Security Engineer

Note: Security systems or security solutions throughout all Minimum Qualifications are comprised of services, software, and platforms including:
Cryptographic Key Management
Data Loss Prevention (DLP)
Endpoint Detection and Response (EDR)
Endpoint Protection Platform (EPP)
Enterprise Password Management
Identity and Access Management (IdAM)
Intrusion Detection/Intrusion Prevention Systems (IDS/IPS)
Mobile Device Management (MDM)
Multi-factor Authentication (MFA)
Network Access Control (NAC)
Network/Server Monitoring
Rogue Device Detection
Security Awareness Training
Security Information and Event Management (SIEM)
Vulnerability Management
Web Application Security
2 A minimum of five (5) years of progressively complex work experience, knowledge, skills, and abilities in security system/solution design, documentation, and implementation for a California State governmental entity, assuring compliance to the California State Administrative Manual (SAM) Chapter 5300 and all sub-sections and external references, and the Statewide Information Management Manual (SIMM) 5300 and all sub-sections and external references.
3 A minimum of three (3) successful contracted security system support engagements for configuration, implementation, and optimization of at least four (4) different following security solutions:
Azure MFA
CrowdStrike Falcon
Ivanti Password Director
KnowBe4 Security Awareness Training
Microsoft Intune
Netsparker/Invicti
Portnox CLEAR and/or Cloud NAC
SolarWinds NPM, SAM, and/or UDT
Splunk
Tenable.sc and/or Tenable.io
4 A minimum of five (5) years of experience documenting security system/solution configuration, implementation, testing, maintenance, and support procedures.
5 Baccalaureate-level degree in relevant technical specialty, such as computer science, management information systems, computer engineering, software engineering. Additional qualifying experience may be substituted for the required education on a year-for-year basis.
6 A minimum of two (2) successful contracted security system implementation engagements for planning, configuration, implementation, and optimization of an alternate processing, storage, and telecommunications site compliant with SAM Sections 5325.4, 5325.5, and 5325.6
requirements.
7 At least three (3) years of experience and Intermediate-level skills in the following:
Microsoft Azure cloud computing platform
Microsoft Windows Server (2008, 2012, 2016, 2019, 2022) installation, configuration, and customization
Palo Alto Networks Next Generation Firewall installation, configuration, and customization
VMware vCenter/vSphere installation, configuration, and customization

Desirable Qualifications
A minimum of ten (10) years of progressively complex work experience, knowledge, skills, and abilities in security system analysis and configuration, ensuring compliance with requirements in the California State Administrative Manual (SAM) Chapter 5300 and all sub-sections and external references, and the Statewide Information Management Manual (SIMM) 5300 and all sub-sections and external references.
A minimum of eight (8) years of progressively complex work experience, knowledge, skills, and abilities in security system/solution design, documentation, and implementation for a California State governmental entity, assuring compliance to the California State Administrative Manual (SAM) Chapter 5300 and all sub-sections and external references, and the Statewide Information Management Manual (SIMM) 5300 and all sub-sections and external references.
A minimum of five (5) successful contracted security system support engagements for configuration, implementation, and optimization of at least five (5) different following security solutions:
Azure MFA
CrowdStrike Falcon
Ivanti Password Director
KnowBe4 Security Awareness Training
Microsoft Intune
Netsparker/Invicti
Portnox CLEAR and/or Cloud NAC
SolarWinds NPM, SAM, and/or UDT
Splunk
Tenable.sc and/or Tenable.io
A minimum of eight (8) years of experience documenting security system/solution configuration, implementation, testing, maintenance, and support procedures.
Master's degree or doctorate in relevant technical specialty, such as computer science, management information systems, computer engineering, or software engineering from an accredited university. Additional qualifying experience may be substituted for the required education on a year-for-year basis
A minimum of three (3) successful contracted security system implementation engagements for planning, configuration, implementation, and optimization of an alternate processing, storage, and telecommunications site compliant with SAM Sections 5325.4, 5325.5, and 5325.6 requirements.
At least five (5) years of experience and Advanced-level skills in the following:
Microsoft Azure cloud computing platform
Microsoft Windows Server (2008, 2012, 2016, 2019, 2022) installation, configuration, and customization
Palo Alto Networks Next Generation Firewall installation, configuration, and customization
VMware vCenter/vSphere installation, configuration, and customization