1000000551.SENIOR IT SECURITY ENGINEER.INFO TECH SERVICES

About the position Engineers and maintains Dallas County's technical security infrastructure, including support for compliance tooling, security monitoring, and data protection technologies. Manages and maintains enterprise security controls across hybrid environments and plays a key role in the implementation and maintenance of data loss prevention (DLP), and compliance monitoring features and controls. Works closely with compliance, operations, and other IT teams to ensure technical controls align with regulatory requirements and Dallas County security policies.Engineers and maintains a broad range of cybersecurity technologies and tools to protect enterprise systems and data. Leads configuration and tuning of Microsoft Purview features including sensitivity labels, data loss prevention (DLP), information protection policies, and insider risk modules. Supports compliance initiatives by configuring technical controls aligned with frameworks such as CJIS, HIPAA, PCI-DSS, and NIST 800-53. Assists with vulnerability remediation and system hardening efforts by providing engineering support and implementing secure configurations. Collaborates with compliance, legal, and IT teams to ensure security tooling supports policy enforcement and regulatory transparency. Develops and maintains documentation for security tools, configurations, and SOPs. Participates in risk assessments and audit evidence preparation. Performs other duties as assigned.Education, Experience and Training: Education and experience equivalent to a Bachelor's degree from an accredited college or university in Information Systems, Cybersecurity, Computer Science, or in a job-related field of study. Six (6) years of work-related experience in cybersecurity roles such as Security Engineer, Security Analyst, or other enterprise security positions. Responsibilities • Engineers and maintains Dallas County's technical security infrastructure, including support for compliance tooling, security monitoring, and data protection technologies. • Manages and maintains enterprise security controls across hybrid environments and plays a key role in the implementation and maintenance of data loss prevention (DLP), and compliance monitoring features and controls. • Works closely with compliance, operations, and other IT teams to ensure technical controls align with regulatory requirements and Dallas County security policies. • Engineers and maintains a broad range of cybersecurity technologies and tools to protect enterprise systems and data. • Leads configuration and tuning of Microsoft Purview features including sensitivity labels, data loss prevention (DLP), information protection policies, and insider risk modules. • Supports compliance initiatives by configuring technical controls aligned with frameworks such as CJIS, HIPAA, PCI-DSS, and NIST 800-53. • Assists with vulnerability remediation and system hardening efforts by providing engineering support and implementing secure configurations. • Collaborates with compliance, legal, and IT teams to ensure security tooling supports policy enforcement and regulatory transparency. • Develops and maintains documentation for security tools, configurations, and SOPs. • Participates in risk assessments and audit evidence preparation. • Performs other duties as assigned. Requirements • Education and experience equivalent to a Bachelor's degree from an accredited college or university in Information Systems, Cybersecurity, Computer Science, or in a job-related field of study. • Six (6) years of work-related experience in cybersecurity roles such as Security Engineer, Security Analyst, or other enterprise security positions. • Ability to effectively communicate both verbally and in writing, with strong analytical skills and the ability to work across technical and non-technical teams. • Ability to develop technical documentation, including security configurations, procedures, and compliance evidence. • Knowledge of data protection technologies including DLP, encryption, and information governance. • Knowledge of regulatory frameworks including HIPAA, CJIS, and NIST 800-53, and how they apply to technical controls. • Ability to implement and maintain vulnerability scanning tools and support remediation efforts. • Knowledge of securing Windows and Linux servers, including patching, hardening, and audit logging. • Skill in implementing and managing enterprise security tools for access control, logging, and threat prevention. • Ability to troubleshoot and resolve complex security platform issues. • Knowledge of access controls, identity management, and data classification concepts. • Ability to participate in an on-call rotation for after-hours security incident escalation. • Ability to manage and maintain enterprise security controls in hybrid (on-prem and cloud) environments. • Knowledge of compliance monitoring tools, data loss prevention (DLP) platforms, and security logging infrastructure. • Knowledge of Microsoft 365 and Azure security features including Purview, Defender, and compliance portals. • Knowledge of IT governance frameworks, compliance requirements, and security best practices. • Ability to work collaboratively with compliance, operations, and IT teams to meet security and governance goals. • Must have a valid Texas Driver's License and good driving record. • Will be required to provide a copy of 10-year driving history. • Must maintain a good driving record and remain in compliance with Article II, Subdivision II of Chapter 90 of the Dallas County Code. • Individuals holding or considered for a position which has, or may have, access to criminal justice databases including the FBI Criminal Justice Information Systems, NCIC/TCIC and similar databases, must pass a national fingerprint-based records check prior to placement in such position and may be denied placement in such positions and/or access to such systems. Incumbents must also maintain the ability to pass the records check while in the position or until such time that the Commissioners Court and the County Civil Service Commission deem this position no longer has this requirement. Nice-to-haves • Systems Security Certified Practitioner (SSCP) • Certified Information Security Professional (CISSP) • Global Information Assurance Certification (GIAC) • GIAC Security Essentials (GSEC) • Global Communication Council Certification (GCCC) Apply tot his job