The Department of Social Services (DSS) is comprised of the administrative units of the New York City Human Resources Administration (HRA) and the Department of Homeless Services (DHS).
HRA is dedicated to fighting poverty and income inequality by providing New Yorkers in need with essential benefits such as Food Assistance and Emergency Rental Assistance.
DHS is committed to preventing and addressing homelessness in New York City by employing a variety of innovative strategies to help families and individuals successfully exit shelter and return to self-sufficiency as quickly as possible.
Information Technology Services (ITS) is DSS’s technology services organization. ITS mission is to support the daily, emergent, and long-term needs of both agencies.
ITS creates and enhances the technology infrastructure and computer applications that support HRA and DHS and develops applications, including a variety of client eligibility and recertification systems, case management systems, housing systems, employment / work engagement services, revenue producing computer matches, claiming systems, and personnel systems.
Information Technology Services (ITS) is recruiting for one Senior IT Architect, to function as a Senior Information Security Architect, who will :
Develop and maintain IT architecture diagrams of the security architecture for IT solutions, applying the
latest security concepts and strategies to meet the security requirements of the Agency and City.
Define and maintain the security risk management and mitigation methodology, principles, roadmap,
standards and guidelines for the IT architecture team, for security resilience implementation, reuse,
interoperability and integration.
Confirm the conformance of applications, components, and services to established City and Agency
cybersecurity standards. Ensure. compliance with architecture security standards and guidelines
throughout the application development lifecycle.
Assist with major internally developed projects, to ensure security is properly considered, and in the
selection of new software products, to assess and analyze their compliance with security mandates
and best practices. This includes ensuring that continued security monitoring is implemented and
performed after the deployment of internally developed or procured software products, documenting
software security accreditation and training personnel on the latest cybersecurity best practices.
Identify probable system security problems or security design flaws, by analyzing architecture designs
and performing security vulnerability testing, and escalates issues to the CIO before serious security
breaches occur.
Hours / Shift :
Normal Business Hours
Minimum Qualifications
1. A baccalaureate degree from an accredited college in computer science, information systems, engineering, mathematics or related field and six years of satisfactory full-time experience related to enterprise architecture, solutions architecture, network architecture and / or IT infrastructure systems; or
2. A baccalaureate degree from an accredited college and ten years of satisfactory full-time experience related to enterprise architecture, solutions architecture, network architecture and / or IT infrastructure systems; or
3. Education and / or experience which is equivalent to "1" or "2" above.
Preferred Skills
- Experience in the field of information security with a demonstrated path of increasing scope and management responsibilities.
- Excellent interpersonal, leadership, presentation, and collaborative skills to work effectively with teams throughout the organization.
- Relevant security certification CISSP, CISM, GCP. - Cloud security certifications (AWS, Azure, Google). - Expertise in security frameworks such as ISO , NIST -53, NIST Cybersecurity Framework.
- Experience implementing security solutions and processes Identity and Access Management, Multi-Factor Authentication, Web Application Firewall, EndPoint solutions, Web Application Assessment securing cloud computing architecture including Infrastructure as a Service (IaaS), Platform as a Service (PaaS), and Software as a Service (SaaS) developing Zero Trust Architecture including Secure Access Service Edge (SASE) design principles.
- Experience with modern development processes and architecture including containerized delivery models. - Experience in government desired.
Residency Requirement
New York City Residency is not required for this position
Senior Information Security Architect - Google Cloud
A New York-based healthcare network is currently seeking a new Senior Google Cloud Information Security Architect to join their growing 5 person Security Architecture team. In this role, the Senior Google Cloud Information Security Architect will be responsible for implementing Google Cloud - both C...
Senior Information System Security Officer
Key Responsibilities:Collaborate with multiple stakeholders to arrive at the best solutionsRely on extensive experience and judgment to plan and accomplish goalsSupport, monitor, test, and troubleshoot hardware and software IA problemsRequired Qualifications:US Citizenship and ability to pass an ext...
Senior Information Security Analyst
This is a full-time position for a Senior Information Security Analyst (“Security Analyst”) within the. Information Security team that participates in all aspects of information security. Technology Solutions is currently seeking a Senior Information Security Analyst with a passion for the IT area. ...
Senior Manager, Information Security Office (ISO) Consultant
Coordinate and execute proactive Information Security consulting to the business and technology teams covering Infrastructure Security, Resiliency, Data Security, Network Architecture and Design, and User Access Management. Senior Manager, Information Security Office (ISO) Consultant. The Senior Man...
Director, Senior Cloud Security Architect
Minimum ten years of recent experience with at least three of the following: Security Architecture, threat modelling experience, identity management and authentication, software development, cryptography, penetration testing, cloud security, mobile security, and network security. KPMG is currently s...
AVP, Senior Information Security Analyst
Provide security services in identifying, assessing, managing, and tracking remediation of information security risks related to IT infrastructure, applications, platforms and suppliers and drive explicit requirements and timelines in all environments. Assist with increasing the maturity of the Info...
Information Security Prnc Architect -Technical Services Management
What you will do Create high-level conceptual and logical security architecture plans, roadmaps and designs for the security technology portfolio Consult, advise or oversee the secure design of key IT system and infrastructure projects to ensure alignment with enterprise security architecture Provid...
Principal Information Security Architect - Enterprise Technology
The Principal Information Security Architect – Enterprise Technology serves as the most senior security architect and advanced technology analyst in the company. Collaborate with key internal and external partners such as security, developers, development managers, product and program management and...
Senior Specialist, Information Security DevSecOps
The Office of Information Security provides the strategy and implementation of the information security program that safeguards the data entrusted to Planned Parenthood by its patients, supporters, donors and staff. This job reports directly to the Director, DevSecOps Architecture & Engineering in t...
Senior Security Architect II
Expertise in multiple of the following domains: Game Security, User-Generated Experience, Game Modding, Anti-Cheat, Mobile Architecture, Networking, OS Internals, Cloud Architecture, Web Frameworks, Identity and Access Management, DevSecOps, Cryptography. You will lead complex design assessments on ...