IT Security Engineer I-III

Salary: $80,000.00 - $90,000.00 Annually
Location : Dispatch Center, 945 E. Pine Ave., Meridian, ID
Job Type: Full-Time with Benefits
Job Number: 02899
Department: Sheriff
Division: ECB- Emergency Comm Fund
Opening Date: 06/11/2026
Closing Date: 6/20/2026 5:00 PM Mountain


General Summary
Do you meet our minimum hiring standards ?
Please check before applying.
The IT Security Engineer will evaluate and oversee data security risks, develop security measures to safeguard information and data, and provide best practices and oversight for application security standards and best practices. The IT Security Engineer analyzes software designs and implementations from a security perspective, and identify and resolve security issues. The incumbent will include the appropriate security analysis, defenses and countermeasures at each phase of the software development lifecycle, to result in robust and reliable software. The IT Security Engineer acts as a project lead and as a subject matter expert for IT Security tools and processes.
Shift Information

General Monday - Friday shift with some flexibility, this may include work outside normal assigned hours in the event of serious systems problems or on-call scheduling.
Benefits

Low-cost medical, dental, and vision insurance
PERSI retirement (fixed monthly income in retirement)
Matching deferred compensation plan; optional 401(k) and Roth IRA
Eleven (11) paid holidays; paid vacation, sick, and parental leave
Free basic life, accidental death, and short-term disability insurance
Wellness program
Visit to view details regarding our full benefits package.
DISTINGUISHING FEATURES OF THE CLASS: The IT Security Engineer I assignments are well defined and of limited scope and technical complexity, using standard procedures and techniques. Guidance is readily available from other team members or management. Schedules, milestones, and priorities are usually provided by management.


The IT Security Engineer II assignments are well defined and of moderate scope and technical complexity, where technical supervision provides an outline of the tasks to be performed and suggestions as to methods of approach and procedure to be followed. Guidance is readily available from other team members or management. Consults with team leader and/or management to develop schedules, milestones, and priorities.


The IT Security Engineer III Assignments are of a complex nature and require technical sophistication, including the generation and use of new techniques. Guidance is given in the form of general instructions on new assignments. Ensures that schedules, milestones, and priorities are compatible with other department goals and projects. May act as a team or project leader on smaller projects.

Essential Functions

IT Security Engineer I

• Perform level 1 application security functions;
• Design, implement and manage security tools and systems (IDS, IPS, VPN, WAF, DLP, Anti-Virus, Anti-Malware, honeypots, SIEM, Vulnerability Scanners, Web Proxies, Forensic toolkits, MFA, key management) in a heterogeneous computing environment that spans multiple physical and virtual data centers;
• Install, configure and maintain security controls such as intrusion detection systems, packet capture devices, data loss prevention tools, and other commercial off the shelf and open source security tools;
• Enhance the security posture of internal infrastructure and client-facing systems;
• Perform risk assessments, vulnerability management, penetration testing and patch management for Unix/Linux, Mac, Windows systems and web applications;
• Understanding of attack vectors, exploits, and hacking tools;
• Detect, investigate and recover from security incidents as well as assisting with incident response plans;
• Responsible for raising company-wide security awareness and monitoring information security related web sites and newsletters to stay up to date on current attacks and trends;
• Assist the Security Engineering Team with evaluation of new and emerging security tools and technologies;
• Maintain technical documentation;
• Consult team members on secure coding practices;
• Administer network and computing devices/systems that enforce security policies and audit controls in Windows and Unix based environment;
• Perform network traffic inspections, network traffic monitoring, and log analysis;
• Recommend the application of fixes, patches, and recovery procedures in the event of a security incident;
• Recommend software tools and/or other solutions for technical challenges involving IT Security processes.

IT Security Engineer II

• In addition to the above;
• Management of all technical security equipment, including IDS/IPS devices, Data Loss Prevention equipment, web content filtering equipment, SIEM;
• Responding to alerts and investigating potential security incidents;
• Ensure that daily compliance tasks are completed in a timely fashion and tracked in the appropriate ticketing system;
• Perform access certifications and other identity and access management related tasks;
• Work closely with developmental operations and software engineering to proactively identify and fix security flaws and vulnerabilities;
• Knowledge in compliance procedures and protocols for Internal audit;
• Troubleshoot and repair issues with operating systems and security applications;
• Perform on-going security testing and code review to improve software security;
• Provide engineering designs for new software solutions to help mitigate security vulnerabilities;
• Design, implement and maintain networking equipment including but not limited to Firewalls, Switches, Routers, etc.;
• Automate routine day-to-day tasks to reduce operational overhead;
• Create reports from various IT Security systems for the purpose of monitoring critical activities and providing security metrics to IT security management;
• Coordinate external assessment teams to complete audit and security assessments.

IT Security Engineer III

• In addition to above;
• Conducts monthly security risk assessment meetings with the IT Operations team;
• Provide technical expertise and guidance for security tools that control and monitor information security;
• Design architecture to include the software, hardware, and communications to support the total requirements as well as provide for present and future cross-functional requirements and interfaces;
• Responsible for developing high level system design diagrams;
• Ensures these systems are compatible and in compliance with the standards for open systems architectures, the Open Systems Interconnection (OSI) and International Standards Organization (ISO) reference models, and profiles of standards - such as Institute of Electrical and Electronic Engineers (IEEE) Open Systems Environment (OSE) reference model - as they apply to the implementation and specification of Information Management (IM) solution of the application platform, across the application program interface (API), and the external environment/software application;
• Evaluates analytically and systematically problems of work flows, organization and planning and develops appropriate corrective action;
• Assess and review current technology infrastructure to identify key risk areas, and ensure adequate levels of controls are in place to address those risks;
• Conduct vendor risk assessments of critical vendors annually including questionnaires, follow up calls, creating assessment reports and remediation of findings.

ADDITIONAL FUNCTIONS

• Performs related duties as required.

Job Requirements

IT Security Engineer I

• Bachelor's degree from an accredited university in Computer Science or related field or equivalent combination of education and experience;
• Minimum of ten (10) years of experience in Information Technology;
• Minimum of three (3) years of experience in IT Security or Networking is required;
• Minimum of two (2) years of experience in scripting and automation is required;
• Experience in networking and scripting/automation is preferred;
• At least one professional certification required (Security +, OSCP, CISSP, CISM, GIAC, CISA, CCNP);
• Using enterprise vulnerability scanning tools;
• Familiarity with penetration testing techniques, tools, methodologies;
• Good understanding of network protocols and ability to perform network traffic analysis and packet inspection;
• Understanding of DDoS mitigation, and intrusion detection and preventions systems;
• Public and private cloud technologies;
• Understanding of DevOps, CI/CD, and up and coming mechanisms for automation;
• Well versed in at least one leading scripting language: Python, Ruby, Perl, bash;
• Familiarity with Agile or other Software Development Lifecycle;
• Familiarity with Object-Oriented programming (languages such as C++, Java);
• Operating systems;
• Cryptographic solutions for data at rest, in transit, in use (SSL, PKI, IPSec, x509);
• Standards and Frameworks (NIST, ISO, PCI, SOX, PII, etc.).

IT Security Engineer II

• In addition to the above;
• Minimum of twelve (12) years of experience in Information Technology;
• Minimum of four (4) years of experience in IT Security or Networking is required;
• Minimum of three (3) years of experience in scripting and automation is required;
• Experience with monitoring IDS/IPS, AV, DLP, etc in a large enterprise environment;
  Understanding of security best practices, threats, mitigating techniques and the ever-evolving security landscape;
• Experience with firewalls, IDS and IPS systems, both commercial and open-source;
• An understanding of network design principles and common enterprise technologies.

IT Security Engineer III

• In addition to the above;
• Minimum of fifteen (15) years of experience in Information Technology;
• Minimum of five (5) years of experience in IT Security or Networking is required;
• Minimum of four (4) years of experience in scripting and automation is required;
• Minimum eight (8) years' experience as a Lead Security Engineer;
• Ability to communicate in both oral and written forms, demonstrating an ability to communicate effectively with all levels of staff;
• Preferred:
  • ITIL Certification
  • Microsoft Certification
  • PMP Certification
  • Unix certification.

OTHER REQUIREMENTS

• Must possess and maintain a valid driver's license;
• Must pass a polygraph and background investigation;
• Must treat coworkers, users and the public with the utmost respect and regard for good public relations;
• This position has been designated safety sensitive and therefore the incumbent is subject to random drug testing;
• Working hours are generally dayshift Monday through Friday, but may vary with the needs of the County and may include evening or weekend work in the event of serious systems problems;
• The position is required to be on-call in order to perform the primary job responsibilities.

Work Environment & Physical Demands

• Work is performed primarily in an office environment and the employee in this class is subject to inside environmental conditions;
• The employee must occasionally lift and/or move up to 40 pounds;
• Requires sufficient personal mobility and physical reflexes, which permits the employee to function in a general office environment to accomplish tasks.

DISCLAIMER
To perform this job successfully, an individual must be able to perform the primary job responsibilities satisfactorily with or without reasonable accommodation. The above statements are intended to describe the general nature and level of work being assigned to this job. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of individuals in the job. This job description is not an employment agreement and/or an expressed or implied employment contract. Management has the exclusive right to alter this job description at any time without notice. Ada County provides Veteran's Preference for all County jobs except for those deemed "key positions" in accordance with Title 65, Chapter 5 of Idaho Code.
Visit to view details regarding our benefits package, including: paid leave, healthcare benefits, retirement benefits, and more!

Use our to get a personalized look at what your total compensation could be including estimated salary, retirement contributions, health benefits and paid time off. This tool is designed to help prospective employees better understand the full value of working at Ada County.

Ada County recognizes that employees are our most valuable asset. We are proud to offer a comprehensive benefits package to benefit-eligible employees designed to support the health, wellness and long-term financial stability of our employees and their families.


Healthcare:

• Low-cost medical, dental, vision premiums and deductibles
• Post-employment health savings account

Retirement and Investments Plans:

• PERSI retirement benefits
• 457(b) post or pre-tax investments options with up to 3% employer match
• 401(k)

Wellbeing Program:

• Employee Assistance Program for short-term counseling on work, family, finances, and personal concerns.
• Free ACHD Commuter ride vanpool program
• Free bus pass

Paid-leave:

• 11 paid holidays per year
• 8 weeks paid Parental Leave
• Approximately 96 hours of vacation accrual for full-time employee
• Approximately 96 hours of sick accrual for full-time employee
• 5 days paid bereavement leave

Life & Short-Term Disability Insurance

• Basic Life Insurance employer paid if benefit eligible
• Short Term Disability employer paid if benefit eligible

Optional Benefits:

• Pre-tax Flexible Spending Account and Dependent Care Account
• NCPERS Decreasing Term Life Insurance
• Supplemental Employee, Spouse, Child Life Insurance
• Supplemental Long-Term Disability Insurance
• AFLAC

01


Describe your hands-on experience using enterprise-level security tools such as vulnerability scanners, IDS/IPS, DLP, SIEM platforms, or packet inspection tools. Provide specific examples of tools you have used, the types of vulnerabilities or threats you identified, and how you remediated or escalated them.
02


Explain your experience with scripting and automation using languages such as Python, PowerShell or bash. Include at least one example where you automated a security or networking task, integrated with CI/CD or DevOps processes, or improved operational efficiency. Be specific about the tools, frameworks, and outcomes.
03


Provide an example of a security incident, network anomaly, or threat you analyzed. Describe how you performed network traffic analysis or packet inspection, the protocols involved, the tools you used, and the steps you took to mitigate or resolve the issue. Your answer should demonstrate your understanding of intrusion detection/prevention and enterprise network security principles.
04


List the professional security certifications you currently hold (e.g., Security+, CISSP, OSCP, CISM, GIAC, CISA, CCNP). Choose one certification and explain how you have applied its knowledge in real-world security operations, engineering tasks, or incident response.
05


Describe your experience working with security standards or frameworks such as NIST, ISO, PCI, SOX, or PII requirements. Provide a specific example of how you implemented, audited, or enforced one of these frameworks in an enterprise environment. Include the tools, processes, and outcomes involved.
06


The established salary range for this role is $80,000-$90,000 per year, based on experience. This range is fixed and cannot be negotiated. Please confirm whether you are willing to accept this compensation.

• Yes
• No

07


Do you meet the minimum qualifications for this position-including a related bachelor's degree or equivalent experience, at least ten years in Information Technology, a minimum of three years in IT security or networking, two years of scripting and automation experience, and at least one professional certification such as Security+, OSCP, CISSP, CISM, GIAC, CISA, or CCNP? If not, please identify which requirements you are missing and indicate whether you are currently pursuing the necessary experience or certifications.
Required Question