Cybersecurity Security Administrator

About this Job

The Cyber Security Administrator at the City of Tucson’s Information Technology Department is responsible for designing, implementing, and optimizing cybersecurity solutions to protect the City’s infrastructure, including cyber‑physical systems and operational environments. The role supports strategic initiatives by deploying and tuning tools and developing automation to enhance detection and response. Work is performed under the supervision of the Information Technology Manager and does not involve direct supervision of staff.

• Design cybersecurity solutions that protect enterprise IT and OT environments, including SCADA and industrial control systems.
• Implement and maintain tools such as SIEM, EDR, vulnerability management platforms, email security, and cloud‑native solutions.
• Collaborate with cross‑functional teams to embed security into technology projects and deployments.
• Support cloud migrations by reviewing architecture and providing secure configuration guidance.
• Develop threat detection capabilities by creating custom correlation rules, dashboards, and alerts.
• Optimize incident response by identifying patterns, gaps, and automating security workflows to reduce response times.
• Conduct technical investigations using log correlation, forensic analysis, and root‑cause identification.
• Respond to cybersecurity incidents in real time and coordinate remediation efforts with IT and operations teams.
• Monitor systems continuously using security tools and telemetry data to identify misconfigurations, vulnerabilities, and signs of malicious activity.
• Prioritize risks based on severity and impact, and recommend remediation actions using threat intelligence.
• Provide education and technical advice for securing systems and field devices, including servers, workstations, mobile devices, and OT assets.
• Align system settings with CIS Benchmarks, NIST guidelines, and City policy; implement technical controls based on Zero Trust architecture and the CSF.
• Maintain secure access, data protection, segmentation, and endpoint visibility to enhance resilience and meet regulatory requirements.
• Develop and maintain security documentation such as configuration guides, standard procedures, and internal knowledge‑base articles.
• Perform all other duties and tasks as assigned.

Mostly office environment. On‑call rotations and off‑hours work as necessary.

• Bachelor’s degree in a related field.
• Three (3) years of relevant experience, or equivalent combination of education and experience.
• Valid, unrestricted driver’s license with at least two (2) years of licensed driving.

• Degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• GIAC certifications: GCIH, GSEC, GSTRT.
• ISC² certifications: CISSP, SSCP.
• CompTIA certifications:
  Security+, CySA+.
• Equivalent certifications from other recognized industry organizations.
• Experience with EDR platforms (Crowd Strike Falcon, Carbon Black, Microsoft Defender XDR) including investigation and response workflows.
• SIEM administration and detection engineering (Splunk, Falcon Log Scale) with regex, dashboard and alert tuning.
• Security automation and scripting (Power Shell, Python, Bash, regex).
• Network and forensic analysis tools (Wireshark, Net Scout) and memory, endpoint forensics.
• Cloud administration and security across GCP, Google Workspace, Azure (IAM integration, security controls).
• Firewall administration (Palo Alto), Cisco CLI, virtualization technologies.
• Experience with Windows Server 2016/2019, Windows7‑11, macOS, Linux using CIS benchmarks.
• Email and threat protection systems (Proofpoint TAP/TRAP, cloud‑native defense).
• Collaboration, problem‑solving, continuous learning mindset with ability to work across teams.

The City of Tucson offers a generous benefits package for benefit‑eligible positions, including medical, dental, vision, life, disability, and FSA coverage, pension plan, Roth and pretax deferred compensation savings, paid time off, parental leave, tuition reimbursement, student loan repayment, and opportunities for paid volunteer hours.

The City of Tucson is an Equal Opportunity/Affirmative Action/Veterans/Disability Employer and does not discriminate based on race, color, religion, sex (including sexual orientation, gender identity, and pregnancy), national origin, veteran status, age, disability, genetic testing, or any other protected status. The City of Tucson is committed to providing access and reasonable accommodation for individuals with disabilities or who require religious accommodation.