APPLICANTS MUST BE PERMANENT IN THE COMPUTER SPECIALIST (SOFTWARE) CIVIL SERVICE TITLE

The Department of Social Services (DSS) is comprised of the administrative units of the New York City Human Resources Administration (HRA) and the Department of Homeless Services (DHS). HRA is dedicated to fighting poverty and income inequality by providing New Yorkers in need with essential benefits such as Food Assistance and Emergency Rental Assistance. DHS is committed to preventing and addressing homelessness in New York City by employing a variety of innovative strategies to help families and individuals successfully exit shelter and return to self-sufficiency as quickly as possible.

Information Technology Services (ITS) is DSS’s technology services organization. ITS mission is to support the daily, emergent, and long-term needs of both agencies. ITS creates and enhances the technology infrastructure and computer applications that support HRA and DHS and develops applications, including a variety of client eligibility and recertification systems, case management systems, housing systems, employment/work engagement services, revenue producing computer matches, claiming systems, and personnel systems.

Information Technology Services, IT Service Management is recruiting for one (1) Computer Specialist (SW) Level II, to function as Sr. Security Access Management Analyst, who will:

- Manage two domains Windows and DHS along with users, groups, workstations, and
servers (both on-premises and Azure).

- Administer and govern Entra ID (Azure AD) by enforcing MFA and conditional access policies,
managing integrated applications, overseeing Entra ID governance features such as access
reviews, privileged identity management, and implementing identity protection measures to
detect and respond to potential security risks through real-time adaptive authentication policies,
risk-based access controls, automated remediation actions, and fraud alerts to monitor
suspicious activities.

- Manage Centrify Privileged Access Management (PAM), including zone role administration and
Role-Based Access Control (RBAC).

- Oversee Group Policy administration (on-premises and Entra ID cloud).

- Administer Windows Server systems, including roles, features, configurations, and managing
user access to shared resources (e.g., files, folders, and network shares).

- Support Power Platform administration, including Power Apps, to enable process automation,
app development, and integration with other enterprise systems.

- Manage user access to mobile devices and managing configuration to ensure secure and
compliant endpoint access.

- Ensure the appropriate permissions and access control to development environments and
shared resources.

- Ensure timely and accurate employee attestations as part of the JML process.

- Enforce and monitoring compliance with Citywide Security Standards.

- Serve as a Project Leader by instructing, teaching, and illustrating best practices for security
access management, identity governance, and policy enforcement across teams, ensuring
alignment with organizational goals and security standards.


Hours/Shift:

Normal Business Hours

COMPUTER SPECIALIST (SOFTWARE) - 13632

(1) A baccalaureate degree from an accredited college, including or supplemented by twenty-four (24) semester credits in computer science or a related computer field and two (2) years of satisfactory full-time software experience in designing, programming, debugging, maintaining, implementing, and enhancing computer software applications, systems programming, systems analysis and design, data communication software, or database design and programming, including one year in a project leader capacity or as a major contributor on a complex project; or
(2) A four-year high school diploma or its educational equivalent and six (6) years of full-time satisfactory software experience as described in “1" above, including one year in a project leader capacity or as a major contributor on a complex project; or
(3) A satisfactory combination of education and experience that is equivalent to (1) or (2) above. College education may be substituted for up to two years of the required experience in (2) above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. A masters degree in computer science or a related computer field may be substituted for one year of the required experience in (1) or (2) above. However, all candidates must have a four year high school diploma or its educational equivalent, plus at least one (1) year of satisfactory full-time software experience in a project leader capacity or as a major contributor on a complex project.
NOTE: In order to have your experience accepted as Project Leader or Major Contributor experience, you must explain in detail how your experience qualifies you as a project leader or as a major contributor. Experience in computer operations, technical support, quality assurance (QA), hardware installation, help desk, or as an end user will not be accepted for meeting the minimum qualification
requirements.
Special Note
To be eligible for placement in Assignment Level IV, in addition to the Qualification Requirements stated above, individuals must have one year of satisfactory experience in a project leader capacity or as a major contributor on a complex project in data administration, database management systems, operating systems, data communications systems, capacity planning, and/or on-line applications programming.

- Expertise in managing users, groups, and organizational units (OUs) via Active Directory Users and Computers (ADUC). - Proficiency in managing users, groups, roles, and devices in Azure AD. - Knowledge of Azure AD B2B/B2C collaboration and guest user management. - Strong understanding of Group Policy Objects (GPOs) for configuring security settings across users and computers and its application on directory objects. - Experience with PowerShell scripting for automation and server management tasks. - Familiarity with identity governance and administration (IGA) tools. - Familiarity with frameworks like NIST, ISO 27001, and GDPR. - Understanding of network security protocols, including LDAP, Kerberos, NTLM, and SSL/TLS. - Ability to work with cross-functional teams to ensure alignment on security and access control policies. - Strong communication skills for creating clear documentation, conducting training, and explaining complex security concepts to non-technical stakeholders.

This position is also open to qualified persons with a disability who are eligible for the 55-a Program. Please indicate at the top of your resume and cover letter that you would like to be considered for the position through the 55-a Program.

As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education’s website at https://studentaid.gov/pslf/.

New York City Residency is not required for this position

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.