The Office of the Queens County District Attorney (QDA) is seeking an experienced Senior Cyber Security Engineer whose responsibilities will include, but are not limited to:
 

• Design and implement security controls across cloud and on-premises infrastructure.
• Conduct security assessments and architecture reviews for existing and new systems and applications.
• Process and analyze cyber threats, establishing the extent of the threat and its impact on the environment.
• Perform regular vulnerability assessments and penetration testing.
• Ensure compliance with relevant frameworks and requirements (CJIS, NIST, etc.)
• Perform detailed analysis of threats during the incident process, combining sound analytical skills with advanced knowledge of IT security and network threats.
• Perform postmortem analysis on logs, traffic flows, and other activities to identify malicious activity.
• Develop and present regular updates and reports for technical audiences on cyber threats and activity.
• Work to implement the Security Incident Event Management system.
• Lead and participate in security incident response efforts including off-hours/on-call support including performing detailed analysis of threats during the incident process, combining sound analytical skills with advanced knowledge of IT security and network threats.
• Coordinate remediation efforts with development and infrastructure teams.
• Contribute to the development of policies and documentation to support ongoing IT security activities (run books, procedure documentation, etc.).
• Assist in deploying security monitoring tools and countermeasures, security tool integration and optimization.
• Research, analyze, and understand log sources, particularly security and networking devices (such as firewalls, routers, anti-virus products, and operating systems).

Preferred Education and Qualification Requirements:

1. A baccalaureate degree from an accredited college or university in Computer Science or related field and four years of satisfactory full-time experience related to projects and policies required by the position;  or
2. Education and/or experience which is equivalent to "1" above.
3. 5+ years of hands-on cybersecurity experience
4. Strong knowledge of network and security, encryption, and authentication protocols
5. Experience with SIEM tools, vulnerability scanners, and security orchestration platforms
6. Proficiency in scripting languages (Powershell)
7. Understanding of cloud security (AWS, Azure, GCP)
8. Knowledge of DevSecOps practice and security automation

Must have excellent communication skills and experience in handling confidential information. 

Strong preference given to candidates with an understanding of networking protocols and infrastructure designs; understanding of routing, firewall functionality, host and network intrusion detection systems including encryption and load balancing; network protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, routing protocols) and topologies; experience in monitoring both commercial and open-source IDS/IPS; and knowledge of network forensic techniques.

Application Information:

Salary range: $130,000-$155,000 (Salary commensurate with experience).

Comprehensive benefits package including health insurance, 401K and more. Salary commensurate with experience. 

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.

To apply, please submit a resume and cover letter through the link below