Cyber Security Analyst

K Systems Solutions (Www.Kssnyc.Co)

posted 4 days ago

Full-time
Onsite
Professional, Scientific, and Technical Services

About the position

The Cyber Security Analyst will be responsible for identifying and mitigating complex IT threats to computer systems, networks, and data for the City of New York. This role involves both in-person and remote work, utilizing technical tools to monitor, analyze, and defend against cyber-attacks. The analyst will also manage endpoints, investigate security incidents, and collaborate with various teams to ensure secure cloud infrastructure and compliance with security standards.

Responsibilities

  • Identify and mitigate complex IT technical threats to computer systems, networks, and data.
  • Use technical IT tools and software to monitor, analyze, and defend against cyber-attacks.
  • Monitor and analyze network traffic, configure firewalls, and conduct vulnerability assessments.
  • Manage and protect endpoints from malware, ransomware, and other threats.
  • Investigate security incidents and implement corrective actions.
  • Utilize SIEM tools to collect and analyze security event data for threat detection.
  • Monitor emerging threats and vulnerabilities to proactively defend against cyber threats.
  • Perform penetration testing.
  • Stay updated on security, privacy, and regulatory concerns affecting third party risk management.
  • Advise on changes requested by third parties to security and privacy provisions.
  • Collaborate with IT teams to design secure cloud infrastructure plans.
  • Analyze the security of cloud services like AWS, Microsoft Azure, and Google.
  • Provide expertise on cloud security, automation, and virtualization.
  • Develop and validate policies and procedures related to cloud security.
  • Create cloud security metrics to analyze risks and reduce vulnerabilities.
  • Collaborate with the Cyber Command Center to update agency inventory lists.

Requirements

  • Bachelor's degree in information technology or Computer Science.
  • Industry recognized certification in information security and privacy (e.g., CISSP, GIAC, CISM, CISA, CIPP, CTPRP, CCSP).
  • Minimum of three years of experience in an IT or computer-related field, with preference for those with over five years.
  • Minimum of three years of hands-on technical experience in cloud administration.
  • At least one year of experience in Cloud Cybersecurity aligned with the Risk Management Framework (RMF).
  • At least one year of experience in an Information & Network Security occupation preferred.
  • At least one year of experience in a cybersecurity-related occupation preferred.
  • Minimum of three years of experience applying information security and privacy fundamentals.
  • Experience applying risk management frameworks such as NIST, FISMA, or ISO 27000.
  • Experience with vendor risk assessment methodologies like SSAE 16, SOC 2, and FedRAMP.
  • Experience with Governance, Risk, and Compliance (GRC) and vendor risk management tools.
  • Technical expertise in network protocols, operating systems, programming languages, encryption techniques, and intrusion detection systems.
  • Excellent oral and written communication skills.
  • Proficiency in designing and implementing effective information security controls.
  • Attention to detail with a high level of data integrity and accuracy.
  • Strong organizational and prioritization skills.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service