Job Description
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City. From delivering affordable broadband to protecting against cybersecurity threats and building digital government services, OTI is at the forefront of how the City delivers for New Yorkers in the 21st century. Follow us on social media @NYCOfficeofTech, and visit to learn more.
At OTI, we offer great benefits, and the chance to work on projects that have a meaningful impact on millions of people. You'll have the opportunity to work with cutting-edge technology and collaborate with other passionate professionals who share your drive and commitment to making a difference through technology.
About Cyber Command
Cyber Command is charged with protecting all City systems against cyber threats, including systems that deliver vital services to New Yorkers. Headed by the Chief Information Security Officer of the City of New York, we provide in-depth support to over 100 agencies and offices to protect, detect, identify, respond to, and recover from cyber threats.
About This Role
The Cyber Risk Analyst will serve in the Cyber Command Risk Program under the direction of the Senior Advisor. They will help shape Cyber Command's approach to risk management, build new risk frameworks and processes, and assess and monitor NYC agencies' cybersecurity risks.
Responsibilities will include:
- Build new risk processes and implement risk frameworks to enable better monitoring and evaluation of risks across the City;
- Manage projects, pushing through ambiguity and challenges which may arise;
- Work with stakeholders across various divisions, soliciting input and working through feedback;
- Review and analyze various cybersecurity risk cases, justifications, and exceptions documents submitted by agencies;
- Assist in developing cybersecurity risk assessment procedures and control testing methodologies based on established frameworks and guidelines;
- Assess NYC agencies' documented information security and technology policies, procedures, and practices.
- Draft risk cases accompanied by working papers, concise controls assessments, and systems testing reports;
- Present risk findings to senior leadership;
- Engage in communications with NYC agencies to assist them in successfully managing risk;
- Handle special projects and initiatives as assigned.
HOURS/SHIFT
Day - Due to the necessary technical duties of this position in a 24/7 operation, candidate may be required to work various shifts such as weekends and/or nights/evenings.
WORK LOCATION
Brooklyn, NY
TO APPLY
* Interested applicants with other civil service titles who meet the preferred requirements should also submit a resume for consideration
Please go to www.cityjobs/jobs/search and search for Job ID #769763
SUBMISSION OF A RESUME IS NOT A GUARANTEE THAT YOU WILL RECEIVE AN INTERVIEW
APPOINTMENTS ARE SUBJECT TO OVERSIGHT APPROVAL
OTI participates in E-Verify
IT SECURITY SPECIALIST - 95622
Minimum Qualifications
A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,
Education and/or experience which is equivalent to "1" above.
Preferred Skills
The successful candidate should possess the following: - 2-3 years of experience in cybersecurity risk management, IT auditing, or policy - Familiarity with cybersecurity framework(s) (NIST, SANS, PCI, ISO 27001/27002, or CIS) - Experience performing security controls assessments - Knowledge of hardware, software, data, and network principles and systems related to Private and/or Public Sectors services - Understanding of commonly used computer operating systems, databases, network structures - Experience managing projects - Being a highly organized, motivated, and self-directed professional - Ability to work effectively in a team environment - Investigative and analytical skills - Excellent oral and written communication skills - Knowledge of the current and evolving cyber threat landscape - Knowledge of laws, regulations, policies, and ethics related to cybersecurity and information privacy One or more of the following certifications is preferred: o CompTIA Security+ o CompTIA Network+ o CompTIA A+ o CompTIA CySA+ o Cisco Certified Network Associate - CCNA o CEH: Certified Ethical Hacker o GIAC Information Security Fundamentals GISF) o GIAC Security Essentials (GSEC) o ISC)2 Systems Security Certified Practitioner (SSCP) o One or more of the following certifications are a plus: o Certified Information Systems Auditor (CISA) o Certified Information Systems Security Professional CISSP) o Certified in Risk and Information Systems Control (CRISC) o Certified Information Security Manager (CISM)
Public Service Loan Forgiveness
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education's website at
Residency Requirement
New York City Residency is not required for this position
Additional Information
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: 10110574
- Position Id: 769763
- Posted 5 hours ago