Search jobs > Albany, NY > Permanent > Information system security

Information Systems Security Engineer

NYSTEC
Albany, NY, United States
$79.8K-$109.7K a year
Full-time

About Us :

NYSTEC is a nonprofit technology consulting company, advising agencies, organizations, institutions, and businesses since 1996.

We're independent and vendor-neutral, so we have our clients' best interests at heart. At NYSTEC, we know that we succeed when individuals and teams flourish personally and professionally, so our benefits and perks support that mindset.

About the Role :

The information systems security engineer assists the deputy chief information security officer (CISO) with the development and support of NYSTEC's information security initiatives.

This position will interface with staff and management across all levels of NYSTEC, as well as with external business partners, to ensure that NYSTEC's critical business functions and systems are secure and in accordance with best practices.

The information systems security engineer will execute all information security functions for the company to mitigate risk and to balance enhanced capacity and productivity.

Key Responsibilities

  • Ensure security configuration compliance on requirements, including but not limited to Health Insurance Portability and Accountability Act / Health Information Trust Alliance (HIPAA / HiTrust), National Institute of Standards and Technology (NIST) Cybersecurity Framework, and state and federal regulations.
  • Administer security toolsets and assist external security vendors and the NYSTEC technical systems team (Service Delivery and Internal Services) in defining the scope of internal and external vulnerability scans and penetration tests.
  • Develop and deliver security awareness training for the organization.
  • Lead the creation and review of enterprise security documents, policies, standards, guidelines, and procedures.
  • Ensure the confidentiality, integrity, and availability of the data residing on or transmitted through the organization's systems, applications, databases, and any other data repositories.
  • Collaborate with the technical services team and cross-functional departments to remediate security risks.
  • Provide recommendations for additional security solutions or enhancements to improve the overall security and "defense-in-depth" strategy.
  • Assist in the deployment, integration, and initial configuration of all new security solutions - and any enhancements to security solutions - in accordance with established best practices and standards.
  • Research, develop, implement, test, and review the organization's information security to protect information and to prevent unauthorized access.

To be considered for this role, candidates must be permanent residents of the state of New York. There will be some onsite work required.

About you : Required Qualifications

  • Proficient in Windows operating environment using Microsoft Office applications, email, and internet programs.
  • Experienced information security professional skilled in developing, documenting, and driving the adoption of information security standards and procedures.
  • Strong background with firewall products, intrusion detection systems, demilitarized zone (DMZ), Internet Protocol Security (IPSec), Domain Name System (DNS), Simple Mail Transfer Protocol (SMTP), Hypertext Transfer Protocol (HTTP) proxies, etc.
  • Willing to maintain up-to-date knowledge of the information technology (IT) security industry, including awareness of new or revised security solutions, improved security processes, and the development of new attacks or threat outbreaks.

This should include the continuation of education and certifications to maintain compliance with regulatory requirements and guidelines.

  • Good organizational skills to maintain documentation and to gather evidence for reporting and incident analysis.
  • Knowledge of security best practices across multiple platforms, such as Microsoft Windows, Microsoft Office365, and Azure.
  • Strong project management skills.
  • Strong written and verbal communication skills, time-management skills, and task prioritization skills.
  • Experienced in zero trust technologies, least privileges, network architectures, and segmentation.
  • Understands NYSTEC's mission, brand mindsets, and core values and can put the behaviors into practice.

Preferred / Desired Qualifications

Certified information systems security professional (CISSP) or similar certification in information security preferred.

Education and Experience

A bachelor's degree, preferably in cybersecurity or a similar discipline, and five years of experience with security management frameworks (e.

g., National Institute of Standards and Technology NIST , SysAdmin, Audit, and Network and Security SANS ). An equivalent combination of advanced education, training, and experience will be considered.

The pay range for this position is $79,793 to $109,716

It is NYSTEC's policy to provide equal employment opportunity (EEO) to all individuals, regardless of actual or perceived race, color, creed, religion, sex, or gender (including pregnancy, childbirth, and related medical conditions), gender identity or gender expression (including transgender status), age, national origin, ancestry, citizenship status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, military service and veteran status, sexual orientation, marital status, or any other characteristic protected by local, state, or federal laws and ordinances.

NYSTEC is strongly committed to this policy and believes in the concept and spirit of the law.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact recruitment@nystec.

com if you require a reasonable accommodation to apply for or to perform this job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

Applicants must be authorized to work in the United States without the need for visa sponsorship now or in the future.

Learn more about NYSTEC by visiting www.nystec.com.

1 day ago
Related jobs
Promoted
NYSTEC
Albany, New York

The information systems security engineer assists the deputy chief information security officer (CISO) with the development and support of NYSTEC's information security initiatives. The information systems security engineer will execute all information security functions for the company to mitigate ...

Promoted
Deloitte
Albany, New York

The Information System Security Engineer (ISSE) will be responsible for creating and maintaining RMF artifacts and shall implement security controls, patch vulnerabilities on network devices, and resolve system security engineering concerns to ensure cyber compliance and readiness for a Government F...

Appian
New York, US

Here at Appian, our core values of Respect, Work to Impact, Ambition, & Constructive Dissent & Resolution define who we are.In short, this means we constantly seek to understand the best for our customers, we go beyond completion in our work, we strive for excellence with intensity, & we embrace can...

Promoted
Deloitte
Albany, New York

The Information System Security Engineer (ISSE) will be responsible for creating and maintaining RMF artifacts and shall implement security controls, patch vulnerabilities on network devices, and resolve system security engineering concerns to ensure cyber compliance and readiness for a Government F...

Appian
New York, US

Here at Appian, our core values of Respect, Work to Impact, Ambition, & Constructive Dissent & Resolution define who we are.In short, this means we constantly seek to understand the best for our customers, we go beyond completion in our work, we strive for excellence with intensity, & we embrace can...

Promoted
North Colonie Central School District
Latham, New York

Oversee the Security Operations Center (SOC) and Security Information and Event Management (SIEM), ensuring the safety and security of the network and information. Network and Information Security Analyst plays a crucial role in the design, installation, configuration, monitoring, and maintenance of...

Promoted
Allied Universal®
Albany, New York

As a Security Officer, you will serve and safeguard clients in a range of industries such as Commercial Real Estate, Healthcare, Education, Government and more. Allied Universal®, North America’s leading security and facility services company, provides rewarding careers that give you a sen...

Promoted
The New York Independent System Operator
Rensselaer, New York

The Cyber Security Operations Center Analyst will perform a wide range of technical cybersecurity services with a focus on responding to cyber threats, intrusions, and incidents; Preventing or mitigating cyber threats and intrusions from adversely impacting the NYISO; Incorporating security operatio...

Promoted
Allied Universal
Albany, New York

Security Officer Corporate Office. As a Security Officer, you will serve and safeguard clients in a range of industries such as Commercial Real Estate, Healthcare, Education, Government and more. Allied Universal, North America's leading security and facility services company, provides rewarding car...

Promoted
Center for Internet Security, Inc.
East Greenbush, New York
Remote

Business Intelligence Analyst - Remote. The Business Intelligence Analyst is part of the Sales and Business Services department, which resides on the Sales Operations team and reports to the Director of Sales Operations. As the Business Intelligence Analyst, you will support the reporting and dashbo...