Overview
On Site
Full Time
Skills
Broadband
Video
Social Media
Collaboration
Innovation
IT Infrastructure
Incident Management
Virtual Machines
Public Health
Network
Risk Assessment
Management
SOP
Security Analysis
Technical Support
SAP BASIS
Network Security
Computer Science
Computer Engineering
Information Technology
Science
IT Management
Network Administration
Penetration Testing
Program Development
Network Design
Vulnerability Management
Qualys
Scripting
Python
Cyber Security
Documentation
Microsoft Windows
VMware
Cisco IOS
Android
IOS Development
Cryptography
Encryption
Firewall
Intrusion Detection
DMZ
IPsec
DNS
Dragon NaturallySpeaking
SMTP
HTTP
Proxies
Communication
Research
Analytical Skill
Recruiting
Job Details
Job Description
OPEN TO OTI EMPLOYEES ONLY
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City. From delivering affordable broadband to protecting against cybersecurity threats and building digital government services, OTI is at the forefront of how the City delivers for New Yorkers in the 21st century. Watch our welcome video to see our work in action, follow us on social media @NYCOfficeofTech, and visit oti.nyc.gov to learn more.
At OTI, we offer great benefits, and the chance to work on projects that have a meaningful impact on millions of people. You'll have the opportunity to work with cutting-edge technology and collaborate with other passionate professionals who share your drive and commitment to making a difference through technology.
About New York City Cyber Command
The New York City Office of Technology and Innovation (OTI) Cyber Command is committed to protecting City systems and technology infrastructure that provide and enable vital services to New Yorkers from cyber threats, and helping residents become safer in their digital lives.
As the organization defending the largest municipality in the country, OTI Cyber Command is charged with directing citywide incident response, setting citywide cybersecurity policies and standards and working with city agencies to strengthen their cyber defenses.
Mission Statement
"To lead and execute an innovative, intelligence-driven, risk-informed cyber defense and response strategy -- with the support of key partners and allies -- that enables the city government to properly function and provide services to New Yorkers.
Vision Statement
"New York City the most cyber-resilient city in the world"
Job Description
Cyber Command's Vulnerability Management (VM) program defines, promotes, assures, and measures the security of connected infrastructure so vital to the City of New York that their incapacitation or destruction would have a debilitating effect on security, economic security, or public health or safety. The Vulnerability Management Specialist will work with NYC agencies that provide public safety and emergency response services to New Yorkers, private sector technology services providers, and teams within OTI to ensure the security and resiliency of systems that support these critical services. The Vulnerability Management Specialist will perform assessments of systems and networks within the network environment or enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The Vulnerability Management Specialist will measure effectiveness of defense-in-depth architecture against known vulnerabilities.
Responsibilities will include:
- Assist in the analysis and remediation of findings discovered during scheduled internal and third-party vulnerability scans and penetration tests;
- Review and triage vulnerability alerts into manageable reports for the Vulnerability Management team to review and action;
- Provide relevant analysis, suggest mitigations, track remediation, manage scheduled scans, identify gaps and expand scan coverage, and escalate as appropriate;
- Conduct cybersecurity risk assessments;
- Conduct vulnerability research for the purpose of threat exposure management and attack surface reduction;
- Develop security documentation and SOP's;
- Perform on-site activities, including implementing cybersecurity solutions or performing security assessment activities, including technical configuration reviews;
- Develop scripts for automation
- Handle special projects and initiatives as assigned.
HOURS/SHIFT
Day - Due to the necessary technical support duties of this position in a 24/7 operation, candidate may be required to work various shifts such as weekends and/or nights/evenings
WORK LOCATION
Brooklyn, NY
TO APPLY- OPEN TO OTI EMPLOYEES ONLY
Only permanent employees in the title and those that are reachable on the civil service list are eligible to apply.
* Interested applicants with other civil service titles who meet the preferred requirements should also submit a resume for consideration
Please go to www.cityjobs/jobs/search and search for Job ID#716029
SUBMISSION OF A RESUME IS NOT A GUARANTEE THAT YOU WILL RECEIVE AN INTERVIEW
APPOINTMENTS ARE SUBJECT TO OVERSIGHT APPROVAL
NOTE: This position is open to qualified persons with a disability who are eligible for the 55-a Program.
Please indicate in your cover letter that you would like to be considered for the position under the 55-a program.
OTI participates in E-Verify
CYBER SECURITY ANALYST - 13633
Minimum Qualifications
1. A baccalaureate degree, from an accredited college including or supplemented by twenty-four (24) semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or
2. A four-year high school diploma or its equivalent approved by a State's department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in "1" above; or
3. Education and/or experience equivalent to "1" or "2", above. College education may be substituted for up to two years of the required experience in "2" above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. In addition, twenty-four (24) credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least 625 hours in computer programming from an accredited technical school (post high school), may be substituted for one year of experience.
Preferred Skills
The preferred candidate should possess the following: - NYC Public Safety/911 vulnerability management scanning experience as well as conducting reports and gathering data metrics for the purpose of vulnerability identification and risk reduction of NYC Public Safety/911 infrastructure - Experience as liaison with NYC Public Safety/911 stakeholders, including Public Safety agencies and vendors for purpose of conducting vulnerability management scanning and risk reduction - At least 4 years of experience in Cybersecurity, including vulnerability assessments, penetration testing, security assessments, strategy and program development, network architecture designs, or monitoring solutions - Experience with cybersecurity standards and best practices and how to integrate them - Experience with at least two of the following vulnerability management tools: Rapid7, Tenable, Qualys - Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation - Experience with scripting, especially in Python - Ability to analyze cybersecurity documentation, including security policies, plans, and procedures - Strong Knowledge of security best practices across multiple platforms, such as Microsoft Windows, VMWare, Cisco IOS, and Mobile OS Android/Apple IOS - Knowledge of public-key cryptography, understanding of encoding, encryption, and hashing techniques - Knowledge of next generation firewall products, intrusion detection systems, DMZ, IPSec, DNS, SMTP, HTTP proxies, etc - Experience with leading other team members - Excellent oral and written communication skills & research and analytical skills - Ability to work both independently and as part of a team.
55a Program
This position is also open to qualified persons with a disability who are eligible for the 55-a Program. Please indicate at the top of your resume and cover letter that you would like to be considered for the position through the 55-a Program.
Public Service Loan Forgiveness
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education's website at ;br>
Residency Requirement
New York City residency is generally required within 90 days of appointment. However, City Employees in certain titles who have worked for the City for 2 continuous years may also be eligible to reside in Nassau, Suffolk, Putnam, Westchester, Rockland, or Orange County. To determine if the residency requirement applies to you, please discuss with the agency representative at the time of interview.
Additional Information
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.
OPEN TO OTI EMPLOYEES ONLY
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City. From delivering affordable broadband to protecting against cybersecurity threats and building digital government services, OTI is at the forefront of how the City delivers for New Yorkers in the 21st century. Watch our welcome video to see our work in action, follow us on social media @NYCOfficeofTech, and visit oti.nyc.gov to learn more.
At OTI, we offer great benefits, and the chance to work on projects that have a meaningful impact on millions of people. You'll have the opportunity to work with cutting-edge technology and collaborate with other passionate professionals who share your drive and commitment to making a difference through technology.
About New York City Cyber Command
The New York City Office of Technology and Innovation (OTI) Cyber Command is committed to protecting City systems and technology infrastructure that provide and enable vital services to New Yorkers from cyber threats, and helping residents become safer in their digital lives.
As the organization defending the largest municipality in the country, OTI Cyber Command is charged with directing citywide incident response, setting citywide cybersecurity policies and standards and working with city agencies to strengthen their cyber defenses.
Mission Statement
"To lead and execute an innovative, intelligence-driven, risk-informed cyber defense and response strategy -- with the support of key partners and allies -- that enables the city government to properly function and provide services to New Yorkers.
Vision Statement
"New York City the most cyber-resilient city in the world"
Job Description
Cyber Command's Vulnerability Management (VM) program defines, promotes, assures, and measures the security of connected infrastructure so vital to the City of New York that their incapacitation or destruction would have a debilitating effect on security, economic security, or public health or safety. The Vulnerability Management Specialist will work with NYC agencies that provide public safety and emergency response services to New Yorkers, private sector technology services providers, and teams within OTI to ensure the security and resiliency of systems that support these critical services. The Vulnerability Management Specialist will perform assessments of systems and networks within the network environment or enclave and identify where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. The Vulnerability Management Specialist will measure effectiveness of defense-in-depth architecture against known vulnerabilities.
Responsibilities will include:
- Assist in the analysis and remediation of findings discovered during scheduled internal and third-party vulnerability scans and penetration tests;
- Review and triage vulnerability alerts into manageable reports for the Vulnerability Management team to review and action;
- Provide relevant analysis, suggest mitigations, track remediation, manage scheduled scans, identify gaps and expand scan coverage, and escalate as appropriate;
- Conduct cybersecurity risk assessments;
- Conduct vulnerability research for the purpose of threat exposure management and attack surface reduction;
- Develop security documentation and SOP's;
- Perform on-site activities, including implementing cybersecurity solutions or performing security assessment activities, including technical configuration reviews;
- Develop scripts for automation
- Handle special projects and initiatives as assigned.
HOURS/SHIFT
Day - Due to the necessary technical support duties of this position in a 24/7 operation, candidate may be required to work various shifts such as weekends and/or nights/evenings
WORK LOCATION
Brooklyn, NY
TO APPLY- OPEN TO OTI EMPLOYEES ONLY
Only permanent employees in the title and those that are reachable on the civil service list are eligible to apply.
* Interested applicants with other civil service titles who meet the preferred requirements should also submit a resume for consideration
Please go to www.cityjobs/jobs/search and search for Job ID#716029
SUBMISSION OF A RESUME IS NOT A GUARANTEE THAT YOU WILL RECEIVE AN INTERVIEW
APPOINTMENTS ARE SUBJECT TO OVERSIGHT APPROVAL
NOTE: This position is open to qualified persons with a disability who are eligible for the 55-a Program.
Please indicate in your cover letter that you would like to be considered for the position under the 55-a program.
OTI participates in E-Verify
CYBER SECURITY ANALYST - 13633
Minimum Qualifications
1. A baccalaureate degree, from an accredited college including or supplemented by twenty-four (24) semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or
2. A four-year high school diploma or its equivalent approved by a State's department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in "1" above; or
3. Education and/or experience equivalent to "1" or "2", above. College education may be substituted for up to two years of the required experience in "2" above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. In addition, twenty-four (24) credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least 625 hours in computer programming from an accredited technical school (post high school), may be substituted for one year of experience.
Preferred Skills
The preferred candidate should possess the following: - NYC Public Safety/911 vulnerability management scanning experience as well as conducting reports and gathering data metrics for the purpose of vulnerability identification and risk reduction of NYC Public Safety/911 infrastructure - Experience as liaison with NYC Public Safety/911 stakeholders, including Public Safety agencies and vendors for purpose of conducting vulnerability management scanning and risk reduction - At least 4 years of experience in Cybersecurity, including vulnerability assessments, penetration testing, security assessments, strategy and program development, network architecture designs, or monitoring solutions - Experience with cybersecurity standards and best practices and how to integrate them - Experience with at least two of the following vulnerability management tools: Rapid7, Tenable, Qualys - Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation - Experience with scripting, especially in Python - Ability to analyze cybersecurity documentation, including security policies, plans, and procedures - Strong Knowledge of security best practices across multiple platforms, such as Microsoft Windows, VMWare, Cisco IOS, and Mobile OS Android/Apple IOS - Knowledge of public-key cryptography, understanding of encoding, encryption, and hashing techniques - Knowledge of next generation firewall products, intrusion detection systems, DMZ, IPSec, DNS, SMTP, HTTP proxies, etc - Experience with leading other team members - Excellent oral and written communication skills & research and analytical skills - Ability to work both independently and as part of a team.
55a Program
This position is also open to qualified persons with a disability who are eligible for the 55-a Program. Please indicate at the top of your resume and cover letter that you would like to be considered for the position through the 55-a Program.
Public Service Loan Forgiveness
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education's website at ;br>
Residency Requirement
New York City residency is generally required within 90 days of appointment. However, City Employees in certain titles who have worked for the City for 2 continuous years may also be eligible to reside in Nassau, Suffolk, Putnam, Westchester, Rockland, or Orange County. To determine if the residency requirement applies to you, please discuss with the agency representative at the time of interview.
Additional Information
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.