Network Security Engineer

Network Security Engineer

Denton County Transportation Authority - Lewisville, TX | $70,009 - $85,009 per year

The Network Security Engineer serves as an individual contributor within DCTA's Innovation and Information Technology department. This position is responsible for the administration, security, and operational integrity of DCTA's enterprise network infrastructure, cybersecurity systems, and business applications. The role works alongside the Systems Administrator as a technical peer, with a primary focus on network engineering, security operations, and application support. This position reports to the Director of Information Technology and Cybersecurity.

• Administers DCTA's layer 3 fiber optic networks, including the design, configuration, monitoring, and maintenance of switches, routers, firewalls, and related network hardware across all DCTA facilities and operational environments.
• Manages VLAN segmentation, routing protocols, access control lists, and network policies to ensure performance, availability, and security across DCTA's wired and wireless environments.
• Administers and maintains DCTA's wireless infrastructure across facilities and fleet vehicles, ensuring reliable connectivity for both IT and operational technology systems in coordination with operations and other IT staff.
• Deploys, configures, and manages network monitoring tools to proactively identify performance degradation, outages, and security anomalies across DCTA's network environment.
• Manages secured vendor access to internal and external network systems in alignment with DCTA's IT Cybersecurity Policy, including access provisioning, monitoring, and revocation.
• Plans and executes network capacity assessments, infrastructure upgrades, and technology refresh cycles to ensure DCTA's network environment supports current and future operational requirements.
• Administers and configures DCTA's cybersecurity toolset, including but not limited to identity security, identity and access management, application control, and endpoint protection platforms serving as a subject matter expert in coordination with the Systems Administrator.
• Manages firewall rule sets, intrusion detection/prevention policies, and network access controls to protect DCTA's internal and external-facing systems from unauthorized access and threats.
• Implements, monitors, and enforces DCTA's IT security policies across network, application, and end-user environments, ensuring organizational compliance and end-user adherence. This includes monitoring, investigating, and responding to security events, alerts, and potential incidents across DCTA's network and application environments.
• Supports DCTA's cybersecurity posture through vulnerability assessments, remediation tracking, and coordination with the Director of IT and Cybersecurity on risk management activities.
• Works alongside the Systems Administrator as a senior technical peer, providing cross-functional coverage and shared expertise across infrastructure, network, and security domains to ensure operational continuity within a small, high-responsibility team.
• Serves as an escalation point for helpdesk and OT helpdesk staff on network, security, and application-related issues.

None

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Where applicable, an equivalent combination of education and experience may be considered in lieu of education/experience listed below.

• Associates'/Bachelors' Degree from an accredited college or university with major course work in technology, business, or other related discipline is preferred.
• Eight (8) years of functional experience supporting users in an enterprise environment.
• Familiarity with Microsoft Entra , Active Directory, and Office 365 administration.
• Experience supporting Azure cloud workloads is a plus.
• Experience with remote support tools and helpdesk ticketing systems in an enterprise environment is highly preferred.
• Experience with cybersecurity tools, policies, and incident response practices.
• Industry-recognized network certification (e.g., CCNA, CCNP, CompTIA Network+).
• Industry-recognized security certification (e.g., CompTIA Security+, CompTIA CySA+, CISSP, or equivalent).

• 8 years of progressive experience in systems administration, network engineering, or a related IT discipline.
• Ability to demonstrate a working knowledge of administering enterprise network infrastructure (switches, routers, firewalls, VLANs) and advanced networking protocols and architecture.
• Proven ability to meet deadlines and successfully manage projects from start to finish.
• Ability to hold vendors accountable to implementation timelines and support Service Level Agreements (SLAs).
• Communicate clearly, concisely, and effectively.