Senior Cyber Security Analyst

at New York Power Authority
Location Albany, NY
Date Posted October 11, 2018
Category Default
Job Type Full-time

Description

Power the economic growth and competitiveness of New York State by providing customers with low-cost, reliable power and the innovative energy infrastructure and services they value.

 Summary

Ensure the development, implementation and refinement of security policies, procedures and programs to protect the New York Power Authority’s Information Technology cyber assets which include, but are not limited to, computers, networks, telecommunication equipment, data centers, firewalls, etc.

Responsibilities

  • Provide direction for the Team, assign work requests, ensure work is completed on time, on budget and meets all requirements. Provide feedback to CIO and other I.T. Directors on project status, deliverables and pending work.
  • Develop recommendations for IT Solutions based on business requirements; includes understanding and documenting the business needs; developing RFI/RFQ/RFP’s, meeting with potential vendor solutions, and producing and presenting feasible solution options and recommendations.
  • Assist with the development, implementation and monitoring and enforcement of appropriate cyber security policies pertaining to security, account access and control, incident and escalation reporting, intrusion detection and vulnerability assessment and overall password policies.
  • Manage Active Directory for user authentication services and identity management; includes verification and monitoring of accounts for compliance to policies and include NYPA's efforts toward a Single Sign On policy for multiple application access.
  • Manage Citrix environment for remote access and terminal server applications for Employee remote access as well as remote vendor assistance.
  • Monitor health of NYPA corporate network Perimeter protection devices – Firewall, Proxy, SOC logging, etc., to maintain protection from external threats.  Use other tools such as Secunia to ensure the patching and safety of our servers and cyber security toolsets.
  • Manage RSA Secure lD token and server management to ensure user identity based on additional security requirements of certain systems.
  • Participate in review and selection of hardware and software that affect NYPA's cyber security overall policy such as Proxy servers/Web filters etc.
  • Create, maintain and manage documentation on cyber security assets, tools and software.
  • Work with Email Team on NYPA anti-spam mechanisms to ensure enterprise-wide effectiveness and, in conjunction with the Help Desk, provide customer support.
  • Project Management – will manage very technical projects at the request of the CSO.  These projects will include telecoms, firewall, network architecture, and cyber security hardening projects.

Knowledge, Skills and Abilities

  • Competent in networks, firewalls, routers and Microsoft OS environments.
  • An understanding of interactions of applications, operating systems, and hardware configurations to produce high quality technically sound solutions
  • Broad understanding of IT industry trends and tools as they apply to providing solutions to stated business issues and opportunities. 
  • Comprehensive understanding of the IT system infrastructure and network topology, the electric utility industry, familiarity with cyber security strategies, and installation of software to implement these functions in a field environment.
  • Competent in networks, firewalls, routers and Microsoft OS environments.
  • An understanding of interactions of applications, operating systems, and hardware configurations to produce high quality technically sound solutions
  • Broad understanding of IT industry trends and tools as they apply to providing solutions to stated business issues and opportunities. 
  • Comprehensive understanding of the IT system infrastructure and network topology, the electric utility industry, familiarity with cyber security strategies, and installation of software to implement these functions in a field environment.
  • Knowledge of cyber security policies and practices found throughout both the public and private sectors.
  • Experience with and knowledge of basic communications concepts.
  • Advanced knowledge. Must understand and communicate complex IT security and policy planning.
  • Advanced project management and technical skills along with an understanding of Information Technology and the Business.
  • Strong analytical problem-solving skills and practical cyber security experience
  • Proven ability to communicate complex technical and security related concepts to a broad range of technical and non-technical staff. 
  • Ability to interface with IT management and staff in planning, designing and implementing security architecture, software and controls to protect cyber assets.
  • Ability to work with sites and corporate management to address cyber security requirements, and provide technical guidance within all of NYPA’s IT/computer groups.
  • Familiarity with electric utility business and operating functions.
  • Ability to provide leadership in support of completing assignments.

Education, Experience and Certifications

  • Bachelor's Degree in a computer science, engineering or related technical or business discipline.
  • For Project Management work, CISSP or CISM certification is required
  • Minimum 6 years quality experience (or a minimum of 9 years directly related experience for non-degree holders) including at least 5 years in cyber security.

Physical Requirements

May be required to respond Cyber Security alerts and communicate during off hours.

The New York Power Authority is an Equal Opportunity Employer                       

Ensure the development, implementation and refinement of security policies, procedures and programs to protect the New York Power Authority’s Information Technology cyber assets which include, but are not limited to, computers, networks, telecommunication equipment, data centers, firewalls, etc.

Drop files here browse files ...