Information Security Engineer

Job Title: Information Security Engineer

Location: NYC NY

Duration: Contract

Primary Responsibilities and Minimum and Preferred Qualifications

Skills to be successful:

1. Strong knowledge of cybersecurity principles tools and best practices
2. Excellent analytical problem-solving and communication skills
3. Ability to work independently and collaboratively across teams
4. Ability to manage multiple responsibilities and security priorities simultaneously
5. Experience supporting security operations in enterprise or public-sector environments (preferred)

Certifications and Qualifications needed:

1. 4 7 years of experience in information security or a related IT discipline
2. Bachelors degree in Information Security Computer Science or a related field
3. One or more security certifications such as CISSP CISM CEH Security or equivalent
4. Cloud security certifications (e.g. Azure Security Engineer AWS Security Specialty)

IT Systems Used:

1. Security monitoring and SIEM tools (e.g. Splunk Sentinel or equivalent)
2. Identity and Access Management platforms (e.g. Active Directory Azure AD)
3. Cloud platforms (Azure AWS)
4. Vulnerability scanning and endpoint security tools
5. Microsoft Office Suite

   Primary Responsibilities and Minimum and Preferred Qualifications

   Skills to be successful:

6. Strong knowledge of cybersecurity principles tools and best practices
7. Excellent analytical problem-solving and communication skills
8. Ability to work independently and collaboratively across teams
9. Ability to manage multiple responsibilities and security priorities simultaneously
10. Experience supporting security operations in enterprise or public-sector environments (preferred)

11. Certifications and Qualifications needed:

12. 4 7 years of experience in information security or a related IT discipline
13. Bachelors degree in Information Security Computer Science or a related field
14. One or more security certifications such as CISSP CISM CEH Security or equivalent
15. Cloud security certifications (e.g. Azure Security Engineer AWS Security Specialty)

16. IT Systems Used:

17. Security monitoring and SIEM tools (e.g. Splunk Sentinel or equivalent)
18. Identity and Access Management platforms (e.g. Active Directory Azure AD)
19. Cloud platforms (Azure AWS)
20. Vulnerability scanning and endpoint security tools
21. Microsoft Office Suite

Leadership / Interpersonal Relations / Judgement

1. Collaborates effectively with IT teams application owners and business stakeholders to integrate security into system design and operations.
2. Provides guidance and technical expertise to junior staff or team members when appropriate.
3. Exercises sound judgment when evaluating security risks incidents and remediation options.
4. Demonstrates professionalism discretion and strong interpersonal skills in handling sensitive and confidential information.

Communication Skills & External Relations

1. Produces clear concise security documentation reports and risk assessments that require minimal revision.
2. Communicates technical security concepts and risks effectively to both technical and non-technical audiences.
3. Coordinates with external vendors auditors and partners during security assessments audits or incident response activities.

Tasks include:

1. Monitor analyze and respond to security events and incidents
2. Conduct vulnerability assessments and support remediation efforts
3. Implement and maintain security controls across applications systems and cloud environments
4. Support identity and access management processes and security reviews
5. Develop and maintain security documentation standards and procedures
6. Assist with compliance audits risk assessments and reporting activities
7. Perform other duties as assigned to support NYSERDAs information security and IT operations