Position Title:Cyber Security LeadLocation:Albany, NYGrade/Classification:5 (D1) - Professional IISalary Range:$83,535 - $101,654Bargaining Unit: CSEA FLSA Status:ExemptRevised date: April 26, 2022Primary PurposeThe Cyber Security Lead is responsible for leading the efforts and responsibilities associated with protecting and securing DASNY's hardware, software, and networks from theft, loss, and/or unauthorized access.Essential Functions
- Develop, evaluate and/or monitor DASNY's cyber security preparation plans to improve our ability to identify threats to DASNY's IT ecosystem and to sustain, protect and manage DASNY cyber and information security protections.
- Provide independent and objective analysis of cyber security risk based on complex data sets.
- Manage, troubleshoot, and oversee updates to applications/tools including but not limited to anti-malware, device encryption, security operations center (SOC) alerting and detection and access and data anomaly tracking.
- Facilitate the creation and production of security metrics furnished to senior management monthly.
- Maintain documentation for security related processes, procedures, standards, and guidelines.
- Monitor and analyze logs and alerts from a variety of different technologies (IDS/IPS, Firewall, Proxies, Anti-Virus, SIEM, Azure, etc.), across multiple platforms.
- Support firewall management activities including firewall rule analysis.
- Perform risk assessments of the supply chain and provide comprehensive oral and/or written analysis of identified risks to ensure processes and technologies are adapted to manage the risk to an acceptable level.
- Provide security assistance in evaluating security controls and providing secure solutions.
- Provide support for cyber security incidents, action plans, findings, and audit points.
- Develop and maintain relationships with external support groups such as the NYS ITS Cyber Command Center, MS-ISAC, and other security vendors.
- Research security related items for DASNY projects, as needed.
- Develop and promote best practices for information security.
- Support DASNY's e-discovery processes by identifying and collecting electronic information.
- Maintain and support one or more security tools (e.g., Anti-Virus, disk encryption, vulnerability scanning system, etc.)
- Provide second level support for security tools deployed on PCs within the environment.
- Maintain and enforce network-based URL filters
- Develop and implement controls to minimize the attack surface and the opportunities for attackers to manipulate human behavior through their interaction with web browsers and email systems.
Other Duties and Responsibilities
- Provide support to other staff as needed.
- May train and evaluate employees.
- Assess, develop, and implement internal controls, and oversee the review and testing of same.
- Assist Management in the development of policies.
- Develop, document, and implement procedures.
- Assist other units during peak workload periods or for long-term assignments as needed.
- Undertake special assignments and other duties as directed.
- Must maintain regular attendance in accordance with DASNY attendance and leave policies.
- Must adhere to the NYS Information Security Policy Standards established and issued by the Office of Cyber Security and Critical Infrastructure Coordination. (Standards can be found on the Intranet.)
SupervisionSupervision of employees may be required.Physical/Mental/Visual DemandsMay require travel using public transportation, DASNY vehicle, rental vehicle, or personal vehicle. This travel may include overnight stays at public accommodations and related establishments. May require time pressure of decision-making. May require physical mobility (movement from place to place) and exposure to heights (climbing ladders, scaffolding, etc.). Must be able to lift up to fifty pounds. Overtime or extended work hours may be required. Off-hour availability during security incidents and relevant emergent conditions is required.Work EnvironmentStandard office environment, including the use of one or more of the following: PC, telephone, fax machine, printer, copier, electronic stapler/hole punch/date stamp, shredder.Minimum QualificationsAssociates degree plus six years of experience. Other combinations of education may be considered.Preferred QualificationsBachelor's degree plus three years of experience and relevant ISO certifications (CISSP,CISM,etc.)
- Experience with information Security systems (SIEM, GRC, SOC, etc.)
- Knowledge of Risk Management frameworks.
- Excellent oral and written communication skills, including the ability to clearly articulate information technology and information security concepts.
- Demonstrated critical thinking, problem solving and analytical skills.
- Produce meaningful actionable reports.
- Provide recommendations to update and improve existing strategies and approaches.
Essential Skills
- Familiarity with Windows, Mac, and Linux operating systems and experience with firewalls, VPNs, and proxies, as well as security and information event management systems (SIEMs).
- Proficiency in PC applications such as Outlook, Excel, Word, and Access.
- Excellent oral and written communications skills.
- Demonstrated organizational skills and ability to prioritize.
- Demonstrated ability to work independently and exercise sound judgment.
- Demonstrated accuracy and attention to detail.
- Excellent verbal and written communications skills with a flexible attitude and the ability to meet deadlines under pressure.
- Ability to work independently as well as in a team environment.
- Ability to maintain sensitive and confidential information.
- Inquisitive, disciplined, and logical thinker who possesses strong investigative and analytical qualities.
Benefits information:DASNY provides financing and construction services to public and private universities, not-for-profit healthcare facilities, and other institutions which serve the public good.We offer a comprehensive benefits plan, which includes:
- Choice of several health insurance plans
- Dental & vision insurance
- Membership in the NYS Retirement System
- Deferred Compensation Investment Plan
- 13 vacation days per year
- 13 sick days per year
- 5 days of personal leave per year
- 12 paid holidays per year (plus one float day)
- Tuition reimbursement
- Training & development opportunities
We offer additional benefits, which includes:
- Telecommuting Work Plan - Employees are required to apply and obtain approval through management to telecommute according to DASNY's Telecommuting Program Guidelines. The days designated as telecommute days must be consistent with operational needs as determined by DASNY division, department and/or unit management. Employees may only telecommute on up to four (4) workdays per pay period and shall be limited to no more than two (2) contiguous telecommute workdays. Eligibility applies after 3 months of employment.
- Limited Work from Home (LWFH) - additional telecommute days according to DASNY's Telecommuting Program Guidelines. Eligibility applies after 6 months of employment.
- DASNY is a government employer for purposes of the Public Services Loan Forgiveness Program (PSLF Program). The PSLF Program forgives the remaining balance of certain student loans after making 120 qualifying monthly payments. For more information regarding PSLF Program and whether you qualify please visit the Studentaid.gov website.