
Cyber Security Threat Analyst
Business Title:
Cyber Security Threat Analyst
Job ID:
413167
Title Classification:
Non-Competitive
Job Category:
Technology, Data & Innovation
Proposed Salary Range:
$ 90,000.00 – $120,000.00 (Annual)
Work Location:
1 Centre St., N.Y.
Division/Work Unit:
Information Technology
Career Level:
Experienced (non-manager) Job Description
Cyber Security Threat Analyst Job Description
DCAS maintains a blend of citywide and public facing web applications and databases, with more than 3,500 endpoints kept secure, and portfolio of 60 agency apps. DCAS Cyber Security Team is currently staffed with 2 dedicated members responsible for the monitoring, identification, analysis, mitigation, removal, and proactive hunting of agency cyber threats, as well as support DCAS Cyber Teams in Data Loss Prevention (DLP), Cyber User Behavior Analysis (UBA), and End Point Vulnerability management.
This role assists in the monitoring, identification, analysis, mitigation, removal, and proactive hunting of agency cyber threats, as well as support the DCAS Cyber Teams in Data Loss Prevention (DLP), Cyber User Behavior Analysis (UBA), and End Point Vulnerability management. This role involves working with agency IT Help Desk and incident response teams to review alerts, interface with DoITT and NYC3 to identity false positives and route critical events to the appropriate staff for mitigation and Legal if necessary (i.e., Data Privacy Issues). This role ensures Cyber issues are properly triaged using Cyber Toolsets (Crowd Strike, Tenable, Force Point DLP, Zips Mobile Protection, McAfee, NYC3 Advisory Reports), ensuring escalation is addressed timely (esp. with Investigations) using NYC3 and agency Cybersecurity response plans. DCAS maintains a blend of citywide and public facing web applications and databases, with more than 3,500 endpoints kept secure, and portfolio of 60 agency apps.
- Incidence Response; monitoring, communication, investigations and response to malicious activities
- Risk Management; scanning web applications, assess cyber risks on software, applications, IT architecture, IT processes, coding and compliance, Software Security Assurance (SSA) and mitigation of IOT vulnerabilities.
- Operations; Support cyber security products and processes, such as PCI Compliance / DR Reviews, DLP, IPS, endpoint software, vulnerability management, UBA Systems, and able to gather, analyze, and present information from various data sources (i.e., very strong data analysis and presentation skillsets) under tight deadlines.
- Support Systems Engineering in quarterly patching of all desktops and servers (identification of vulnerabilities)
- Collaborate and work with vendors and/or cross agency Cyber resources and personnel to implement cybersecurity solutions
Minimum Qual Requirements
- A baccalaureate degree from an accredited college in computer science, engineering, human computer interaction, interactive media, digital and graphics design, data visualization, communication or a related field, and four years of satisfactory full-time experience related to the area(s) required by the particular position and a specialization in a relevant technology, process, methodology and/or domain; or
- An associate degree from an accredited college in computer science, engineering, human computer interaction, interactive media, digital and graphics design, data visualization, communication or a
- A baccalaureate degree from an accredited college, and eight years of satisfactory full-time experience related to the area(s) required by the particular position and a specialization in a relevant technology, process, methodology and/or domain; or
- Education and/or experience which is equivalent to “1”, “2”, or “3” above.
related field, and six years of satisfactory full-time experience related to the area(s) required by the particular position and a specialization in a relevant technology, process, methodology and/or domain; or
Preferred Skills
The successful candidate should possess one of the following: CISSP, CSSLP, CEH, CCSK, CySA+ and/or other IT Security Certificates. including knowledge of SDLC processes, NIST 800-61 Incidence Response Process (IT Support and Triage, IT Support and Triage, and Cyber Security Toolsets, Such as Dark Trace UEBA, Tenable, Force Point, Nessus, and Crowdstrike End Point Protection Suit
To Apply
Please go to www.nyc.gov/careers or www.nyc.gov/ess for current NYC employees and search for Job ID 413167.
NO PHONE CALLS, FAXES OR PERSONAL INQUIRIES PERMITTED.
NOTE: ONLY THOSE CANDIDATES UNDER CONSIDERATION WILL BE CONTACTED.
Residency Requirement
New York City Residency is not required for this position