The Office of Data Security Management is responsible for the implementation and management of the Agency’s cyber security program. ODSM works closely with NYC Cyber Command and is tasked with continuously improving the Agency’s risk posture by ensuring appropriate security controls are in place to protect the confidentiality, integrity and availability of Agency information resources. The COVID-19 pandemic has accelerated the need to enhance DSS-HRA-DHS cyber security priorities as remote access and teleworking capabilities expanded exponentially.
The Office of Data Security Management is recruiting for (1) Computer Systems Manager NM-II to function as the Security Operations Director (SOC) who will:

- Oversee the daily operations of the Security Operations Center. Plan and direct the activities of staff, verify and approve work products, set annual goals, mentor and identify training opportunities, and develop strong working relationships with internal and external partners.

- Identify, recommend, and help procure innovative threat and compliance monitoring systems, in close cooperation with the NYC Cyber Command (NYC3), that utilize the latest technologies, such as artificial intelligence, analytics, and blockchain.

- Lead and guide staff who monitor, collect, analyze, triage and disposition information from all threat tools and sources of threat information.

- Develop and deliver metrics and report to periodically update the CISO and other executives about incident trends and threat landscape.

- Develop and manage the incident management and response function at the Agency. Assemble and guide response teams for major incidents/events. Direct staff who detect, triage, analyze, respond to, and help recover from suspicious events and security incidents. Develop and direct a forensic analysis capability within the SOC.

- Develop cybersecurity incident response plans. Identify and design innovative ways to test the Agency defenses and preparedness to respond and recover, for example through penetration testing, as well as to monitor and respond to events outside normal business hours.

- Develop and manage a problem management function regarding major adverse events and incidents experienced by the Agency. Develop corrective action plans, secure buy-in from senior management, help negotiate necessary budget, and track compliance.

- Oversee the collection and analysis of internal and external information relevant to ensuring situational awareness of the threat and operating landscapes in near real-time. Evaluate the information and make internal recommendations on new or enhanced controls that may be necessary to protect and defend against contemporary threats and trends.

1. A master's degree in computer science from an accredited college or university and three (3) years of progressively more responsible, full-time, satisfactory experience in Information Technology (IT) including applications development, systems development, data communications and networking, database administration, data processing, or user services. At least eighteen (18) months of this experience must have been in an administrative, managerial or executive capacity in the areas of applications development, systems development, data communications and networking, database administration, data processing or in the supervision of staff performing these duties; or

2. A baccalaureate degree from an accredited college or university and four (4) years of progressively more responsible, full-time, satisfactory experience as described in "1" above; or

3. A four-year high school diploma or its educational equivalent, and six (6) years of progressively more responsible, full-time, satisfactory experience as described in "1" above; or

4. A satisfactory combination of education and experience equivalent to "1", "2" or "3" above. However, all candidates must have at least a four-year high school diploma or its educational equivalent and must possess at least three (3) years of experience as described in "1" above, including the eighteen (18) months of administrative, managerial, executive or supervisory experience as described in "1" above.

In the absence of a baccalaureate degree, undergraduate credits may be substituted for a maximum of two (2) years of the required experience in IT on the basis of 30 semester credits for six (6) months of the required experience. Graduate credits in computer science may be substituted for a maximum of one (1) year of the required experience in IT on the basis of 30 graduate semester credits in computer science for one (1) year of the required IT experience. However, undergraduate and/or graduate credits may not be substituted for the eighteen (18) months of experience in an administrative, managerial, executive, or supervisory capacity as described in "1" above.

- Typically, 3+ years of relevant experience - Deep understanding of Cloud-native authentication mechanisms - Provides expert knowledge Identity Lifecycle Management - Provides expert knowledge AWS services - In-depth knowledge of scripting languages PowerShell, bash, python - In-depth knowledge of SIEM technology tool Splunk - knowledge of DNS and DHCP networking protocols - In-depth knowledge of Windows server operating systems - Stays abreast of industry trends and technologies - Maintains root cause analysis skills for investigation of incidents impacting technology availability - Reviews capacity utilization for trends and raises awareness across teams to address areas of excess and shortages - Administers processes and procedures related to code management - Engages various teams to evaluate and implement performance tuning recommendations - Experience in project management and change control processes - Strong written and oral communication skills. - In-depth knowledge of networking, complex network architecture, and information security technologies and methods. - Strong understanding of the cyber threat landscape, attack vectors, and risk mitigation as well as remediation methods. - Strong familiarity with information security management frameworks such as NIST, ISO or other widely recognized and adopted data security standards. - Knowledge of data privacy regulations and compliance requirements. - CISSP, CISA, CISM, CCFP, CEH, or other cybersecurity certifications - Excellent written and verbal communication skills.

New York City Residency is not required for this position

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.