Network Security Engineer

Location: 1955 Lakeway Dr, Suite 260, Lewisville, TX 75057, United States

Base Pay: $70,009.00 - $85,009.00 per year

Job Category: Information Technology, Cybersecurity, Network Engineering

Employee Type: Exempt

Required Degree: 2 Year Degree

Manage Others: No

Job Description

The Network Security Engineer serves as an individual contributor within DCTA's Innovation & Information Technology department. This position is responsible for the administration, security, and operational integrity of DCTA's enterprise network infrastructure, cybersecurity systems, and business applications. The role works alongside the Systems Administrator as a technical peer, with a primary focus on network engineering, security operations, and application support.

This position reports to the Director of Information Technology and Cybersecurity.

Essential Functions

• Administers DCTA's layer 3 fiber optic networks, including the design, configuration, monitoring, and maintenance of switches, routers, firewalls, and related network hardware across all DCTA facilities and operational environments.
• Manages VLAN segmentation, routing protocols, access control lists, and network policies to ensure performance, availability, and security across DCTA's wired and wireless environments.
• Administers and maintains DCTA's wireless infrastructure across facilities and fleet vehicles, ensuring reliable connectivity for both IT and operational technology systems in coordination with operations and other IT staff.
• Deploys, configures, and manages network monitoring tools to proactively identify performance degradation, outages, and security anomalies across DCTA's network environment.
• Manages secured vendor access to internal and external network systems in alignment with DCTA's IT Cybersecurity Policy, including access provisioning, monitoring, and revocation.
• Plans and executes network capacity assessments, infrastructure upgrades, and technology refresh cycles to ensure DCTA's network environment supports current and future operational requirements.
• Administers and configures DCTA's cybersecurity toolset, including but not limited to identity security, identity and access management, application control, and endpoint protection platforms — serving as a subject matter expert in coordination with the Systems Administrator.
• Manages firewall rule sets, intrusion detection/prevention policies, and network access controls to protect DCTA's internal and external‑facing systems from unauthorized access and threats.
• Implements, monitors, and enforces DCTA's IT security policies across network, application, and end‑user environments, ensuring organizational compliance and end‑user adherence. This includes monitoring, investigating, and responding to security events, alerts, and potential incidents across DCTA's network and application environments.
• Supports DCTA's cybersecurity posture through vulnerability assessments, remediation tracking, and coordination with the Director of IT and Cybersecurity on risk management activities.
• Works alongside the Systems Administrator as a senior technical peer, providing cross‑functional coverage and shared expertise across infrastructure, network, and security domains to ensure operational continuity within a small, high‑responsibility team.
• Serves as an escalation point for helpdesk and OT helpdesk staff on network, security, and application‑related issues.

Supervisory Responsibilities

None

Requirements

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Where applicable, an equivalent combination of education and experience may be considered in lieu of education/experience listed below.

Education and Experience

• Associate's or Bachelor's Degree from an accredited college or university with major coursework in technology, business, or a related discipline is preferred.
• Eight (8) years of functional experience supporting users in an enterprise environment.
• Familiarity with Microsoft Entra ID, Active Directory, and Office 365 administration.
• Experience supporting Azure cloud workloads is a plus.
• Experience with remote support tools and helpdesk ticketing systems in an enterprise environment is highly preferred.
• Experience with cybersecurity tools, policies, and incident response practices.
• Industry‑recognized security certification (e.g., CompTIA Security+, CompTIA CySA+, CISSP, or equivalent).

Knowledge, Skill, & Ability

• Eight (8) years of progressive experience in systems administration, network engineering, or a related IT discipline.
• Demonstrated experience administering enterprise network infrastructure, including switches, routers, firewalls, VLANs, and advanced networking protocols and architecture.
• Proven ability to meet deadlines and successfully manage projects from start to finish.
• Ability to hold vendors accountable to implementation timelines and support Service Level Agreements (SLAs).
• Communicates clearly, concisely, and effectively, both orally and in writing, with all internal and external stakeholders, and represents DCTA to external organizations and the public professionally.
• Uses rigorous logic and methods to solve difficult problems with effective solutions.
• Quickly picks up technical information; can learn new skills and technical knowledge.
• Adapts to reading, writing, and interpreting technical documentation and procedure manuals.
• Conducts research into software issues and products as required.
• Presents ideas and solutions in user‑friendly language.
• Is highly self‑motivated and proactive; pays keen attention to detail.
• Works within a team‑oriented, collaborative environment.
• Provides quality customer service to the internal customer.
• Manages a complex workload and plans and prioritizes.
• Effectively manages independent vendors to accomplish tasks and meet deadlines.
• Understands, interprets, and applies laws, rules, policies, procedures, budgets, and contracts.

Special Requirements

Hold a current valid Texas Driver's License or have the ability to obtain one upon entry into the position. Ability to work variable work hours. Available in the event of required emergency response.

Physical Activities

Physical activity includes, but is not limited to: on a continuous basis, sit at a desk for long periods of time; intermittently twist and reach office equipment; write or use keyboard to communicate through written means; lift moderate weight; reaching above the waist, reaching below the waist, and reaching waist to shoulder to reach inventory on shelves; repetitive motion and fingering when using a computer keyboard; talking and hearing when dealing with customers; and observation of transit projects and operations during field work along the right‑of‑way.

Benefits

• Employee portions of Medical and Dental benefits are 100% paid by the employer.
• If you have utilized a Proportionate Retirement Program in the past, the service time transfers to DCTA’s retirement system, TCDRS. The following systems apply:
  • Texas Municipal Retirement System (TMRS)
  • Employees Retirement System (ERS)
  • Judicial Retirement System of Texas (JRS)
  • Teacher Retirement System of Texas (TRS)
  • City of Austin Employees Retirement System (COAERS)
• Expanding time‑off accruals: 12 days of vacation time accrued for the first year, increasing by one day each year, with a maximum of 17 days annually. Additionally, employees earn 12 days of sick time each year, 4 floating holidays, 9 fixed holidays, and the ability to earn two additional days off through the Wellness Program.
• Regional transit passes (bus and rail) for you and your immediate family.
• Extensive Wellness Program, including opportunities to volunteer with the agency, lunch and learn events, chair massages, and continual efforts to improve wellness throughout the agency.

DCTA IS AN EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER