experience you indicate in your responses should also be consistent with the Work History section of this application. If you attach a resume and/or cover letter to your application, it will be reviewed at the education and experience review step. I have read and understand the above instructions regarding my application and supplemental questions.
Yes
No
02
How did youfirsthear about this job opening?
CareerForce Center
Community Event/Organization
Employee Referral
Glassdoor
Indeed
Job Fair
Metro Transit Bus Advertisement
Website: governmentjobs.com
Website: metrocouncil.org
Website: metrotransit.org
Website: minnesotajobnetwork.com
Other
03
If you selected 'Other', please describe where you first heard about this job. if you selected 'Employee Referral' please enter the employee's first and last name, ID number (if known), and job title. Type N/A if not applicable.
04
Please select the option that best describes your level of related education and experience.
Bachelor's degree (in Computer Science, Systems Security, or related) and 4 or more years of relevant experience
Associate's degree (in Computer Science, Systems Security, or related) and 6 or more years of relevant experience
High school diploma/GED and 8 or more years of experience
Other/none of the above
05
If you answered that you have a degree in the previous question, please enter your degree type and field of study (e.g. "Associate's degree in Computer Science"). If this does not apply, enter "N/A."
06
Please select all areas in which you have work experience (select ALL that apply):
Palo Alto Networks' Cortex suite, particularly XDR and XSOAR, and their practical applications
Threat detection, incident response, and threat hunting methodologies
Common cybersecurity frameworks (e.g., NIST, ISO 27001, MITRE ATT&CK)
Scripting and automation using languages such as Python, PowerShell, or Bash
Log analysis, SIEM technologies, and security analytics
Problem-solving working under pressure during security incidents
Explaining technical concepts to both technical and non-technical audiences
SOC processes, threat detection, and incident response
Creating and maintaining automation workflows for security operations
Integrating various security tools and technologies
Using analytical skills for interpreting security data and identifying trends
Commitment to staying updated on the latest cybersecurity threats and technologies
None of the above
07
Please list any relevant certifications you have (e.g. "Palo Alto Networks Certified Network Security Engineer/PCNSE"). If this does not apply, enter "N/A."
08
This position requires working with stakeholders from diverse backgrounds and experience. Please briefly describe your experience working in a diverse environment. Note: This can be racial diversity, generational diversity, differences in professional background, etc.
Required Question
Agency
Metropolitan Council
Address
390 Robert St. N.St. Paul, Minnesota, 55101
Website
https://metrocouncil.org
Apply
Please verify your email addressVerify Email