Cybersecurity Specialist Grade 30

The Maryland-National Capital Park and Planning Commission (M‑NCPPC), Prince George's County Department of Parks and Recreation, is seeking a technically proficient, analytical thinker with good communication skills to be an IT Support Specialist III - Cybersecurity in its Information Technology Services Division (ITS). The ITS Division coordinates IT and communication services for all divisions of the Department of Parks and Recreation and reports to the Deputy Director of Administration and Development.

The ITS headquarters is located within the Park Police Headquarters in Hyattsville.

• Develops, maintains, and enforces cybersecurity policies, standards, and operational procedures aligned with NIST, CIS, and Commission security frameworks.
• Performs continuous monitoring of systems, networks, and cloud environments using SIEM, EDR, vulnerability scanners, and log-analysis tools.
• Conducts internal security audits, configuration reviews, and compliance assessments across servers, endpoints, network devices, and cloud services.
• Leads incident response activities, including triage, containment, eradication, forensics, and post‑incident reporting.
• Designs and implements secure network architectures, including segmentation, zero‑trust principles, and least‑privilege access models.
• Configures, manages, and optimizes enterprise firewalls (e.g., Palo Alto), including rule‑base management, NAT policies, VPN configuration, SSL inspection, traffic analysis, and threat‑prevention tuning.
• Analyzes firewall logs, correlates events with SIEM data, and identifies anomalous traffic patterns or potential intrusions.
• Coordinates patch management and vulnerability remediation across operating systems, applications, and network infrastructure.
• Evaluates third‑party vendors and cloud services for security risks, contract compliance, and integration with Commission security controls.
• Develops and delivers security awareness training, phishing simulations, and user‑focused security education.
• Participates in cross‑departmental security initiatives, technical committees, and Commission‑wide cybersecurity governance groups.
• Produces detailed technical documentation, incident reports, architecture diagrams, and security health dashboards.
• Collaborates with network, systems, and application teams to ensure security requirements are embedded into new deployments and ongoing operations.

• Experience with Palo Alto firewalls, Azure security controls, Crowd Strike Falcon, or similar enterprise‑grade security platforms.
• Strong understanding of firewall concepts: rule‑based design, NAT, VPN/IPSec, SSL/TLS inspection, application‑layer filtering, and traffic segmentation.
• Hands‑on experience with SIEM platforms, EDR tools, IDS/IPS, vulnerability scanners, and log‑analysis workflows.
• Proficiency in Power Shell, Python, or other scripting languages for automation, log parsing, and security tooling integration.
• Experience developing cybersecurity policies, incident response playbooks, and technical security standards.
• Strong troubleshooting skills across Windows, Linux, network infrastructure, and cloud environments.
• Relevant certifications such as CISSP, Security+, CEH, CISM, CISA, CASP+, CCSP, GSEC, or vendor‑specific firewall/cloud certifications.

Classification Specification: Information Systems Specialist III

May be subject to medical, drug, and alcohol testing.

Work is in an office setting. Works in an environment with high volume and…