About New York City Cyber Command (NYC3)
Mission. NYC Cyber Command leads the City’s cyber defense efforts, working across more than 100 agencies and offices to prevent, detect, respond, and recover from cyber threats. NYC3 protects NYC infrastructure and critical systems from malicious attacks and safeguards the data, devices, and services of the City.
Culture. Foremost, we serve the people of the City of New York, so earning - and keeping - their trust is paramount. To deserve that trust, we relentlessly focus on facts, provide sound judgment, and maintain a healthy culture. We pride ourselves on having a respectful and inclusive workplace built on kindness, honest intellectual debate, and excellent work.
About the Job
You will help build and run the cyber risk program, and manage a team of cyber risk analysts. Under the guidance of the Director of Cyber Risk, you will contribute to program strategy and planning, and stakeholder engagement. You will be responsible for helping reduce the cyber risk to the City of New York, influence NYC3 priorities across City Agencies, and establish agency confidence in NYC3 as the authority of risk management in cybersecurity.
Some of your responsibilities will be to:
- Support Director in program strategy and planning;
- Oversee operations and effectiveness of cyber risk management program;
- Assist in conducting risk assessments;
- Orchestrate multiple work streams simultaneously;
- Manage and mentor a team of analysts;
- Engage NYC3 teams, City Agencies, and external stakeholders.
About You
People who succeed at NYC3 are collaborative, service-oriented, and mission-driven.
You are communicative, creative, and curious in approaching complex problems; you relish the opportunity to try something that has not yet been done. You are also rigorous in understanding risk and tenacious in minimizing it; you can make sound decisions even in the absence of complete information. You are comfortable in a dynamic, ambiguous environment. You thrive on building processes yet don’t miss a step in execution.
To apply for this job, you will need to at least have a bachelor’s degree and four years of experience or equivalent experience. Ideally, you will have a combination of experience in:
- Building, growing, and optimizing programs;
- Staffing, managing, and mentoring team members;
- Assessing cyber risk and communicating findings to varying audiences;
- Creating a plan, prioritizing initiatives, and executing independently and collaboratively;
- Operating in an ambiguous and dynamic environment;
- Managing inter-agency relationships and complex stakeholders;
- Applying cybersecurity frameworks, including NIST CSF, CSC 20, and FAIR.
Minimum Qualification Requirements for IT SECURITY SPECIALIST Civil Service Title
1. A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or
2. Education and/or experience which is equivalent to "1" above.
If you are a current City government employee and have a permanent title that does similar type of work you are welcome to apply as well even if you do not meet the minimum requirements above.