Principal Cybersecurity Engineer

Overview

San Francisco International Airport (SFO) is seeking a Principal Cybersecurity Engineer . Under the direction of the Director, Cybersecurity and Compliance, the Principal Cybersecurity Engineer analyzes, plans, designs, implements, maintains, troubleshoots, and enhances the confidentiality, integrity, and availability of large complex systems and networks. This position contributes to the overall security of Airport information assets and technologies through the creation and ongoing support of preventative detective and corrective controls. The Principal Cybersecurity Engineer identifies, refines, and analyzes cybersecurity data across a wide variety of sources to report against agreed-upon key performance indicators measuring the efficacy of these controls. This position works closely with Airport operations and engineering teams to remediate cybersecurity issues and concerns.

Base pay range : $165,334.00 / yr - $207,974.00 / yr (this range is provided by SFO; your actual pay will be based on skills and experience — talk with your recruiter to learn more).

Responsibilities

• Serve as a primary subject matter expert for information security and cyber-security for SFO : maintain skills and expertise within areas of cybersecurity and information security for ICT and ICS environments. Contribute to requirements definitions on SFO initiatives and projects, including analysis of risks aligned with IT and OT reference architecture and standards.
• Work with clients to identify business and technical cybersecurity requirements. Determine cybersecurity requirements for development or enhancement of large complex systems and networks that comprise the backbone of the Airport's information technology and infrastructure; assess the suitability of existing solutions. Lead the design, implementation, and monitoring of all remote-access mechanisms associated with Airport information assets.
• Assess the effectiveness of existing processes, procedures, controls, and safeguards to prevent cyber-security breaches across SFO's infrastructure. Facilitate a consistent and positive security posture across multiple independent information systems. Assess and provide recommended cloud security controls for SFO cloud presence, including data access controls. Identify and remediate threats and vulnerabilities.
• Maintain and continually improve SFO’s vulnerability management program, including but not limited to patch management, vulnerability scanning, and monthly reporting on program effectiveness. Recommend and implement new or revised security measures based on risk analysis and document deviations from intended mitigation.
• Identify and respond to cybersecurity threats and incidents as directed by the Cybersecurity and Compliance Director. Provide technical expertise to enable remediation of exploitable vulnerabilities, detection and blocking of emerging cyberattacks, and guidance in accordance with US-CERT and DoJ incident response guidelines.
• Lead the design, implementation, and monitoring of technical controls related to information security across all Airport divisions. Collaborate with engineering peers to analyze, detect, identify, and correct cybersecurity issues; oversee multiple cybersecurity projects to ensure they meet schedule, budget, and scope.
• Direct and coordinate cybersecurity reviews of software architecture, programs, and code; administer penetration testing of SFO networks and systems. Ensure remediation from pen tests is documented and corrected in a timely fashion; coordinate corrective measures while adhering to change control policies.
• Liaise with other Airport sections, City departments, vendors, contractors, and other agencies. Facilitate communication between SFO and federal agencies regarding information security and cybersecurity as directed.
• Prepare documentation related to cybersecurity standards, specifications, and procedures; develop and review documentation prior to general distribution. Demonstrate and provide training on cybersecurity technologies to IS and non-IS staff; collaborate with vendors and support teams to resolve complex issues.
• Design, plan, integrate, test, implement, document, and enhance physical and logical controls protecting Airport information systems and data, including SAML, public key infrastructure, encryption, SSH, SSL, and multi-factor authentication. Configure, maintain, and install security products (e.g., Tenable Nessus, Tenable Security Center, CrowdStrike EDR / MDR, and next‑generation firewalls). Monitor network performance using tools like Splunk or SolarWinds and utilize tools such as Wireshark for analysis.

How to Qualify

Job Details

Get notified when a new job is posted.

#J-18808-Ljbffr