Manager Information Technology Services 2 Information Security - 9860
NYS Office of Information Technology Services, New York, NY, United States
Duties Description
Under the direction of senior leadership within the Office of Information Technology Services Chief Information Security Office Cyber Command Center, the incumbent will lead a team responsible for the ingestion and response to all forms of threat intelligence and vulnerability announcements received from many third parties such as vendors, DHS CISA, MS-ISAC, NYSP, and other open-source intelligence sources. The incumbent will synthesize threat data from various sources and correlate it to produce targeted threat intelligence.
The incumbent will perform threat hunting against threat actors in a multi-cloud/multi-OS environment, prototype detection logic based on the hunts, and emulate adversary behavior to assess the efficacy of security controls.
This position requires solid understanding of the current cyber threat landscape, tactics, techniques, tools, and procedures commonly leveraged, and the ability to swiftly identify and contain potential threats. It requires a high degree of independence and alignment with agency strategic direction. Availability during off-shift hours is required to respond to security incidents or critical activities as needed.
Specific Duties Include, But Are Not Limited To
Direct and oversee the threat intelligence program and staff for NYSOC.
Provide actionable threat intelligence to drive detection coverage.
Research, analyze, and correlate IOC, IOA, warning data sets.
Conduct threat hunting across multi-OS/multi-cloud environments and identify tactics, techniques, and procedures (TTPs).
Prototype detection engineering and support red team/adversary emulation to assess control efficacy.
Translate repeatable hunts into alerts with the detection engineering team.
Coordinate remediation plans with incident detection, response, and other teams.
Investigate, respond to, and remediate cases escalated by threat analysts.
Recommend modifications based on testing results or system environment changes.
Analyze malicious activity to determine exploited vulnerabilities, exploitation methods, and system data impact.
Identify new use cases and playbooks for incident review-driven development.
Document and elevate incidents using information from multiple sources.
Create daily, monthly, yearly intelligence outputs to support NYSOC business needs.
Produce technical reports and executive summaries of cyber security incidents and events.
Generate vulnerability notifications and threat intelligence working with vendors and stakeholders.
Guide active projects to resolve issues and ensure successful outcomes.
Tune detection performance across tools such as firewalls, IDS/IPS, EDR, sandbox, antivirus, and SIEM to improve alert quality.
Supervise subordinate staff and perform administrative supervisory responsibilities.
Qualifications
Minimum Qualifications
Manager Information Technology Services 2 (Information Security).
Eight years of information technology, cybersecurity, or information assurance experience, including two years at the supervisory level.
Bachelor’s degree in any field (15 semester credit hours in computer science or related field substitutes for three years of required experience). A bachelor’s substitutes for two years of required experience.
Associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience.
Master’s degree or higher in computer science or related field substitutes for one year of required experience.
Benefits
Holiday & Paid Time Off
13 paid holidays annually.
Up to 13 days of paid vacation leave annually.
Up to 5 days of paid personal leave annually.
Up to 13 days of paid sick leave annually for PEF.
Up to 3 days of professional leave annually for professional development.
Health Care Benefits
Variety of affordable health insurance programs for eligible employees and dependents.
Family dental and vision benefits at no additional cost.
Additional Benefits
New York State Employees’ Retirement System (ERS) Membership.
NYS Deferred Compensation.
Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds.
Public Service Loan Forgiveness (PSLF).
And many more.
The Office of Information Technology Services is an equal opportunity employer. We encourage all individuals with disabilities to apply.
Some positions may require fingerprinting, up to 25% travel, lifting up to 50 lbs, and/or be pending Civil Service approval.
#J-18808-Ljbffr
Under the direction of senior leadership within the Office of Information Technology Services Chief Information Security Office Cyber Command Center, the incumbent will lead a team responsible for the ingestion and response to all forms of threat intelligence and vulnerability announcements received from many third parties such as vendors, DHS CISA, MS-ISAC, NYSP, and other open-source intelligence sources. The incumbent will synthesize threat data from various sources and correlate it to produce targeted threat intelligence.
The incumbent will perform threat hunting against threat actors in a multi-cloud/multi-OS environment, prototype detection logic based on the hunts, and emulate adversary behavior to assess the efficacy of security controls.
This position requires solid understanding of the current cyber threat landscape, tactics, techniques, tools, and procedures commonly leveraged, and the ability to swiftly identify and contain potential threats. It requires a high degree of independence and alignment with agency strategic direction. Availability during off-shift hours is required to respond to security incidents or critical activities as needed.
Specific Duties Include, But Are Not Limited To
Direct and oversee the threat intelligence program and staff for NYSOC.
Provide actionable threat intelligence to drive detection coverage.
Research, analyze, and correlate IOC, IOA, warning data sets.
Conduct threat hunting across multi-OS/multi-cloud environments and identify tactics, techniques, and procedures (TTPs).
Prototype detection engineering and support red team/adversary emulation to assess control efficacy.
Translate repeatable hunts into alerts with the detection engineering team.
Coordinate remediation plans with incident detection, response, and other teams.
Investigate, respond to, and remediate cases escalated by threat analysts.
Recommend modifications based on testing results or system environment changes.
Analyze malicious activity to determine exploited vulnerabilities, exploitation methods, and system data impact.
Identify new use cases and playbooks for incident review-driven development.
Document and elevate incidents using information from multiple sources.
Create daily, monthly, yearly intelligence outputs to support NYSOC business needs.
Produce technical reports and executive summaries of cyber security incidents and events.
Generate vulnerability notifications and threat intelligence working with vendors and stakeholders.
Guide active projects to resolve issues and ensure successful outcomes.
Tune detection performance across tools such as firewalls, IDS/IPS, EDR, sandbox, antivirus, and SIEM to improve alert quality.
Supervise subordinate staff and perform administrative supervisory responsibilities.
Qualifications
Minimum Qualifications
Manager Information Technology Services 2 (Information Security).
Eight years of information technology, cybersecurity, or information assurance experience, including two years at the supervisory level.
Bachelor’s degree in any field (15 semester credit hours in computer science or related field substitutes for three years of required experience). A bachelor’s substitutes for two years of required experience.
Associate degree with 15 semester credit hours in computer science or related field may substitute for one year of required experience.
Master’s degree or higher in computer science or related field substitutes for one year of required experience.
Benefits
Holiday & Paid Time Off
13 paid holidays annually.
Up to 13 days of paid vacation leave annually.
Up to 5 days of paid personal leave annually.
Up to 13 days of paid sick leave annually for PEF.
Up to 3 days of professional leave annually for professional development.
Health Care Benefits
Variety of affordable health insurance programs for eligible employees and dependents.
Family dental and vision benefits at no additional cost.
Additional Benefits
New York State Employees’ Retirement System (ERS) Membership.
NYS Deferred Compensation.
Access to NY 529 and NY ABLE College Savings Programs, as well as U.S. Savings Bonds.
Public Service Loan Forgiveness (PSLF).
And many more.
The Office of Information Technology Services is an equal opportunity employer. We encourage all individuals with disabilities to apply.
Some positions may require fingerprinting, up to 25% travel, lifting up to 50 lbs, and/or be pending Civil Service approval.
#J-18808-Ljbffr