SIGN IN
IT Security Engineer II or III jobs in United States
cer-icon
Apply on Employer Site
company-logo

NEOGOV · 14 hours ago

IT Security Engineer II or III

positionKennewick, WA
timeFull-time
remoteOnsite
seniorityMid, Senior Level
money$95K/yr - $164K/yr
date3+ years exp
Benton PUD is focused on protecting critical infrastructure and is seeking a highly motivated IT Security Engineer. The role involves designing, implementing, and maintaining secure architectures to safeguard essential services, with responsibilities including risk management, incident response, and compliance with security standards.
GovernmentSoftwareHuman ResourcesInformation TechnologyGovTech
check
H1B Sponsor Likelynote

Responsibilities

Support the District’s mission to serve our customers and foster a positive workplace by personally choosing behavior aligned with our values and ethical code
Monitor, audit, and execute security controls and tools to maintain network security by identifying potential security issues to include performing network security threat/impact assessments and scans, recommending security measures, installing and monitoring security devices, and installing patches, and updates as needed; lead mitigation efforts to remediate discovered security deficiencies
Manage the risk of security exposure or compromise within District systems by providing awareness training on information security standards, policies and best practices
Participate as a key member of the Security Incident Response Team by leading investigations and incident response activities, ensuring IR plan is followed and liaising with external support entities such as E-ISAC, DHS, PURMS, etc., as appropriate
Provide guidance and recommendations to ensure the security and resiliency of the converged IT/OT and physical security systems
Ensure a resilient network infrastructure by supporting implementation and securing design principles in network infrastructure and helping establish and verify secure network components and secure communications channels as per design
Establish and maintain logging, monitoring, alerting, and threat-hunting capabilities across cyber and physical security platforms. Monitor and respond to notifications or indications of compromise
Ensure resiliency of secure network authentication and access by supporting design and implementing appropriate encrypted communication methods
Develop, review and assist CISO in standards and policies for cybersecurity practices in both IT and OT environments, working closely with other stakeholders and groups to build out best practices and manageable criteria for increasing security posture
Oversee and technically manage enterprise physical security systems including access control systems (ACS), surveillance cameras, intrusion detection, duress/panic systems, and emergency notification platforms
Ensure the District achieves and maintains mandated compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), NERC CIP, and PCI-DSS by supporting implementation of a comprehensive network security architecture and adhering to internal District security policies
Perform vulnerability assessments, security risk assessments, system audits and penetration testing activities to test and audit existing or proposed systems, networks, functions or software: recommend changes in identified design gaps; and lead remediation or mitigation efforts
Guide program improvement by performing annual security posture assessment and developing tasks and plans to increase posture based on findings and focus areas
Respond to security threats and alerts during and after hours for the purpose of resolving immediate security concerns
Oversee security-related incident reporting and response, conduct after-action review, direct investigations of all security-related incidents; demonstrate sound judgement in working with federal, state, and local law enforcement for potential criminal investigations
Collaborate with internal departments, utilities, vendors, and external agencies to enhance overall security posture and resilience
Complete special projects and other duties as assigned to meet team, department and organization goals
Lead District efforts to achieve and maintain mandated compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA), NERC CIP, and PCI-DSS by designing and implementing a comprehensive network security architecture and adhering to internal District security policies
Perform or lead vulnerability assessments, security risk assessments, system audits and penetration testing activities to test and audit existing or proposed systems, networks, functions or software: recommend changes in identified design gaps; and lead remediation or mitigation efforts
Guide program improvement by leading annual security posture assessment and developing tasks and plans to increase posture based on findings and focus areas
Lead investigations regarding suspected malware or phishing attacks and follow digital forensics best practices when handling potential evidence or sensitive information whose integrity must be maintained
Respond to security threats and alerts during and after hours for the purpose of resolving immediate security concerns

Qualification

CybersecurityNetwork ArchitectureSecurity TestingIncident ResponseLinuxWindowsSIEMData Loss PreventionIntrusion DetectionIntrusion PreventionNetwork ProtocolsAccess Control SystemsProblem-SolvingCommunication SkillsMotivation

Required

BA/BS – Computer Science, Cyber Security or related field
3 to 4 years of experience in implementation, theory and troubleshooting as a security engineer with a strong networking background for IT Security Engineer II
5 to 7 years of experience in implementation, theory and troubleshooting as a security engineer with a strong networking background for IT Security Engineer III
In-depth knowledge in server operating systems (Linux, Windows)
In-depth experience with security testing (DoS, XRSF, XXS, Brute Force)
In-depth knowledge of a SIEM application
In-depth knowledge of Network Management Software and Monitoring Tools
In-depth knowledge of Data Loss Prevention, Intrusion Detection and Intrusion Prevention
In-depth knowledge of Automated security testing software
In-depth knowledge of Forensic investigation and analysis
Experience with network protocols and architectures (TCP/IP, VLANs, routing protocols, DNS, DHCP)
Experience configuring, maintaining, and securing enterprise networking equipment and firewalls
Knowledge of electronic and mechanical physical security systems, including access control, video surveillance, intrusion detection, and audit logging
Experience integrating physical security platforms with IT and cybersecurity monitoring systems
Knowledge of risk, vulnerability, and threat assessment methodologies
Strong problem-solving skills to effectively research, investigate and offer solutions to issues that are more complex and difficult in nature
Good verbal and written communication skills with the ability to communicate security-related concepts to a broad range of technical and non-technical staff to include leadership
Ability to stay current with technology and apply training and experience to real world problems
Highly motivated and independent strategist capable of creating and implementing comprehensive security policies

Preferred

Certifications in 1 or more of the following: Cisco Certified Network Associate (CCNA), Cisco Certified Network Professional (CCNP), Cisco Certified CyberOps Associate (CCNA), Certified Information Systems Security Professional (CISSP)

Benefits

Medical (PPO or CDHP)
Dental
Vision
Employee Life and AD&D Insurance
Dependent Life Insurance
Short Term Disability
Long Term Disability
Washington Public Employees' Retirement System (PERS)
457 and 401(a) Deferred Compensation Plans with Company Contribution
VEBA Health Reimbursement - to reimburse yourself for medical expenses or save for the cost of medical at retirement
Flexible Spending Accounts
Health Care Spending Account
Dependent Care Spending Account
Personal Leave - accruals increase with years of service
13 Paid Holidays
Safety Incentives
Wellness Incentives
Alternative Work Schedules
Employee Assistance Program
Tuition Assistance Program
Training and Development Opportunities
Leadership Training
Community Engagement
Casual Work Attire

Company

NEOGOV

twittertwittertwitter
Glassdoor3.5
company-logo
NEOGOV is the leading provider of workforce management software uniquely designed for the public sector, education, and public safety.
dateFounded in 1999
location
El Segundo, California, USA
people-size501-1000 employees
web-link
http://www.neogov.com

H1B Sponsorship

NEOGOV has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (13)
2024 (10)
2023 (10)
2022 (18)
2021 (14)
2020 (16)

Funding

Current Stage
Late Stage
Total Funding
$700M
Key Investors
The Carlyle Group,Warburg PincusWarburg Pincus
2025-07-28Secondary Market· $700M
2025-07-28Acquired
2021-06-02Private Equity

Leadership Team

leader-logo
Shane Evangelist
CEO
linkedin
leader-logo
Brandon McDonald
Head Of Marketing
linkedin

Recent News

Canada NewsWire
CPP Investments Net Assets Total $777.5 Billion at Second Quarter Fiscal 2026 Français
2025-11-14
Financial Post
CPP fund grew by more than $45 billion in fiscal second quarter on surging equities
2025-11-14
Government Technology US
Gov Tech Biz Quarterly Roundup: Q3 2025 With Jeff Cook
2025-10-31
Company data provided by crunchbase