Cybersecurity Engineer

Are you a current Aims Employee, Temporary Worker? If so, to help avoid future access issues, please apply through your Workday account using "Browse Jobs" in the in the Workday search field located on the top center of the screen. 

Are you a current Aims Student? If so, to help avoid future access issues, please apply through your Workday account using the Aims Jobs app on your Workday home page. 

Are you both an Employee and a Student? If so, to help avoid future access issues, please apply through your Workday account using "Browse Jobs" in the in the Workday search field located on the top center of the screen. 

For assistance, please contact the recruitment team at 970-378-3720.

Minimum Hiring Annual Salary:

$92,880.00

Maximum Hiring Annual Salary:

$97,524.00

To attain the maximum annual salary, employee must meet all minimum qualifications plus:

• 5 (five) years of additional applicable work experience and/or degrees higher than minimum qualification degree. Degrees higher than the minimum qualification degree can be used in combination with additional work experience.
• A combination of related education, on-the-job work experience, certifications and/or licenses that results in a candidate successfully meeting the minimum qualifications of the position, may be considered.

The stated salary amounts are not guaranteed in the event employment ends with Aims during any fiscal year.

Included with Aims Full-time Employment is a generous package of Benefits, most are listed below:

Job Description:

Aims Community College actively supports an environment that embraces the College's Mission, Vision, Values, BaJEDI (belonging, justice, equity, diversity, inclusion), and Innovation. The College embraces and seeks to hire individuals who want to be a part of this environment and have the skillsets necessary to be successful in this position.

The Cybersecurity Engineer is a technical expert responsible for advancing the College's cybersecurity posture through innovative solutions and effective risk management. A key aspect of this role involves automating cybersecurity operations and user lifecycle management processes, such as provisioning, access control, and de-provisioning. Core responsibilities include scripting and API integrations to streamline workflows, designing and implementing robust identity and access management (IAM) solutions, and enhancing detection and response capabilities. The position also involves cross-functional collaboration, developing technical solutions, and optimizing existing cybersecurity infrastructure to support the College's mission securely and efficiently.

This position has been approved for hybrid work with an on-campus presence required 3-days a week.

Scripting & Automation:

• Develop, write, update, and troubleshoot scripts to address issues, enhance efficiencies, and integrate systems.
• Utilize APIs to automate and enhance cybersecurity and IAM workflows.
• Design custom integrations, workflows, and rules between various services.
• Develop scripts that leverage APIs to automate tasks and improve efficiency.

Security Engineering & Architecture:

• Serve as a subject matter expert in designing, implementing, and maintaining cybersecurity and IAM systems.
• Strengthen threat detection and response capabilities by developing and implementing detection logic, rules, and alerts for security monitoring tools.
• Analyze requirements and develop solutions for cybersecurity problems based on compliance and business needs.
• Identify cybersecurity issues and risks through cybersecurity reviews and develop mitigation plans.
• Serve as technical lead to support and onboard new cybersecurity technologies and expand capabilities of existing systems.
• Develop technical solutions and tooling to help mitigate cybersecurity vulnerabilities.

Security Administration:

• Plan, implement, and test new cybersecurity controls and systems.
• Ensure optimal performance of security systems through regular upgrades, configuration, and optimization of existing controls.
• Manage and troubleshoot cybersecurity systems and infrastructure.
• Identify and implement process improvements to enhance security operations.
• Resolve technical issues and escalate complex problems to vendors as needed.

Detection & Response:

• Monitor network traffic and system activities to identify anomalies and potential threats.
• Analyze and triage security events from various sources, including SIEM, firewalls, endpoint data, and network traffic, to assess and respond to incidents.
• Respond to cybersecurity incidents, such as phishing and malware infections.
• Stay current on threat intelligence and security best practices to enhance detection and response capabilities.

Documentation:

• Create and maintain clear and concise documentation for cybersecurity and IAM architecture, systems, and processes.
• Maintain detailed records of incident handling and response activities.
• Develop and share reports about the efficiency of cybersecurity controls and policies.
• Create support documentation for end users.

Support:

• Subject matter expert in IAM and cybersecurity systems and architecture.
• Provide guidance and support to team members, including interns, and act as an escalation point for complex issues.
• Collaborate with various teams to develop and improve processes.
• Address and resolve cybersecurity-related support tickets and email inquiries.
• Communicate with users in person or via phone for cybersecurity guidance and education.
• Assist in developing training materials to educate users on best practices for cybersecurity protocols.

Other Duties as Assigned

Minimum Qualifications:

• Bachelor's Degree in Computer Science, Cybersecurity, or other related field; plus:
• Two (2) years years of experience in IT or Cybersecurity or an equivalent combination of education and/or work experience.
• Exceptional critical thinking and problem-solving abilities.
• Proficient in scripting language(s) such as Bash, PowerShell, or Python, and a proven background in creating automation tools and automating web-based services.
• Solid comprehension of API usage in various applications and integration into business flows.
• Advanced knowledge of cybersecurity technologies, including firewalls, IDS/IPS, SIEM, EDR, VPNs, encryption, and MFA.
• In-depth understanding of operating systems, protocols, TCP/IP, web technologies, networking principles, and cybersecurity concepts.
• Comprehensive understanding of IAM concepts, authentication, authorization, risk-based authentication, delegation, directory services, and modern protocols, such as OAuth 2.0, OpenID Connect, SAML, WS-Federation, SCIM, and U2F/UAF/FIDO2.
• Prior experience managing directory services and authentication systems.
• Strong oral and written communication skills.
• Ability to detect and develop countermeasures against fraudulent or malicious activity.
• Able to effectively analyze and interpret log data.

Preferred Qualifications:

• Possesses at least one industry-recognized cybersecurity certification, such as CISSP, CISA, CISM, CEH, or a GIAC certification.
• Proficiency in Linux/Unix operating systems, including shell scripting and system administration
• Well-versed in managing security monitoring tools, including rule creation, query writing, and alert management.
• Hands-on experience managing enterprise identity solutions such as Azure Entra ID, Okta, Ping, or OneLogin.
• Previous experience with certificate management and public key infrastructure (PKI).
• Experience working in higher education.
• Experience with custom application integrations such as flat files or database feeds.
• Knowledge of cybersecurity best practices, guidelines, regulations, and standards, such as NIST SP 800-63, CIS Controls, FERPA, and GLBA Safeguards.

Required Documents:

• Cover letter
• Resume
• Certifications, if any

All Applicants:

• Compare your previous work experience to the job duties listed on the job positing under job description. Enter the job duties you have performed under the "Work Experience" section on your job application. We evaluate your experience based on this information.
• Please make sure you state whether work experience (aka work history) is part time or full time employment by listing the average number of hours worked per week. This information is used to determine your new annual salary.
• Be sure to upload all the required documents listed at the above in "Additional Job Description" section. This can be uploaded as part of your application materials in the "My Experience" section.  If there are missing documents, your incomplete application will not be considered. Per the Colorado Job Application Fairness Act, you may redact information that identifies age, date of birth, or dates of attendance at or graduation from an educational institution.

For information on our hiring practices, please visit our resource page: https://www.aims.edu/departments/human-resources/hiring-process.

Aims Community College is an equal opportunity employer.  Selection will be based solely on merit and will be without discrimination based on age, ancestry, color, creed, disability, ethnicity, familial status, gender, gender identity, genetic information, marital status, national origin, sex, sexual orientation, race, religion, or veteran's status.  All application materials must be submitted by the closing date posted and become the property of Aims Community College. The screening committee will select finalists for interviews. The goal of Aims Community College is to enhance the diversity present in the district we serve. To comply with the Immigration Reform and Control Act of 1986, if hired, you will be required to provide documents within three (3) business days of hire date to show your identity and your authorization to work. This law applies to all persons hired.

Screening/Selection:

To be considered, please provide a thorough and complete application. Initial screening will be conducted by a committee based on completed application materials.

Employees in these positions may be asked to participate in temporary assignments lasting less than nine (9) months (such as curriculum development, short term projects, meetings and substitute duties) which could amount to additional temporary pay.

Upon hire, all positions at Aims Community College require a criminal background check and may require industry specific screenings such as an MVR, physical and/or drug screen. Keep in mind, a conviction does not automatically preclude candidates from being employed. The nature of a conviction will be considered relative to the duties of the position.

Salary : $92,880 - $97,524