Title: Cyber Security Analyst

NYC Parks helps bring together people from all over our great city. From the iconic Central Park to neighborhood playgrounds, we own and operate some of the most exemplary green spaces in the world. At NYC Parks, our mission is to plan resilient and sustainable parks, public spaces, and recreational amenities, build a park system for the present and future generations, and care for parks and public spaces.

NYC Parks offers competitive pay and a generous benefits package that includes pension, excellent health benefits, competitive vacation/sick days and a healthy work-life balance.

NYC Parks offers innovation, leadership, the satisfaction of public service and a place to grow and develop your career. Full-time employees are also eligible for a wide variety of City benefits and perks.

Health Care Coverage - We offer a wide variety of health care plans to meet the needs of you and your family.

Pension - Upon retirement, qualified members of the City’s generous pension program receive a guaranteed salary and health benefits for the rest of their lives.

Professional Development - We offer numerous training programs, leadership development opportunities, and career coaching services, while encouraging employees to attend approved off-site trainings and seminars.

Perks - Our employees are eligible for discounts on some of the top attractions in the city, and all employees receive free membership to our recreation centers.

The Cyber Security Analyst defends against cybersecurity incidents and identifies, analyzes, communicates and contains incidents as they occur. This cybersecurity role requires excellent communication skills, creativity, strong technical background, and familiarity with tradition and emerging security technologies and practices. The activities of this role will be split between day-to-day operations and working on new and existing cybersecurity related projects.

MAJOR RESPONSIBILITIES

• Under supervision, with latitude for independent initiate and decision making, assist Parks IT in liaising with the citywide NYC Office of Technology and Innovation (OTI) by ensuring any security threats are mitigated by Parks in a timely manner. 
• With an effort to remain proactive and stay ahead of the issues, respond to alerts and events that could threaten the Agency’s information technology security posture.
• Characterize and analyze network traffic and server / cloud performance metrics to identify anomalous activity and potential threats.
• Complete appropriate patching on various systems, including workstations, servers and network equipment such as switches and routers.
• Analyze identified malicious activity to determine means, method, and details of exploitations against agency systems and applications.
• Evaluate commercial software in conjunction with OTI for safe use by NYC Parks.
• Reimage / restore devices and equipment to previous known good states after an incident.
• Validate, analyze, investigate and mitigate reported trouble tickets or incidents from OTI.
• Follow up to ensure Parks staff are taking and following Cyber Security Training.
• Ensure new software (COTS, in-house) are being developed following citywide security standards and protocols.
• Follow up on incident reports and app scan reports to ensure that proper mitigation is taking place in timely manner.
• Conduct network monitoring and intrusion detection analysis using various computer network defense tools, such as intrusion detection/prevention systems, firewalls and host-based security systems.
• Conduct log-based and endpoint-based threat detection to detect and protect against threats coming from multiple sources
• Correlate activity across assets (endpoint, network, apps) and environments (on-premises, cloud) to identify patterns of anomalous or suspicious activity.
• Support the creation of business continuity/disaster recovery plans, including conducting disaster recovery tests, publishing test results and making changes necessary to address deficiencies.
• Research emerging threats and vulnerabilities to aid in the identification of incidents.
• Provide users with incident response support, including mitigating actions to contain activity and facilitating forensic analysis when necessary.
• Perform security standards testing against computers or IT equipment before implementation to ensure security standards are met.
• Coordinate with OTI and Parks IT on providing IT inventory, performing Parks security audits and coordinate comptroller directive 1 audits.

QUALIFICATION REQUIREMENTS

1. A baccalaureate degree, from an accredited college including or supplemented by twenty-four (24) semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or
2. A four-year high school diploma or its equivalent approved by a state’s department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in “1” above; or
3. Education and/or experience equivalent to “1” or “2”, above. College education may be substituted for up to two years of the required experience in “2” above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. In addition, twenty-four (24) credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least 625 hours in computer programming from an accredited technical school (post high school), may be substituted for one year of experience.

Residency in New York City, Nassau, Orange, Rockland, Suffolk, Putnam or Westchester counties required for employees with over two years of city service. New York City residency required within 90 days of hire for all other candidates.

PREFERRED SKILLS/QUALIFICATIONS

1. Experience in IT audit, enterprise risk management, penetration tester, red team/incident responder or as a junior security operations analyst.
2. Experience with regulatory compliance and information security management frameworks (such as International

Organization for Standardization [IS0] 27000-1 or 27000-2, COBIT, National Institute of Standards and Technology [NIST] 800-53 or 800-171).

3. Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
4. An ability to effectively influence others to modify their opinions, plans or behaviors.
5. An understanding of organizational mission, values, goals and consistent application of this knowledge.
6. Strong problem-solving and troubleshooting skills.
7. Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM).
8. Valid New York State driver license.
9. Familiarity with CISA Binding Operational Directives.
10. Familiarity with NIST Framework, McAfee / CrowdStroke / Rapid7, and Azure or AWS.

Salary: $90,000 - $100,000  Plus excellent benefits

Work Location: Arsenal West, Manhattan

Open Until Filled

For external applicants, please apply through www.nyc.gov/careers

1. Go to www.nyc.gov/careers/search
2. Search for Job ID#: 596558

References will be required upon request.

For details about NYC Parks: www.nyc.gov/parks   

THE CITY OF NEW YORK IS AN INCLUSIVE EQUAL OPPORTUNITY EMPLOYER COMMITTED TO RECRUITING AND RETAINING A DIVERSE WORKFORCE AND PROVIDING A WORK ENVIRONMENT THAT IS FREE FROM DISCRIMINATION AND HARASSMENT BASED UPON ANY LEGALLY PROTECTED STATUS OR PROTECTED CHARACTERISTIC, INCLUDING BUT NOT LIMITED TO AN INDIVIDUAL'S SEX, RACE, COLOR, ETHNICITY, NATIONAL ORIGIN, AGE, RELIGION, DISABILITY, SEXUAL ORIENTATION, VETERAN STATUS, GENDER IDENTITY, OR PREGNANCY.

TELECOMMUNICATIONS DEVICE FOR THE DEAF: (212) 504-4115