Cyber Security Specialist

New Position: NYPD – Cyber Security Specialist -ONSITE

Location: MetroTech , Brooklyn , NY City, NY

ROLE:

• Ensure security policies such as CJIS are in compliance.

• Provide Next Gen firewall architecture configurations.

• Provide expert Information Security firewall architecture vision, leadership, analytical

guidance/process and security controls.

• Implement cutting edge enterprise security solutions such as NGFW infrastructure;

DNS/DNSSEC; enterprise MFA and NGFW infrastructure; and Data Loss Prevention (DLP)

technology. Manage the internal Security Solutioning & BOM process from Intake to

implementation.

• Evaluate the overall solution to ensure it is CJIS compliance.

• Research, evaluate, test, recommend the implementation of new or updated information

security hardware or software, and analyze its impact on the existing environment.

• Provide technical and expertise guidance for the deployment of security tools.

MANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will not

be considered.

MINIMUM OF 12 YEARS EXPERIENCE.

BS/BA undergraduate degree.

Determining and implementing cybersecurity and privacy principles to organizational requirements.

Experience developing incident response process and procedures with internal and external

stakeholders.

Knowledge of network security architecture concepts including topology, protocols, components,

and principles (e.g., application of defense-in-depth)

Knowledge of processes for seizing and preserving digital evidence.

Knowledge of system and application security threats and vulnerabilities.

Strong background in documenting and assessing NIST 800-53 and CJIS controls.

DESIRABLE SKILLS/EXPERIENCE:

Assessing and providing strategic direction for resolution of mission-critical problems, policies, and

procedures.

Experience building defensible security architectures for operational technology with a focus in

cloud security best practices.

Experience developing disaster recovery and continuity of operations policies, plans, and

procedures.

Experience with defining, establishing and directing techniques for detecting host and network[1]based intrusions using intrusion detection technologies.

Knowledge of anti-forensics tactics, techniques, and procedures.

Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code)

Knowledge of DDoS appliances such as NetScout Arbor, Fortinet FortiGate.

Knowledge of Insider Threat investigations, reporting, investigative tools and laws/regulations.

Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.

Knowledge of legal governance related to admissibility (e.g. Rules of Evidence).

Knowledge of malware analysis tools (e.g., Oily Debug, Ida Pro).

Knowledge of malware with virtual machine detection