Description

The Network Security Engineer serves as an individual contributor within DCTA's Innovation & Information Technology department. This position is responsible for the administration, security, and operational integrity of DCTA's enterprise network infrastructure, cybersecurity systems, and business applications. The role works alongside the Systems Administrator as a technical peer, with a primary focus on network engineering, security operations, and application support. This position reports to the Director of Information Technology and Cybersecurity.

ESSENTIAL FUNCTIONS

The following duties are standard for this position. The omission of specific statements of duties does not exclude them from the classification if the work is similar, related, or a logical assignment for this classification.
• Administers DCTA's layer 3 fiber optic networks, including the design, configuration, monitoring, and maintenance of switches, routers, firewalls, and related network hardware across all DCTA facilities and operational environments.
• Manages VLAN segmentation, routing protocols, access control lists, and network policies to ensure performance, availability, and security across DCTA's wired and wireless environments.
• Administers and maintains DCTA's wireless infrastructure across facilities and fleet vehicles, ensuring reliable connectivity for both IT and operational technology systems in coordination with operations and other IT staff.
• Deploys, configures, and manages network monitoring tools to proactively identify performance degradation, outages, and security anomalies across DCTA's network environment.
• Manages secured vendor access to internal and external network systems in alignment with DCTA's IT Cybersecurity Policy, including access provisioning, monitoring, and revocation.
• Plans and executes network capacity assessments, infrastructure upgrades, and technology refresh cycles to ensure DCTA's network environment supports current and future operational requirements.
• Administers and configures DCTA's cybersecurity toolset, including but not limited to identity security, identity and access management, application control, and endpoint protection platforms - serving as a subject matter expert in coordination with the Systems Administrator.

• Manages firewall rule sets, intrusion detection/prevention policies, and network access controls to protect DCTA's internal and external-facing systems from unauthorized access and threats.
• Implements, monitors, and enforces DCTA's IT security policies across network, application, and end-user environments, ensuring organizational compliance and end-user adherence. This includes monitoring, investigating, and responding to security events, alerts, and potential incidents across DCTA's network and application environments.
• Supports DCTA's cybersecurity posture through vulnerability assessments, remediation tracking, and coordination with the Director of IT and Cybersecurity on risk management activities.
• Works alongside the Systems Administrator as a senior technical peer, providing cross-functional coverage and shared expertise across infrastructure, network, and security domains to ensure operational continuity within a small, high-responsibility team.
• Serves as an escalation point for helpdesk and OT helpdesk staff on network, security, and application-related issues.

SUPERVISORY RESPONSIBILITIES

None

Requirements

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Where applicable, an equivalent combination of education and experience may be considered in lieu of education/experience listed below.

EDUCATION AND EXPERIENCE
• Associates'/Bachelors' Degree from an accredited college or university with major course work in technology, business, or other related discipline is preferred.
• Eight (8) years of functional experience supporting users in an enterprise environment.
• Familiarity with Microsoft Entra ID, Active Directory, and Office 365 administration.
• Experience supporting Azure cloud workloads is a plus.
• Experience with remote support tools and helpdesk ticketing systems in an enterprise environment is highly preferred.
• Experience with cybersecurity tools, policies, and incident response practices.
• Industry-recognized network certification (e.g., CCNA, CCNP, CompTIA Network+).
• Industry-recognized security certification (e.g., CompTIA Security+, CompTIA CySA+, CISSP, or equivalent).

Knowledge, Skill, & Ability:
• 8 years of progressive experience in systems administration, network engineering, or a related IT discipline.
• Ability to demonstrate a working knowledge of Demonstrated experience administering enterprise network infrastructure (switches, routers, firewalls, VLANs) and advanced networking protocols and architecture.
• Proven ability to meet deadlines and successfully manage projects from start to finish.
• Ability to hold vendors accountable to implementation timelines and support Service Level Agreements (SLA's).
• Communicate clearly, concisely, and effectively, both orally and in writing, with all internal and external stakeholders and including the general public. Represents DCTA to external organizations and the public professionally.
• Ability to use rigorous logic and methods to solve difficult problems with effective solutions.
• Ability to pick up on technical information quickly; can learn new skills and technical knowledge.
• Adept at reading, writing, and interpreting technical documentation and procedure manuals.
• Ability to conduct research into software issues and products as required.
• Ability to present ideas and solutions in user-friendly language.
• Ability to be highly self-motivated and proactive. A keen attention to detail is required.
• Work within a team-oriented, collaborative environment.
• Able to provide quality customer service to the internal customer.
• Ability to manage a complex workload and to plan and prioritize.
• Effectively manage independent vendors to accomplish tasks and meet deadlines.
• Understand, interpret, and apply laws, rules, policies, procedures, budgets, and contracts.

Special Requirements: Hold a current valid Texas Driver's License or have the ability to obtain one upon entry into the position. Ability to work variable work hours. Available in the event of required emergency response.

PHYSICAL ACTIVITIES: Physical activity includes, but is not limited to: on a continuous basis, sit at a desk for long periods of time; intermittently twist and reach office equipment; write or use keyboard to communicate through written means; lift moderate weight; reaching above the waist, reaching below the waist, and reaching waist to shoulder to reach inventory on shelves; repetitive motion and fingering when using a computer keyboard; talking and hearing when dealing with customers; and observation of transit projects and operations during field work along the right-of-way.