NY Creates serves as a bridge for advanced electronics and leads projects that advance R&D in emerging technologies. The Cybersecurity Analyst is responsible for ensuring the security and protection of the organization's computer systems, networks, and data, involving monitoring, investigating, and mitigating potential security threats.
Continuous Monitoring of system activities from a variety of sources, respond to alerts, and investigate anomalies and suspicious activities
Prepare and track support tickets for vulnerability remediations, and interface with technical staff to ensure security objectives are achieved
Review suspected phishing submissions and report on any trends
Assist in Incident Response activities as an Incident Reporter and/or Incident Handler as defined by the organization's Incident Response Plan
Interface with security vendors to ensure all applications and services are configured correctly and functioning optimally
Monitor threat intelligence and investigate new Common Vulnerabilities and Exposures (CVEs) that could impact the security of the NYC data and systems
Provide training and guidance to employees on cybersecurity best practices
Collaborate with other departments to ensure security measures are integrated into all aspects of the business
Perform remediation work related to external assessments of NYC Security posture (Compromise assessment, penetration test)
Prepare and deliver weekly senior leadership metric reports on KPIs within the Vulnerability Management and Security Operations Center
Perform end of year compliance and audit assessments - User access review, State & Federal Surveys, Insurance questionnaires
Proactively monitor health of all Cybersecurity technology deployments and agents to ensure visibility of NYC's systems and networks
Create documentation and contribute to knowledge base of Security Operations Center & Vulnerability Management Program to ensure continuity of operations
Stay up to date with the latest cybersecurity trends and threats
Critical thinking with the ability to correlate technical information from a variety of sources and derive trends and other meaningful interpretations
Ability to diagnose networking and operating system events and formulate strategies to block and prevent attacks
Ability to interpret cybersecurity control objectives and measure real world effectiveness of those controls
Produce meaningful reports from a variety of sources
High degree of initiative, dependability, and ability to work with little supervision
Effective oral & written communication skills, including the ability to present technical information to non-technical audiences
Other reasonable duties as assigned
Qualification
Required
Minimum of two years of experience in information security
Bachelor's degree in an information security or technology-related field, or equivalent work or education-related experience
Entry-level cybersecurity certification such as CompTIA Security+, GIAC Information Security Fundamentals (GISF), or (ISC)2 Systems Security Certified Practitioner (SSCP)
Knowledge of information security management frameworks such as the NIST Cybersecurity Framework, NIST Special Publication 800-171, or CIS 18 Critical Security Controls
Preferred
Benefits
Medical, Vision, and Dental
Competitive Pay and PTO
Flexible Heath Spending and Dependent Care Accounts
Basic / Optional Life Insurance
Post-Retirement Health Insurance
Employer contribution of 7% of earnings to a Basic Retirement plan after meeting one year of service.
Optional employee contributed retirement account
Take charge of the way you apply for your next job with TalentAlly, the job board for diverse professionals.
Glassdoor
Founded in 1999
Chicago, Illinois, USA
11-50 employees
http://www.prodivnet.com/
Take charge of the way you apply for your next job with TalentAlly, the job board for diverse professionals.
