ExecutivePlacements.com
Incident Response Analyst, Office of Chief Information Officer
ExecutivePlacements.com, New York, New York, us, 10261
Incident Response Analyst, Office of Chief Information Officer
2 days ago Be among the first 25 applicants
The Office of Information Security (OIS) leads the implementation of an integrated, modern, framework-based security program across the Department of Health and Mental Hygiene to preserve the integrity of agency services and protect sensitive business data from current and emerging cyber threats, and to preserve the reputation of the agency and its ability to protect and promote the health of all New Yorkers. The Cyber Incident Response team provide detection and response to cybersecurity events, events of interest, and incidents for DOHMH. It also collects forensic user evidence requested by legal and investigative entities.
Salary: $63,750.00 - $105,000.00
Duties Will Include But Not Be Limited To
Automate processes leveraging scripts (Python, batch, etc.). Run reports to gather data from SQL databases (SQL). Run penetration testing tools (AppScan).
Responsible for vulnerability management.
Knowledge of SOAR responses and their implementation.
Create SIEM dashboards to help visualize data and events.
Set the program strategy and develop approaches to integrate automation/orchestration services into existing and future processes that will support the verticals within Threat Management.
Perform technical and forensic investigations.
Analyze system services, operating systems, networks, and applications to address possible cyber-attacks. Remain current on cybersecurity trends and intelligence to enhance the security analysis and the identification capabilities for the IR Team. Respond and resolve basic operational technical Incidents and Requests.
Summarize events/incidents effectively to different constituencies such as legal counsel, executive management, and technical staff, both in written and verbal forms.
On‑call availability as needed/required. Schedules may include several days per month, after hours and weekend support.
Preferred Skills
Self‑starter, detail‑oriented, reliable and accountable.
Excellent organizational, time‑management and multi‑tasking skills, including the ability to take initiative, prioritize duties, and work both independently and within a team.
Applicant should be able to work with little or no supervision.
Familiarity with SIEM and creation of relevant dashboards.
Knowledge of cyber security tools and protocols.
Knowledge of Windows and Linux operating systems.
Knowledge of security best practices.
Knowledge of Windows desktop/server environments, Azure and Microsoft O.
Excellent written and verbal communication skills.
Knowledgeable of penetration/vulnerability assessment methodologies and the cyber kill chain.
Familiarity with cyber threat intelligence and MITRE's ATT&CK framework.
Knowledgeable of cyber incident handling and response processes.
Familiarity of vulnerability management and remediation.
Experienced in integrated cybersecurity assessment frameworks and lifecycles.
Why You Should Work For Us
Benefits: City employees are entitled to unmatched benefits such as
premium‑free health insurance plan that saves employees over $10,000 annually ,
additional health, fitness, and financial benefits
(based on applicable union/benefit fund),
public‑sector defined benefit pension plan ,
tax‑deferred savings program , and a
robust worksite wellness program .
Work‑from‑home policy: depending on your position, you may be able to work up to two days during the week from home.
Job security: more job security compared to private‑sector employment and the opportunity to contribute to making NYC a healthy place to live and work.
Minimum Qualifications
A baccalaureate degree, from an accredited college including or supplemented by twenty‑four semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or
A four‑year high school diploma or its equivalent approved by a states department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in 1 above; or
Education and/or experience equivalent to 1 or 2, above. College education may be substituted for up to two years of the required experience in 2 above on the basis that sixty semester credits from an accredited college is equated to one year of experience. In addition, twenty‑four credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least hours in computer programming from an accredited technical school (post‑high school), may be substituted for one year of experience.
The NYC Health Department is an inclusive equal‑opportunity employer committed to providing access and reasonable accommodation to all individuals. To request reasonable accommodation to participate in the job application or interview process, contact Sye‑Eun Ahn, Director of the Office of Equal Employment Opportunity, at or --.
#J-18808-Ljbffr
The Office of Information Security (OIS) leads the implementation of an integrated, modern, framework-based security program across the Department of Health and Mental Hygiene to preserve the integrity of agency services and protect sensitive business data from current and emerging cyber threats, and to preserve the reputation of the agency and its ability to protect and promote the health of all New Yorkers. The Cyber Incident Response team provide detection and response to cybersecurity events, events of interest, and incidents for DOHMH. It also collects forensic user evidence requested by legal and investigative entities.
Salary: $63,750.00 - $105,000.00
Duties Will Include But Not Be Limited To
Automate processes leveraging scripts (Python, batch, etc.). Run reports to gather data from SQL databases (SQL). Run penetration testing tools (AppScan).
Responsible for vulnerability management.
Knowledge of SOAR responses and their implementation.
Create SIEM dashboards to help visualize data and events.
Set the program strategy and develop approaches to integrate automation/orchestration services into existing and future processes that will support the verticals within Threat Management.
Perform technical and forensic investigations.
Analyze system services, operating systems, networks, and applications to address possible cyber-attacks. Remain current on cybersecurity trends and intelligence to enhance the security analysis and the identification capabilities for the IR Team. Respond and resolve basic operational technical Incidents and Requests.
Summarize events/incidents effectively to different constituencies such as legal counsel, executive management, and technical staff, both in written and verbal forms.
On‑call availability as needed/required. Schedules may include several days per month, after hours and weekend support.
Preferred Skills
Self‑starter, detail‑oriented, reliable and accountable.
Excellent organizational, time‑management and multi‑tasking skills, including the ability to take initiative, prioritize duties, and work both independently and within a team.
Applicant should be able to work with little or no supervision.
Familiarity with SIEM and creation of relevant dashboards.
Knowledge of cyber security tools and protocols.
Knowledge of Windows and Linux operating systems.
Knowledge of security best practices.
Knowledge of Windows desktop/server environments, Azure and Microsoft O.
Excellent written and verbal communication skills.
Knowledgeable of penetration/vulnerability assessment methodologies and the cyber kill chain.
Familiarity with cyber threat intelligence and MITRE's ATT&CK framework.
Knowledgeable of cyber incident handling and response processes.
Familiarity of vulnerability management and remediation.
Experienced in integrated cybersecurity assessment frameworks and lifecycles.
Why You Should Work For Us
Benefits: City employees are entitled to unmatched benefits such as
premium‑free health insurance plan that saves employees over $10,000 annually ,
additional health, fitness, and financial benefits
(based on applicable union/benefit fund),
public‑sector defined benefit pension plan ,
tax‑deferred savings program , and a
robust worksite wellness program .
Work‑from‑home policy: depending on your position, you may be able to work up to two days during the week from home.
Job security: more job security compared to private‑sector employment and the opportunity to contribute to making NYC a healthy place to live and work.
Minimum Qualifications
A baccalaureate degree, from an accredited college including or supplemented by twenty‑four semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or
A four‑year high school diploma or its equivalent approved by a states department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in 1 above; or
Education and/or experience equivalent to 1 or 2, above. College education may be substituted for up to two years of the required experience in 2 above on the basis that sixty semester credits from an accredited college is equated to one year of experience. In addition, twenty‑four credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least hours in computer programming from an accredited technical school (post‑high school), may be substituted for one year of experience.
The NYC Health Department is an inclusive equal‑opportunity employer committed to providing access and reasonable accommodation to all individuals. To request reasonable accommodation to participate in the job application or interview process, contact Sye‑Eun Ahn, Director of the Office of Equal Employment Opportunity, at or --.
#J-18808-Ljbffr