Senior Cybersecurity Manager

West 4th Strategy•New York, NY

17h•$74 - $99•Onsite

About The Position

We need an experienced Senior Cybersecurity Manager at the New York City Department of Social Services (DSS). DSS enhances the quality of life for all New Yorkers by providing temporary assistance to eligible individuals and families with social service and economic needs, supported by IT Services (ITS) which operates the critical technology infrastructure behind the agency’s programs. DSS is currently executing a large-scale Data Center Co-location and Migration Project to consolidate multiple data centers into a new facility at 11 MetroTech in Brooklyn, replacing end-of-life infrastructure and mitigating risk of service disruption to agency operations. In this role, you will ensure prompt identification and prioritization of IT/security service disruptions and alerts arising during the data center migration, coordinate across legacy, cloud, and DR environments leveraging Splunk, CrowdStrike, and Trellix, serve as POC for all infrastructure vulnerability findings, and create remediation workflows for systems related to the DC implementation. This is a full-time opportunity. We can offer a competitive salary and a comprehensive benefits package.

Requirements

5+ years of hands-on experience with Rapid7 InsightVM, and ability to prioritize vulnerabilities based on exploitability, business impact, and criticality
5+ years of experience setting up remediation projects, running advanced queries, exporting data in Rapid7, and performing analysis in Excel using pivot-tables
5+ years of experience using CrowdStrike Falcon during incident response to identify malicious processes, lateral movement, and behavioural indicators across compromised endpoints
5+ years of experience using Trellix EDR and ePO to investigate alerts, correlate threat events, and reconstruct attack timelines during incident response
5+ years of hands-on experience with IT Service Management software including ServiceNow (creating tickets, searching, updating, attaching files, researching SLA, creating child-parent ticket pairs)
5+ years of experience using Splunk Enterprise and Splunk ES to investigate security incidents by correlating logs, alerts, and behavioural anomalies across diverse data sources
5+ years of strong foundational understanding of general IT concepts, with hands-on familiarity across Windows, Unix, and Linux server environments, core networking principles, virtualization technologies such as VMware, and exposure to enterprise platforms including Oracle and IBM systems

Nice To Haves

Bachelor’s degree in a related field – preferred

Responsibilities

To ensure prompt identification and prioritization of IT/security service disruptions and alerts arising during the DSS Data Center migration from Brooklyn to a hybrid Cloud and NJ DR facility.
Analyze infrastructure Vulnerability service tickets related to the migration project for all new hardware / environments and locations.
Maintain proactive communication with stakeholders including ITS, OTI, DSS Legal Affairs, and NYC Cyber Command.
Coordinate across legacy, cloud, and DR environments, leveraging knowledge of SIEM (Splunk), EDR (CrowdStrike), and endpoint policy management (Trellix).
POC for all infrastructure Vulnerability findings found for all locations and environments for the D/C move.
Coordinate vulnerability remediation for new infrastructure and environments as part of D/C move.
Create remediation workflows affecting systems and environments related to the DC implementation.
Maintain structured management and communication for vulnerabilities related to the DC implementation.
Document resolutions and practices for institutional knowledge and audit.