The Fire Department of the City of New York (FDNY) is the largest Fire Department in the United States and universally is recognized as the world's busiest and most highly skilled emergency response agency. The Department's main goal is to provide fire protection, emergency medical care, and other critical public safety services to residents and visitors in the five boroughs. FDNY members are sworn to serve and protect life and property and the Department works to continually educate the public in fire, life safety and disaster preparedness, along with enforcing public safety codes. Since its inception in 1865, FDNY has helped lead efforts to make New York the safest big city in the nation. This accomplishment requires a steadfast and daily commitment to maintaining the Department's core values.

The Fire Department, City of New York (FDNY), seeks a full-time Cyber Security Engineer in the Bureau of Technology Development and Systems. Reporting directly to the Chief Information Security Officer, the successful candidate will:

-Perform real-time cyber defense incident handling (e.g., forensic collections, intrusion correlation and tracking, threat analysis and direct system remediation) tasks to support deployable Incident Response Teams (IRTs)
-Conduct threat analysis and assessments on network/systems, monitor, maintain, update and secure FDNY infrastructure
-Establish, maintain and execute all components of an incident response plan, including run books, from incident intake through root cause analysis, technical remediation analysis and reporting
-Perform analysis of log files from a variety of sources (e.g., individual host logs, network traffic logs, firewall logs, and intrusion detection system (IDS) logs) to identify possible threats to network security
-Execute cyber defense incident triage to include determination of scope, urgency and potential impact; identifying the specific vulnerability and making recommendations that enable expeditious remediation
-Perform initial, forensically sound collection of images and inspect to discern possible mitigation/remediation on enterprise systems
-Accurately document incidents from beginning to end including evidence handling.

A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,

Education and/or experience which is equivalent to "1" above.

-5 years or more experience working in a complex enterprise environment -Strong understanding of vulnerability and exploitation concepts -Strong experience in firewalls, IDS/IPS, DNS, SEIM, cybersecurity tools -Previous experience performing threat hunting and incident response using SIEM tools, cybersecurity management tools -Knowledge of Malware Analysis, Reverse Engineering and Host-based and Memory Forensics tools and techniques -Deep understanding of computer intrusion activities, incident response techniques, tools and procedures -Knowledge of digital forensics methodology as well as security architecture, system administration and networking (including TCP/IP, DNS, HTTP, SMTP) -Knowledge of operating systems including Linux/Unix and Windows -Experience with programming languages such as Python, Perl, C/C++, PowerShell, etc. -Experience with security assessment tools such as NMAP, Netcat, Nessus, and Metasploit is a plus -Excellent written and verbal communication skills

NOTE: This position is open to qualified persons with a disability who are eligible for the 55-a Program. Please indicate in your cover letter that you would like to be considered for the position under the 55-a Program.

New York City Residency is not required for this position

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.