ONLY CANDIDATES WHO ARE PERMANENT CYBER SECURITY ANALYST OR WHO ARE ELIGIBLE FOR APPOINTMENT FROM THE OPEN COMPETITIVE OR PROMOTIONAL CYBER SECURITY ANALYST LIST WILL BE CONSIDERED FOR THIS POSITION.

The New York City Department of Youth and Community Development (DYCD) invests in a network of community-based organizations and programs to alleviate the effects of poverty and to provide opportunities for New Yorkers and communities to flourish.

We are seeking an IT security analyst who plays a vital role in keeping an organization’s proprietary and sensitive information secure. He/she is ultimately responsible for ensuring that the company's digital assets are protected from unauthorized access. This includes securing both online and on premises infrastructures. The candidate will help to make the necessary changes for a more secure network and may also create training programs and modules to educate employees and users on proper security protocols -Respond to assigned tickets within SLAs, escalate complex issues to Senior Engineers and team leaders. -Act as first line of response for basic operational Incidents and Requests. -Provide basic support of Windows 2012/2016/2019 server- Forest, Domain trust, AD, DFS, DNS, WINS, DHCP, Group Policy, Distribution lists, Windows folder security, and IP filter. -Provide basic support of a hybrid multi-tenant Microsoft Azure and Office 365 -Administer various Identity Access management (IAM), Role Based Access Control (RBAC), and Privileged Access Management (PAM) -Handle special projects and initiatives as assigned. -Identify, analyze, and communicate security vulnerabilities. -Understand current as well as emerging security threats and assist in the design of application architecture to mitigate threats where possible. -Stay abreast of new security technologies and assist in the integration of new technology into architecture design when appropriate. -As a contributor, take ownership for assigned areas of responsibility and effectively manage workloads to meet team deadlines. -Clearly and concisely communicate in both written form and verbally to leadership and Management. -Review security features of newly implemented systems, ensuring they meet existing security requirements and policies. Review proposed changes to existing policy as conditions warrant

1. A baccalaureate degree, from an accredited college including or supplemented by twenty-four (24) semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or

2. A four-year high school diploma or its equivalent approved by a State’s department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in “1” above; or

3. Education and/or experience equivalent to “1” or “2”, above. College education may be substituted for up to two years of the required experience in “2” above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. In addition, twenty-four (24) credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least 625 hours in computer programming from an accredited technical school (post high school), may be substituted for one year of experience.

-Knowledge of DOITT/NYC3 cyber security tools and protocols -Knowledge of Windows and Mac desktop environments -Experience with Windows Server Update Services (WSUS) -Experience with Network Switch/Router security implementation -knowledge and experience with Windows 2008/2012/2016 server - Forest, Domain trust, AD, DFS, DNS, WINS, DHCP, Group Policy. -Experience in working Hybrid Multi-cloud, multi-tenant environment including Active Directory, Azure Active Directory -Basic understanding of cloud architecture on Azure, -General understanding of DevOps concepts and tools. -Ability to conduct system security vulnerability and threat analyses, gathering of intelligence, risk assessments, mitigation planning and implementation. -Effective interpersonal skills and the ability to thrive in a team environment. -Ability to balance various projects simultaneously. -Demonstrated understanding of cyber security risk management concepts, cybersecurity frameworks, control standards, secure coding principles, and security technologies. -Hands on experience with scripting languages such as PowerShell

This position is open to qualified persons with a disability who are eligible for the 55-a Program. Please indicate in your cover letter that you would like to be considered for the position under the 55-a Program.

As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education’s website at https://studentaid.gov/pslf/

City residency requirements may vary by title and assignment level. Check with your agency’s personnel office to determine if city residency is required.

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.