Security Analyst

Company Description

Job Description

The New York City Department of Transportation's (NYC DOT) provides safe, efficient, and environmentally responsible movement of pedestrians, goods, and vehicular traffic on the streets, highways, bridges, and waterways of the City's transportation network.

NYC DOT rehabilitates and maintains the City's infrastructure, including bridges, tunnels, streets, sidewalks, and highways.

The NYC DOT IT & Telecom division is an award-winning team leading business transformation through technology innovation to enhance the agency's ability in fulfilling its mission.

IT & Telecom acts as a strategic partner with all business units to promote technology initiatives by delivering quality service, and secure solutions that provide new and improved capabilities for the Agency.

We work hard to embrace diversity and inclusion and encourage everyone in the division to bring their authentic selves to work every day.

We offer our full-time employee's competitive salaries, excellent benefit options and perks that include :

Pension and Retirement Plans- Upon retirement, qualified members of the City's generous pension program receive a guaranteed salary and health benefits for the rest of their lives.

There are also 401K and 457 plans available to supplement your retirement needs.

• Health Coverage- We offer health coverage to meet your needs and your family.
• Dental and Vision Coverage- We offer a wide variety of excellent civil service title-based union dental and vision coverage to meet the needs of you and your family.
• Paid Time Off- We offer paid vacation and sick time off which accrues over time based on your years of service.
• Professional Development - We offer numerous training programs, leadership development opportunities, and career coaching services, while encouraging employees to attend approved off and on-site trainings and seminars.
• Additional Perks - Our employees are eligible for discounts on top theme parks, hotels, shows, events, movies and more.

This is an entry-level cybersecurity role within the Information Security team. The major tasks, duties, and responsibilities are listed below :

• May perform investigations for complex or high severity security threats or incidents.
• May work with antivirus, firewall, EDR, and SIEMs products and services.
• May monitor and analyze network traffic to identify anomalous activity and potential threats to network resources.
• May deliver timely and detailed documentation related to any incident.

Responsibilities

• May perform application and systems vulnerability scans and manage and track mitigation and remediation efforts.
• May monitors and responds to real-time threat information and provides customer support to our users.
• May deliver timely and detailed documentation related to any incident.
• May operate information security aspects like data integrity, availability, authentication, confidentiality, and non- repudiation under the general supervision.
• May implement and monitor security measures of communication system.
• May install, configure, and update the security software applications.
• May determine tactics, techniques, and procedures (TTPs) for intrusion sets.
• May develop and manage metrics and reporting designed to measure Information Security program effectiveness and ensure compliance with Agency policies, compliance regulations, and industry best practices under the guidance of the Application Security Engineer and GRC Analyst.

Qualifications

1. A baccalaureate degree, from an accredited college including or supplemented by twenty-four (24) semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or

2. A four-year high school diploma or its equivalent approved by a State's department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in "1" above; or

3. Education and / or experience equivalent to "1" or "2", above. College education may be substituted for up to two years of the required experience in "2" above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience.

In addition, twenty-four (24) credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area;

or a certificate of at least 625 hours in computer programming from an accredited technical school (post high school), may be substituted for one year of experience.

Additional Information

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.