Salary:
$87,880.00 - $127,774.40 Annually Location :
Denver, CO Job Type:
Full time Job Number:
2054_022026 Department:
Information Technology Opening Date:
02/12/2026 Closing Date:
3/2/2026 11:59 PM Mountain
Metro Water Recovery in Denver, CO -
a nationally recognized leader among clean water utilities, provides wastewater conveyance and treatment services for more than 2 million people in the Denver Metro area.
At Metro, we help you be your best so we can do our best. You will join a team that offers stability, flexibility, and the opportunity to make a difference. We take pride in being part of an industry-leading team who serves the community by protecting the region's health and environment. Description
Responsible for monitoring Metro's IT systems for threat data, vulnerability scanning, system integrity, and security monitoring. Performs internal and external penetration testing, forensic investigation, and risk assessments. Works under the direction of the Sr. Cybersecurity Manager. Examples of Duties
Perform risk assessments, determine the security controls, procedures, and behaviors to be assessed. Monitor all applicable system logs, configurations, changes, and states for anomalies. Determine appropriate action based on the nature of the anomaly. Respond to cybersecurity system alerts. Verify that alert is authentic and respond in an appropriate manner. May need to contact users and work with users to ensure cyber safety. Acquire reliable threat and vulnerability information from federal, state and local trusted sources inclusive but not limited to the Department of Homeland Security, Federal Bureau of Investigation, State and Local law enforcement and cybersecurity resources and contract services. Performs duties relating to the cybersecurity program as a permanent member of the cybersecurity program management team. Keeps up to date on emerging threats, and defensive technologies and products, including attaining technical training and maintaining industry certifications as required. Performs other duties as assigned.
Qualifications
Knowledge/Skills/Abilities Knowledge of: IT Network Systems Windows Server, Linux, or Azure systems administration Cybersecurity software tools and Cybersecurity Incident Response Process Enterprise Anti-Virus Packages (Falcon CrowdStrike or similar software) Hacking/Penetrating software (Kali Linux or similar software) Security Incident and Event Management (SIEM) (Splunk or similar software) Compliance and Regulations (CIS Controls, NIST) General office processes and procedures Skilled at: Threat Detection and Monitoring (Analyzing network traffic and logs) Penetration testing and ethical hacking Cloud security, cloud administration, and identity access management Incident Response, Mitigation, and Forensics (Investigating breaches, malware infections) Vulnerability Management (Conducting vulnerability scans using tools like Nessus) Communication and education around complex security concepts to technical and non-technical staff Ability to: Identify, analyze, and respond to cybersecurity threats in real-time Apply security controls, implement endpoint protection (e.g., CrowdStrike) Contain, mitigate, and recover from security incidents Effectively communicate verbally and in writing. Establish and maintain effective working relationships with other employees. Document and update cybersecurity policies and procedures Solving problems utilizing critical thinking skills Maintain emotional control under ambiguous and stressful circumstances Adapt to a fast-paced environment Demonstrate initiative and continuous learning
Education Bachelor's degree in IT, Cybersecurity, or related field. A combination of education and relevant experience may be considered in lieu of a degree.
Certifications and Licenses At least two of the following certifications: Security+, CEH, CC, NIST-CSF, or Pentest+ Working Conditions Typical Work Environment Variety of floor surfaces including concrete, gravel, asphalt, dirt, tile, loose stones, uneven surfaces, slippery surfaces, and wet surfaces; Inside environment; Outside environment all year in all weather conditions and temperatures; Chemicals; Lighting conditions including natural light, fluorescent, head lamps, incandescent, and low light; Vibration; Moving equipment; Work in Clustered Spaces
Body Position Demands Standing; Walking; Climbing stairs; Climbing ladders; Reaching forward and overhead; Balancing; Object handling; Simple hand/ Firm hand grasping; Operating controls; Sitting; Stooping; Kneeling; Crouching; Typing; Fine hand coordination
Physical Demands (max forces are expected to be infrequent) Max Weight Lifted: 64 lbs Max Weight Carried: 64 lbs Max Force Pushed: 64 lbs Max Force Pulled: 64 lbs
Sensory Requirements Wide field of view; Vision - Near; Depth perception; Perception - spatial and form; Feeling with fingers; Speaking; Vision - Near and Far Metro Water Recovery is an Equal Opportunity Employer. Metro Water Recovery offers a wide range of employee benefits including: * Medical * Dental * Vision * Life Insurance * Accidental Death & Dismemberment Insurance * Retirement * Leave Time (Vacation, Sick Leave, Personal Leave, & Holiday) * Additional Voluntary Benefits
about our organization. 01
After reviewing the Job Posting and the Working Conditions for this position, are you able to perform the essential functions of this job with or without accommodation?
Yes No
02
Please indicate your highest level of education attained.
High School or Diploma or GED Some College Associates Degree Bachelors Degree Masters Degree or higher
03
Please indicate which of the following certifications you currently hold: Security+, CEH, CC, NIST-CSF, or Pentest+. List all applicable certifications in the space below 04
Please recount the most challenging or stressful cybersecurity incident you've responded to. What made it difficult, how did you approach it, and what did you learn about managing pressure? 05
Have you ever had to handle a high-pressure situation where senior management or executives were demanding immediate updates during an ongoing incident? How did you manage expectations and communication? 06
Please tell us about a security control or best practice you disagree with-or think is often implemented poorly. Why? Required Question
$87,880.00 - $127,774.40 Annually Location :
Denver, CO Job Type:
Full time Job Number:
2054_022026 Department:
Information Technology Opening Date:
02/12/2026 Closing Date:
3/2/2026 11:59 PM Mountain
Metro Water Recovery in Denver, CO -
a nationally recognized leader among clean water utilities, provides wastewater conveyance and treatment services for more than 2 million people in the Denver Metro area.
At Metro, we help you be your best so we can do our best. You will join a team that offers stability, flexibility, and the opportunity to make a difference. We take pride in being part of an industry-leading team who serves the community by protecting the region's health and environment. Description
Responsible for monitoring Metro's IT systems for threat data, vulnerability scanning, system integrity, and security monitoring. Performs internal and external penetration testing, forensic investigation, and risk assessments. Works under the direction of the Sr. Cybersecurity Manager. Examples of Duties
Perform risk assessments, determine the security controls, procedures, and behaviors to be assessed. Monitor all applicable system logs, configurations, changes, and states for anomalies. Determine appropriate action based on the nature of the anomaly. Respond to cybersecurity system alerts. Verify that alert is authentic and respond in an appropriate manner. May need to contact users and work with users to ensure cyber safety. Acquire reliable threat and vulnerability information from federal, state and local trusted sources inclusive but not limited to the Department of Homeland Security, Federal Bureau of Investigation, State and Local law enforcement and cybersecurity resources and contract services. Performs duties relating to the cybersecurity program as a permanent member of the cybersecurity program management team. Keeps up to date on emerging threats, and defensive technologies and products, including attaining technical training and maintaining industry certifications as required. Performs other duties as assigned.
Qualifications
Knowledge/Skills/Abilities Knowledge of: IT Network Systems Windows Server, Linux, or Azure systems administration Cybersecurity software tools and Cybersecurity Incident Response Process Enterprise Anti-Virus Packages (Falcon CrowdStrike or similar software) Hacking/Penetrating software (Kali Linux or similar software) Security Incident and Event Management (SIEM) (Splunk or similar software) Compliance and Regulations (CIS Controls, NIST) General office processes and procedures Skilled at: Threat Detection and Monitoring (Analyzing network traffic and logs) Penetration testing and ethical hacking Cloud security, cloud administration, and identity access management Incident Response, Mitigation, and Forensics (Investigating breaches, malware infections) Vulnerability Management (Conducting vulnerability scans using tools like Nessus) Communication and education around complex security concepts to technical and non-technical staff Ability to: Identify, analyze, and respond to cybersecurity threats in real-time Apply security controls, implement endpoint protection (e.g., CrowdStrike) Contain, mitigate, and recover from security incidents Effectively communicate verbally and in writing. Establish and maintain effective working relationships with other employees. Document and update cybersecurity policies and procedures Solving problems utilizing critical thinking skills Maintain emotional control under ambiguous and stressful circumstances Adapt to a fast-paced environment Demonstrate initiative and continuous learning
Education Bachelor's degree in IT, Cybersecurity, or related field. A combination of education and relevant experience may be considered in lieu of a degree.
Certifications and Licenses At least two of the following certifications: Security+, CEH, CC, NIST-CSF, or Pentest+ Working Conditions Typical Work Environment Variety of floor surfaces including concrete, gravel, asphalt, dirt, tile, loose stones, uneven surfaces, slippery surfaces, and wet surfaces; Inside environment; Outside environment all year in all weather conditions and temperatures; Chemicals; Lighting conditions including natural light, fluorescent, head lamps, incandescent, and low light; Vibration; Moving equipment; Work in Clustered Spaces
Body Position Demands Standing; Walking; Climbing stairs; Climbing ladders; Reaching forward and overhead; Balancing; Object handling; Simple hand/ Firm hand grasping; Operating controls; Sitting; Stooping; Kneeling; Crouching; Typing; Fine hand coordination
Physical Demands (max forces are expected to be infrequent) Max Weight Lifted: 64 lbs Max Weight Carried: 64 lbs Max Force Pushed: 64 lbs Max Force Pulled: 64 lbs
Sensory Requirements Wide field of view; Vision - Near; Depth perception; Perception - spatial and form; Feeling with fingers; Speaking; Vision - Near and Far Metro Water Recovery is an Equal Opportunity Employer. Metro Water Recovery offers a wide range of employee benefits including: * Medical * Dental * Vision * Life Insurance * Accidental Death & Dismemberment Insurance * Retirement * Leave Time (Vacation, Sick Leave, Personal Leave, & Holiday) * Additional Voluntary Benefits
about our organization. 01
After reviewing the Job Posting and the Working Conditions for this position, are you able to perform the essential functions of this job with or without accommodation?
Yes No
02
Please indicate your highest level of education attained.
High School or Diploma or GED Some College Associates Degree Bachelors Degree Masters Degree or higher
03
Please indicate which of the following certifications you currently hold: Security+, CEH, CC, NIST-CSF, or Pentest+. List all applicable certifications in the space below 04
Please recount the most challenging or stressful cybersecurity incident you've responded to. What made it difficult, how did you approach it, and what did you learn about managing pressure? 05
Have you ever had to handle a high-pressure situation where senior management or executives were demanding immediate updates during an ongoing incident? How did you manage expectations and communication? 06
Please tell us about a security control or best practice you disagree with-or think is often implemented poorly. Why? Required Question