Brooklyn, NY
12 months
Posted on: 06/21/22
Job Description:
- Ensure security policies such as CJIS are in compliance throughout the design and build phase.
- Engage in working session with the ESINET, GIS and L&R vendors on detail designs and provide input to their proposed solutions.
- Provide Next Gen firewall architecture designs, configurations.
- Provide expert Information Security firewall architecture vision, leadership, analytical guidance/process and security controls.
- Implement cutting edge enterprise security solutions such as NGFW infrastructure; DNS/DNSSEC; enterprise MFA and NGFW infrastructure; and Data Loss Prevention (DLP) technology.
- Manage the internal Security Solutioning & BOM process from Intake to implementation.
- Evaluate the overall solution to ensure it is CJIS compliance.
- Research, evaluate, test, recommend the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment.
- Provide technical and expertise guidance for the deployment of security tools.
Requirements:
Required Skills
- At least 12 years of IT security experience of which a minimum of three years must be in a senior position.
- Determining and implementing cybersecurity and privacy principles to organizational requirements.
- Strong background in documenting and assessing NIST 800-53 and CJIS controls.
- Experience developing incident response process and procedures with internal and external stakeholders.
- Knowledge of processes for seizing and preserving digital evidence.
- Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
- Knowledge of system and application security threats and vulnerabilities.
- BS/BA undergraduate degree.
Desired Skills
- Experience building defensible security architectures for operational technology with a focus in cloud security best practices
- Experience with defining, establishing and directing techniques for detecting host and network-based intrusions using intrusion detection technologies
- Writing business/process documentation, developing models and graphics and making oral presentations to senior officials
- Overseeing and interfacing directly with agency and interagency leaders during cyber incidents.
- Assessing and providing strategic direction for resolution of mission-critical problems, policies, and procedures.
- Knowledge of NIST’s Cybersecurity Framework (CSF) with a focus on response and recover control families.
- Experience developing disaster recovery and continuity of operations policies, plans, and procedures.
- Strong understanding of vulnerability scanning solutions, and the ability to clearly document the associated risks and remediation timelines.
- Knowledge of malware with virtual machine detection.
- Knowledge of anti-forensics tactics, techniques, and procedures.
- Knowledge of legal governance related to admissibility (e.g. Rules of Evidence).
- Knowledge of types of digital forensics data and how to recognize them.
- Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
- Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code)
- Knowledge of malware analysis tools (e.g., Oily Debug, Ida Pro).
- Knowledge of DDoS appliances such as NetScout Arbor, Fortinet FortiGate.
- Knowledge of Insider Threat investigations, reporting, investigative tools and laws/regulations
- Valid CISSP Certification