The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City. From delivering affordable broadband to protecting against cybersecurity threats and building digital government services, OTI is at the forefront of how the City delivers for New Yorkers in the 21st century. Watch our welcome video to see our work in action, follow us on social media @NYCOfficeofTech, and visit oti.nyc.gov to learn more.

At OTI, we offer great benefits, and the chance to work on projects that have a meaningful impact on millions of people. You'll have the opportunity to work with cutting-edge technology and collaborate with other passionate professionals who share your drive and commitment to making a difference through technology.

Job Description
Cyber Command’s Cyber Threat Intelligence (CTI) program focuses on collecting, processing, analyzing, and disseminating actionable intelligence to stakeholders to provide the context needed to make informed decisions to respond to threats and mitigate risks to City systems and data. The Director of Cyber Threat Intelligence will lead the CTI program, manage threat intelligence production, and oversee CTI-related operations, vendors, and platforms. The Director of CTI will directly manage a diverse team of cyber intelligence analysts and cybersecurity professionals and work directly with counterparts on various security and infrastructure teams throughout Cyber Command to achieve organization goals and objectives.

Responsibilities will include:
- Oversee the production of strategic, operational, and tactical cyber threat intelligence products and services; lead the consistent improvement of CTI intelligence products and services;
- Manage intelligence processes and workflows; create / implement new intelligence processes and workflows, as appropriate;
- Manage cyber intelligence analysts, act as an escalation point for analysts, and serve as a senior mentor for analysts;
- Ensure the sustainability of CTI’s custom platforms and tools; work with project managers, analysts, and developers / engineers to consistently improve and upgrade platforms and tools;
- Manage intelligence relationships, partnerships, and vendors;
- Oversee intelligence support to incident responders;
- Oversee the conceptualization of hunt missions to augment detection capabilities and identify threats across Cyber Command’s operating environment;
- Provide intelligence briefings to senior stakeholders within the City of New York; represent Cyber Command and CTI at Citywide meetings, industry conferences, and public outreach events;
- Handle special projects and intitives as assigned.

HOURS/SHIFT
Day - Due to the necessary technical duties of this position in a 24/7 operation, candidate may be required to work various shifts such as weekends and/or nights/evenings.

WORK LOCATION
Brooklyn, NY

TO APPLY
Interested applicants with other civil service titles who meet the preferred requirements should also submit a resume for consideration

Please go to www.cityjobs.nyc.gov and search for Job ID # 620337

SUBMISSION OF A RESUME IS NOT A GUARANTEE THAT YOU WILL RECEIVE AN INTERVIEW
APPOINTMENTS ARE SUBJECT TO OVERSIGHT APPROVAL

NOTE: This position is open to qualified persons with a disability who are eligible for the 55-a Program.
Please indicate in your cover letter that you would like to be considered for the position under the 55-a program.

OTI participates in E-Verify.

A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,

Education and/or experience which is equivalent to "1" above.

The successful candidate should possess the following: - Bachelors or higher degrees in Computer Science, Software Engineering, Business Information Security, Intelligence / Security Studies, Cybersecurity, or a related field - Prior experience in intelligence, preferably in a management role - Proficient analytical qualities that include logical reasoning, critical thinking, and problem solving - Strong understanding of the intelligence cycle and its application to cyber threat intelligence - Strong understanding of intelligence-driven threat hunting - Strong understanding of cyber threats, with a specific focus on the technical aspects of adversarial Tactics, Techniques and Procedures (TTPs) - Knowledge of standard monitoring, detection, and response security functions - Strong understanding of foundational threat intelligence analysis frameworks and models, including the Diamond Model and MITRE ATT&CK framework - Working knowledge of intelligence analysis applications, tools, and systems - Familiarity with various technologies such as SIEM, IDS/IPS, Proxy, Endpoint and enterprise incident management systems - Strong understanding of basic intelligence tradecraft, including the intelligence cycle, structured analytic techniques, and intelligence writing and briefing - 7+ years’ experience in intelligence, of which at least 3+ years’ experience in cyber threat intelligence or cybersecurity - Strong written and verbal communication skills, including prior experience drafting and editing finished intelligence products and providing intelligence briefings - Experience working with Threat Intelligence Platform (TIP) solutions, particularly OpenCTI - Experience supporting network defense teams - Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, and non-repudiation) - Understanding of vulnerability and exploitation concepts, or familiarity with penetration testing - Understanding of host and network-based forensics, or Incident Response best practices - Familiarity with dynamic / behavioral malware analysis methods and technology - Experience working with software developers / engineers - Experience managing vendors and the procurement lifecycle - Ability to obtain a security clearance - Possess relevant technical security certifications such as GCIA, GCIH, GCTI, CISSP (a plus).

As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education’s website at https://studentaid.gov/pslf/.

New York City Residency is not required for this position

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.