New York Police Department
The New York City Department of Transportation's (DOT) IT & Telecom division is seeking a capable Information Security Engineer , who enjoys security work and possesses both deep and wide expertise in the cybersecurity space. Under the direction of the Executive Director of Information Security and in coordination and cooperation with DOT business units, the successful candidate will help implement and monitor security controls, conduct regular system tests and ensure continuous monitoring of the Agency's information systems. Promptly respond to all security incidents and provide thorough post-event analyses. Make things more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks, and securing the Agency's information. Responsibilities: Ensure that security architecture and designs, plans, controls, standards, and policy/procedures conform with best practices and are aligned with Citywide security policies, and the Agency's strategic security plan. Plan, define, and maintain policies, standards, configuration standard operating procedures, and guidelines regarding security, identity, and access. Monitor industry developments and liaise with vendors. Ensure compliance with Citywide and agency security policies and standards. Recommends updates and improvements to agency security policies and standards. Identify probable system exposure, compromise, problems, or design flaws and escalate issues to limit serious performance impact. Define, manage, and monitor data security, confidentiality, integrity, and availability. Analyze and design security controls to secure network infrastructure to maximize performance and capacity. Plan and initiate new security infrastructure architecture or design changes. Consult with business units to provide IT Security policy guidance. Support application development, network, server, database, and storage teams regarding new technologies, services, and system requirements as needed. Define, manage, and monitor security systems, including procedures for detecting, reporting, and responding to computer security incidents. Serve as subject matter expert regarding security design of applications, networks, servers, storage, virtualization, directory services, identity connectors, authentication, web single sign-on, and federation. Liaise with vendors as necessary. Monitor developments regarding various IT architectural platforms, including hardware, software, network communication components, operating systems, LDAP, server networking, load-balancing, DNS, certificate management, and HTTPS. Review and analyze design and accreditation documentation to ensure appropriate security controls are in place. Perform security assessments of applications and network infrastructure. Oversee multiple projects related to security architecture and implementation. Architect, design, implement, maintain, and operate information system security controls and countermeasures. Respond to security incidents, implement countermeasures, and recover from attacks, unauthorized access, and policy breaches. Coordinate with third-party incident responders, including law enforcement. Minimum Qualifications: A bachelor's degree from an accredited college and four years of full-time experience related to projects and policies required by this position; or, education and/or experience equivalent to this. Preferred Skills: Understanding of information security standards & methodologies. Experience with cloud security, governance tools, CASBs, and server virtualization technologies. Knowledge of security database management systems, applications, and technologies. Experience with Endpoint Detection and Response products and threat modeling. Experience with major cloud providers (AWS, Google Cloud, Azure). Understanding of software vulnerabilities, CVEs, and remediation strategies. Experience in building and maintaining security systems, database and OS security, network security, and monitoring tools. Familiarity with web technologies and protocols. Problem-solving skills and ability to work under pressure. Windows and Linux skills are desirable. Certifications such as CISSP, GSEC, CEH, or CISM are desired. Previous role as a Security Architect is a plus. Residency Requirement: New York City Residency is not required for this position. Additional Information: The City of New York is an inclusive, equal opportunity employer committed to diversity and a harassment-free work environment. #J-18808-Ljbffr