New York City Department of Transportation
Security Architect
New York City Department of Transportation, New York, New York, us, 10261
The New York City Department of Transportation's (DOT) IT & Telecom division is seeking a capable Information Security Engineer, who enjoys security work and possesses both deep and wide expertise in the cybersecurity space. Under the direction of the Executive Director of Information Security and in coordination and cooperation with DOT business units, the successful candidate will help implement and monitor security controls, conduct regular system tests and ensure continuous monitoring of the Agency's information systems. Promptly respond to all security incidents and provide thorough post-event analyses. Make things more secure by protecting system boundaries, keeping computer systems and network devices hardened against attacks and securing the Agency's information.
Responsibilities:
Ensure that security architecture and designs, plans, controls, standards, and policy/procedures conform with best practices and are aligned with Citywide security policies, and the Agency's strategic security plan;Plan, define and maintain policies, standards, configuration standard operating procedures and guidelines regarding security, identity, and access;Monitor industry developments; liaise with vendors;Ensure compliance with Citywide and agency security policies and standards;Recommend updates and improvements to agency security policies and standards;Identify probable system exposure, compromise, problems, or design flaws and escalate issues to limit serious performance impact;Define, manage, and monitor data security, confidentiality, integrity, and availability;Analyze and design security controls to secure network infrastructure to maximize performance and capacity;Plan and initiate new security infrastructure architecture or design changes;Consult with business units to provide IT Security policy guidance;Offer support to application development, network, server, database and storage teams regarding new technologies, services, and system requirements;Define, manage, and monitor security systems, including procedures for detecting, reporting, and responding to computer security incidents;Serve as subject matter expert regarding security design of applications, networks, servers, storage and virtualization, directory services, identity connectors, authentication, web single sign-on and federation, and application servers providing delegated administration, role management, and web services;Liaise with vendors, as necessary;Monitor developments regarding various IT architectural platforms, including hardware, software and network communication components, operating systems, LDAP, server networking, basic load-balancing, DNS, certificate management, and HTTPS;Review and analyze design and/or accreditation documentation to ensure appropriate security controls are in place;Perform security assessments of applications and network infrastructure;Oversee multiple projects;Architect, design, implement, maintain, and operate information system security controls and countermeasures;Respond to information systems security incidents, implement countermeasures, and recover from computer-based attacks, unauthorized access, and policy breaches; interact and coordinate with third-party incident responders, including law enforcement.
Minimum Qualifications
A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,Education and/or experience which is equivalent to
#J-18808-Ljbffr
Responsibilities:
Ensure that security architecture and designs, plans, controls, standards, and policy/procedures conform with best practices and are aligned with Citywide security policies, and the Agency's strategic security plan;Plan, define and maintain policies, standards, configuration standard operating procedures and guidelines regarding security, identity, and access;Monitor industry developments; liaise with vendors;Ensure compliance with Citywide and agency security policies and standards;Recommend updates and improvements to agency security policies and standards;Identify probable system exposure, compromise, problems, or design flaws and escalate issues to limit serious performance impact;Define, manage, and monitor data security, confidentiality, integrity, and availability;Analyze and design security controls to secure network infrastructure to maximize performance and capacity;Plan and initiate new security infrastructure architecture or design changes;Consult with business units to provide IT Security policy guidance;Offer support to application development, network, server, database and storage teams regarding new technologies, services, and system requirements;Define, manage, and monitor security systems, including procedures for detecting, reporting, and responding to computer security incidents;Serve as subject matter expert regarding security design of applications, networks, servers, storage and virtualization, directory services, identity connectors, authentication, web single sign-on and federation, and application servers providing delegated administration, role management, and web services;Liaise with vendors, as necessary;Monitor developments regarding various IT architectural platforms, including hardware, software and network communication components, operating systems, LDAP, server networking, basic load-balancing, DNS, certificate management, and HTTPS;Review and analyze design and/or accreditation documentation to ensure appropriate security controls are in place;Perform security assessments of applications and network infrastructure;Oversee multiple projects;Architect, design, implement, maintain, and operate information system security controls and countermeasures;Respond to information systems security incidents, implement countermeasures, and recover from computer-based attacks, unauthorized access, and policy breaches; interact and coordinate with third-party incident responders, including law enforcement.
Minimum Qualifications
A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,Education and/or experience which is equivalent to
#J-18808-Ljbffr