The City University of New York
Cybersecurity Engineer (IT Security Specialist 3) - Provisional
The City University of New York, New York, New York, us, 10261
Overview
Cybersecurity Engineer (IT Security Specialist 3) – Provisional. This position is responsible for IT security, identity, and access infrastructure; provides IT security architectural guidance; designs security solutions; conducts IT risk assessments and recommends mitigating solutions. Assignment Levels exist within this classification; Level II and III may supervise staff. The complete job description is available via the official CUNY job listings. Responsibilities
Deploys, engineers, configures, and maintains next generation firewalls (NGFW) to secure enterprise-wide network traffic, aligning policies with evolving security frameworks and optimizing performance through continuous tuning and updates. Harnesses artificial intelligence for IT operations (AIOps) and threat intelligence by integrating AIOps into NGFW and other security platforms to drive predictive analytics, enhance anomaly detection, implement automated responses to mitigate risks and respond to security incidents proactively. Architects comprehensive protection strategies to fortify web proxies and secure IoT devices, streamline access control, and ensure real-time monitoring of Internet traffic. Designs and implements advanced DNS security measures and URL filtering protocols to thwart DNS-based attacks and enforce compliance with organizational access policies. Leads threat detection and response initiatives by managing IDS/IPS for real-time threat identification, refining signatures and rules to minimize false positives and accelerate remediation. Oversees the design and operational management of secure VPN infrastructures, ensuring alignment with industry-standard encryption and access control protocols. Mitigates distributed denial-of-service (DDoS) attacks by deploying and administering DDoS mitigation tools to maintain network availability under attack scenarios. Orchestrates advanced security audits and assessments by evaluating the University’s IT landscape to uncover vulnerabilities, craft mitigation strategies, and enhance security compliance. Spearheads incident response efforts, including forensic analysis, to uncover root causes, restore system integrity, and reinforce preventative measures, including off-hours/on-call support to investigate security incidents. Drives continuous learning and innovation by evaluating and integrating technologies to bolster CUNY’s defenses. Minimum qualifications
A baccalaureate degree in computer science, engineering or a related field and five (5) years of experience providing IT security architectural guidance, designing security solutions, and/or conducting IT risk assessments and recommended mitigating solutions; or A baccalaureate degree and six (6) years of related experience; or A high school diploma or equivalent and ten (10) years of related experience; or Education/experience equivalent to the above, with substitutions allowed as per CUNY guidelines (credits and certifications). Preferred qualifications
5+ years of experience in Network Security, focused on Next Gen Firewall technologies. Industry certifications such as CISSP, CEH, Security+, CISM, CISA, GSEC, CCSP or equivalent. Strong proficiency in network troubleshooting with tools like Wireshark, tcpdump, NetFlow. Experience with scripting languages (e.g., Python, PowerShell) for automation. Knowledge of network protocols, TCP/IP, and architecture principles. Experience with SIEM and log analysis; familiar with web and application servers (e.g., Apache, NGINX, IIS, Tomcat). Experience with Microsoft Azure AD or UNIX/Linux and Windows environments; familiarity with Enterprise SSO, Federation, and MFA. Compensation
The salary is $124,471. Benefits
CUNY offers a comprehensive benefits package, including health plans, retirement options, tuition waivers, and paid time off. Benefits vary by job title and classification. How to apply
For full consideration, submit a cover letter and resume online via CUNY’s job system, addressing how your experience and credentials meet the responsibilities and qualifications. External applicants can use the direct link below; current CUNY employees should apply via CUNYfirst. Direct link to the job opening: https://hrsa.cunyfirst.cuny.edu/psc/erecruit/EMPLOYEE/HRMSCG/c/HRS_HRAM_FL.HRS_CG_SEARCH_FL.GBL?Page=HRS_APP_JBPST_FL&Action=U&FOCUS=Applicant&SiteId=1&JobOpeningId=29456&PostingSeq=1 Other
Open until filled. EEO/AA/Vet/Disability Employer. Seniority level: Mid-Senior level. Employment type: Part-time. Job function: Information Technology. Industry: Higher Education.
#J-18808-Ljbffr
Cybersecurity Engineer (IT Security Specialist 3) – Provisional. This position is responsible for IT security, identity, and access infrastructure; provides IT security architectural guidance; designs security solutions; conducts IT risk assessments and recommends mitigating solutions. Assignment Levels exist within this classification; Level II and III may supervise staff. The complete job description is available via the official CUNY job listings. Responsibilities
Deploys, engineers, configures, and maintains next generation firewalls (NGFW) to secure enterprise-wide network traffic, aligning policies with evolving security frameworks and optimizing performance through continuous tuning and updates. Harnesses artificial intelligence for IT operations (AIOps) and threat intelligence by integrating AIOps into NGFW and other security platforms to drive predictive analytics, enhance anomaly detection, implement automated responses to mitigate risks and respond to security incidents proactively. Architects comprehensive protection strategies to fortify web proxies and secure IoT devices, streamline access control, and ensure real-time monitoring of Internet traffic. Designs and implements advanced DNS security measures and URL filtering protocols to thwart DNS-based attacks and enforce compliance with organizational access policies. Leads threat detection and response initiatives by managing IDS/IPS for real-time threat identification, refining signatures and rules to minimize false positives and accelerate remediation. Oversees the design and operational management of secure VPN infrastructures, ensuring alignment with industry-standard encryption and access control protocols. Mitigates distributed denial-of-service (DDoS) attacks by deploying and administering DDoS mitigation tools to maintain network availability under attack scenarios. Orchestrates advanced security audits and assessments by evaluating the University’s IT landscape to uncover vulnerabilities, craft mitigation strategies, and enhance security compliance. Spearheads incident response efforts, including forensic analysis, to uncover root causes, restore system integrity, and reinforce preventative measures, including off-hours/on-call support to investigate security incidents. Drives continuous learning and innovation by evaluating and integrating technologies to bolster CUNY’s defenses. Minimum qualifications
A baccalaureate degree in computer science, engineering or a related field and five (5) years of experience providing IT security architectural guidance, designing security solutions, and/or conducting IT risk assessments and recommended mitigating solutions; or A baccalaureate degree and six (6) years of related experience; or A high school diploma or equivalent and ten (10) years of related experience; or Education/experience equivalent to the above, with substitutions allowed as per CUNY guidelines (credits and certifications). Preferred qualifications
5+ years of experience in Network Security, focused on Next Gen Firewall technologies. Industry certifications such as CISSP, CEH, Security+, CISM, CISA, GSEC, CCSP or equivalent. Strong proficiency in network troubleshooting with tools like Wireshark, tcpdump, NetFlow. Experience with scripting languages (e.g., Python, PowerShell) for automation. Knowledge of network protocols, TCP/IP, and architecture principles. Experience with SIEM and log analysis; familiar with web and application servers (e.g., Apache, NGINX, IIS, Tomcat). Experience with Microsoft Azure AD or UNIX/Linux and Windows environments; familiarity with Enterprise SSO, Federation, and MFA. Compensation
The salary is $124,471. Benefits
CUNY offers a comprehensive benefits package, including health plans, retirement options, tuition waivers, and paid time off. Benefits vary by job title and classification. How to apply
For full consideration, submit a cover letter and resume online via CUNY’s job system, addressing how your experience and credentials meet the responsibilities and qualifications. External applicants can use the direct link below; current CUNY employees should apply via CUNYfirst. Direct link to the job opening: https://hrsa.cunyfirst.cuny.edu/psc/erecruit/EMPLOYEE/HRMSCG/c/HRS_HRAM_FL.HRS_CG_SEARCH_FL.GBL?Page=HRS_APP_JBPST_FL&Action=U&FOCUS=Applicant&SiteId=1&JobOpeningId=29456&PostingSeq=1 Other
Open until filled. EEO/AA/Vet/Disability Employer. Seniority level: Mid-Senior level. Employment type: Part-time. Job function: Information Technology. Industry: Higher Education.
#J-18808-Ljbffr