National Association of State Retirement Administrators

Position Information

Information Security Engineer


Unleash your potential by joining our team as a (position). At PERA, you can support those who have supported you whether it’s a favorite teacher, the snowplow driver that cleared winter roads or the state trooper who let you off with a warning. Chances are these people who make a difference are PERA members and you can make a difference to those who have helped you.


As an Information Security Engineer, you will work with a team responsible for maintaining the security and integrity of the organization's information systems and data. You will identify and mitigate potential security risks, respond to security incidents, participate in information security projects, and work with audit teams to certify environments. Candidates will possess general knowledge of Windows domain environment administration, incident response, vulnerability scanning, script writing, network principles, and virtualization technology. This is a technical, internal-facing role that requires a combination of communication skills, problem solving skills, and technical aptitude.


Our ideal candidate is a mid-career professional with prior experience working in information security. The candidate has a solid foundation of understanding with regard to information security best practices and strategies. We are searching for a skilled engineer and require someone with excellent technical and communication skills who can help solve complex information security problems and minimize risk for Colorado PERA.

  • +5 years working in an IT security discipline with technical responsibilities for maintaining information security systems and business processes
  • Experience deploying devices and services intended to address key organizational security requirements
  • Proficient in interpreting configuration documents, security alerts, and log data. Comfortable proactively responding to security incidents
  • Demonstrated ability to make independent decisions, balance multiple initiatives, and drive issues to closure
  • Passion for information security in practice and a general desire to continuously learn and understand varying aspects of IT and technology
  • Works well independently, has excellent communication and business relationship management skills
  • Certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH), Microsoft Security Operations Analyst, etc.


  • Monitor and analyze the organization's computer networks and systems for potential security breaches or vulnerabilities
  • Administers key technology within the infosec stack acting as the escalation contact for platform user support and troubleshooting
  • Plan, implement, upgrade, and support a variety of information security systems and platforms including firewalls, web / application proxies, e-mail security gateways, ids/ips services, SIEM services, vulnerability assessment, password vaults, and other systems as assigned
  • Investigate and respond to security incidents, perform forensics analysis, and aid system owners in remediation
  • Develop and implement security policies and procedures including DR plans to protect the organization's systems and data
  • Conduct vulnerability assessments and participate in penetration testing to identify weaknesses in the organization's systems and applications
  • Participate in security audits and compliance assessments. Work with internal audit groups to drive continuous improvement in risk posture
  • Collaborate with various internal teams to ensure security best practices are followed across all departments
  • Stay up-to-date with the latest security trends, vulnerabilities, and technologies
  • Performs other duties as assigned
Position: Information Security Engineer
Organization: Colorado PERA
Location: Denver,  CO 
United States
Salary: $105,000 - $130,000
Posting Start Date: 8/2/2023
Date Posted: 8/2/2023


  • Degree in technical (STEM) field and two years' experience in technical role preferred, or equivalent combination of education and experience
  • Strong understanding of information security principles and best practices
  • Familiarity with security technologies including firewalls, logging systems, intrusion detection/prevention systems, antivirus, encryption, and other systems as assigned
  • Experience with security assessment tools and methodologies, vulnerability management, policy writing, audit requirement fulfillment, and report generation
  • Expert understanding of administration tasks including user/group/role assignment, security permissions administration, access authentication and authorization schemes, and least privileged access principles preferred
  • Excellent written and oral communication skills, strong attention to detail and ability to work independently. Ability to analyze complex technical problems and propose technological solutions
  • Working knowledge and understanding of computer networking protocols, authentication protocols, and secure communications in a Windows domain environment preferred. DHCP/DNS, TCP/UDP, ICMP, Certificates, Kerberos, SNMP, NTLM, etc.


  • Standard environment with telephone communication, computer operation, and other office machines
  • Required occasional on-call assistance outside of normal business hours


  • Opportunity to work from home up to three days per week. Eligibility dependent upon factors detailed in PERA's Work from Home Policy.


This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of an employee. Duties, responsibilities, and activities may change or new ones may be assigned with or without notice.

Unfortunately, at this time, we cannot consider candidates that require sponsorship (now or in the future), or are located outside of the US.

Complete the employment application online at Please have copies of your resume and cover letter available to upload. Please review the following questions. You will be asked for a response to these as part of your application:

  1. Tell me about a time when you had to analyze information and make a recommendation. What kind of thought process did you go through? Was the recommendation accepted? If not, why?
  2. Tell me about a situation where you had to communicate effectively to solve a problem. What did you do? What was the outcome? What do you wish you had done differently?
  3. Tell me about a time when you had to make a decision without all the information you needed. How did you handle it?
  4. Describe a situation in which you recognized a potential problem as an opportunity. What did you do? What was the result? What, if anything, do you wish you had done differently?
  5. Tell me about a project you helped complete. What did you do? Why? What was the outcome? Were you happy with the result? Was the project successful?
  6. Describe a situation in which you worked across different teams to resolve a complex technical problem? How did you handle communications within multiple departments? Were you able to resolve the problem? If not, why?

As Colorados largest public pension plan, we are committed to providing retirement and other benefits to more than 600,000 current and former teachers, State Troopers, corrections officers, snowplow drivers, and many other public employees who provide valuable service to all of Colorado.

We hire exceptional employees and invest in their growth and development. We are passionate about our work and committed to serving our members by delivering quality customer service, sound investment decisions, and education programs. Our culture is built on the core values of integrity and accountability, excellence and initiative, collaboration, and engagement. We value diverse perspectives and promote an inclusive culture, recognizing that our people are our primary asset. We provide a healthy work-life balance and a culture where excellence is rewarded. At PERA, your work makes a difference every day.

At PERA, you will earn more than just a paycheck- our total rewards package is focused on wellbeing. We offer a comprehensive benefit plan with eligibility for most plans being the first of the month following the date of hire. We offer a generous paid time off plan as well as paid volunteer hours, PERAs defined benefit plan, 401(k) and 457 defined contribution plans (including employer match on the 401(k), as applicable), tuition assistance, on-the-job training, free access to an on-site fitness center, free on-site parking or RTD subsidy, and more. PERA is also a Public Service Loan Forgiveness qualifying employer. For more information, please visit

Position Title: Information Security Engineer 
Division: Information Technology
Reports to: Information Security Manager
Job Status: Full Time / Exempt
Salary: $105,000 - $130,000 annually, commensurate with experience
Posting Dates: 7/28/2023 - 8/13/2023

Status: This listing expires on: 10/1/2023
Apply Apply for this Position
Send to a Friend  Send to Friend
   Print Job
Return to Job Search  Return to Job Search
Post a Position  Post a Position
Organization Information
Colorado PERA

Denver,  CO 80203
United States
Chris Erwin