If you are an Internal City Employee, Retiree or Dependent/Survivor of a City Employee please apply internally via Career Icon in your Workday account.
Make a difference in the community you live in! As a Community Builder—an employee with the City of Gainesville— you will have a direct hand in building and improving your community and making a visible impact on the lives of your neighbors. Working for local government is more than a job, it’s a chance to contribute to community success and to help enhance the Gainesville way of life.
Department:1330 GRU – Systems Control/Technical Support
Salary Range Minimum:$68,979.59
Salary Range Maximum:$105,083.94
Closing Date:05/27/2025
Job Details:This position is responsible for the administration and monitoring of next-generation firewalls, Security Information and Event Management (SIEM) systems, Intrusion Detection/Prevention Systems (IDS/IPS), and OT network components within critical utility environments. The ideal candidate will have hands-on experience with OT security tools and protocols, an understanding of Purdue model segmentation, and the ability to work collaboratively with IT and compliance teams to ensure secure and resilient operations. This role plays a key part in supporting the protection of OT systems, regulatory compliance, and the overall cybersecurity posture of the utility’s OT infrastructure.
Job Description:
SUMMARY
This position performs advanced, complex technical and analytical work to support a robust multi-facility SmartGrid environment. Work is performed on-site and off-site in a secure, monitored environment 24/7/365. This role supports the reliability, cybersecurity, and regulatory compliance of the bulk electric system, real-time operational systems including SCADA, ICCP, virtualization, and secure communication paths necessary to deliver energy services. Work requires a key technical expert supporting design, security, administration and optimization of Operational Technology and systems supporting critical infrastructure.
This position requires exceptional expertise in network engineering, system administration and cybersecurity within an energy utility or critical infrastructure environment. The incumbent will lead high-impact projects, improve system resilience, and drive adherence to compliance with NERC CIP, NIST and other industry standards while working under minimal supervision. Work in this class is distinguished from higher classes by its lack of supervisory and design responsibility, and from lower classes by its advanced technical and analytical knowledge and skill in communication/data networks, virtual infrastructure and system security monitoring software.
EXAMPLES OF WORK**
**This section of the job description is not intended to be a comprehensive list of duties and responsibilities of the position. The omission of a specific job function does not absolve an employee from being required to perform additional tasks incidental to or inherent in the job. Performance of lower-level duties may be required.
ESSENTIAL JOB FUNCTIONS
Depending on area of assignment, incumbents will have skillsets in one or more of the following areas:
Design, implement, and optimize high-availability network architecture (LAN, WAN, VLAN, SD-WAN, and wireless), firewalls, VPNs, intrusion detection systems (IDS/IPS), and segmentation strategies to secure OT environments and maintain real-time communications.
Communicates network security policies and procedures required for regulatory compliance, to end users, control room operators and remote facility staff.
Design, install, configure, administer, monitor and optimize server infrastructure, including redundant and highly available virtualized environments, cloud-based solutions, Windows and Linux servers, databases, and storage supporting SCADA and other OT applications in a Critical Infrastructure Protection (CIP) environment.
Creates, maintains, removes and audits physical and electronic access to NERC CIP environments.
Utilize regulatory and industry standards, frameworks (NERC CIP, NIST 800-53, and DOE C2M2), to identify capabilities and technologies needed to provide enhanced cyber defenses.
Conduct penetration tests, vulnerability scans, risk assessments, and regular audits to protect OT assets and provide recommendations and plans to mitigate identified concerns.
Lead the development, execution and testing of incident response (IR), disaster recovery (DR) and business continuity (BCP) plans. Provide subject matter expertise during cyber incidents, response and remediation.
Work closely with System Control, SCADA Engineers, IT Security, and external vendors to implement secure, scalable solutions.
Develops and follows processes and procedures for network systems change management, configuration control, preventative maintenance, access control in accordance with GRU documented policies and the NERC Critical Infrastructure Protection (CIP) requirements.
Participates in Operational Technology (OT) feasibility studies, capacity planning, performance analysis and fine-tuning, new technology evaluation, new systems and applications technical requirements specifications and review.
NON-ESSENTIAL JOB FUNCTIONS
Conducts research on emerging products, services, protocols, and standards in support of network component procurement, enhancements and development efforts.
Performs cost-benefit and return-on-investment analyses for proposed network components to aid management in making implementation decisions.
Performs other related duties as assigned.
Attends required on-the-job or coursework training.
Attends work on a continuous and regular basis.
Drives to remote locations.
QUALIFICATIONS
To perform this job successfully, an individual must be able to perform each essential job function satisfactorily. Below are the required education, experience, knowledge, skills and abilities to perform the essential functions.
EDUCATION AND EXPERIENCE
Bachelor’s degree from an accredited four-year college or university with major course work in computer science, information systems, network engineering, cybersecurity or related field; and four (4) years of experience in at least two of the following areas of: data communications, computer networks/systems/security, communication projects
or an Associate degree and six (6) years of experience in at least two of the following areas of: data communications, computer networks/systems/security, communication projects,
or an equivalent combination of education, training and experience which provides the required knowledge, skills and abilities.
CERTIFICATIONS OR LICENSES
Licenses
A valid Florida Driver License is required at time of appointment and at all times while employed in this classification.
Certifications
Firewall certification, Security+ for network knowledge.
Microsoft Certified: Azure Administrator Associate, Virtualization certification, or Linux LPIC for system expertise.
GIAC Global Industrial Cyber Security Professional (GICSP) or ISA/IEC 62443 for OT security knowledge.
ITIL Certification for process management.
KNOWLEDGE, SKILLS AND ABILITIES
Working knowledge of OT protocols (ICCP, DNP3, Modbus, OPC) and other industrial communication standards.
Proficiency in firewalls, IDS/IPS, SIEM, and access control strategies for critical infrastructure.
Strong virtualization experience with virtualized OT environments.
Leadership and process management skills to drive OT initiatives and mentor new employees.
Ability to analyze and mitigate cyber threats in OT environment.
Ability, experience and willingness to observe all proper and safe work practices and use of tools, communication and testing equipment to ensure the safety of systems, hardware, self and others.
Ability, experience and willingness to work without direct supervision and to creatively and effectively solve system and hardware issues.
Ability, experience and willingness to work effectively with coworkers and the general public.
Ability and experience to maintain a high level of integrity when dealing with customers and systems to instill trust and to maintain security.
Ability, experience and willingness to communicate effectively, both orally and in writing, with customers, coworkers, supervisors and managers.
Ability, experience and willingness to stay current on all software and hardware systems to ensure ability to maintain system integrity and security, as well as the ability to resolve issues.
Ability and experience to lead, coordinate and participate in key process improvements as they relate to the multi-facility network environment.
Knowledge of principles and processes for providing customer service which includes customer needs assessment, meeting quality standards for services, and evaluation of customer satisfaction.
Knowledge of relevant equipment, policies, procedures, and strategies to promote effective local security operations for the protection of people, data, and property.
PHYSICAL AND ENVIRONMENTAL REQUIREMENTS
To perform this job successfully, an individual must possess certain physical abilities and be able to withstand work related environmental conditions.
PHYSICAL REQUIREMENTS
Work requires physical strength and agility to safely perform all essential job functions.
Must be able to perform sedentary work on an uninterrupted basis.
WORK ENVIRONMENT
Work is primarily performed in an office environment with moderate noise levels but occasionally involves working in environments with varying noise levels.
Work may require exposure to hazardous conditions while working in substations and server rooms.
Work may require performance of duties in moderate heat and confined areas.
May require working outside regular business hours, including nights, weekends and holidays.
Note:
May Require Assessment(s).
May fill multiple positions.
May establish an eligibility list.
Come join our team! The City of Gainesville offers a competitive benefits package and opportunities to grow both professionally and personally.
All ‘regular’ employees are eligible for traditional benefits such as health insurance, life insurance, paid leave, 11 paid a holidays a year, a pension plan and a deferred compensation plan, but we also offer great things like on-site fitness centers, tuition reimbursement, on-site medical staff and a wellness program to keep you healthy and happy. Please note; benefits are not available for temporary employees.
Equal Opportunity
The City of Gainesville is an equal opportunity/affirmative action employer and does not discriminate in hiring. Minorities, women and individuals with disabilities are encouraged to apply. Individuals with a disability, who require special accommodations during the selection process, should notify the Human Resources Department at 352-334-5077 or TDD/TTY at 352-334-2292.
Veterans’ Preference
Veterans are encouraged to apply. Veterans’ Preference ensures that veterans and eligible persons are given consideration at each step of the selection process. However, preference does not guarantee that a veteran or other eligible person will be the candidate selected to fill the position. Section 295.07, Florida Statutes (F.S.) specifies who is eligible for Veterans’ Preference. State of Florida residency is not required for Veterans’ Preference.
If you are unable to apply online due to a disability, contact recruiting at HR@cityofgainesville.org or by calling 352-334-5077.
About Us
The City of Gainesville employs more than 2,200 individuals, ranging in positions from creatives to critical infrastructure engineers to financial gurus. The city offers many unique career opportunities across its two major employment divisions — General Government and the City of Gainesville’s utility service provider, Gainesville Regional Utilities.Read More
Follow Us
© 2025 Workday, Inc. All rights reserved.