Vacancy expired!
- Understand the technical details of vulnerabilities, explain details to technical and nontechnical audience, and describe how it impacts Client.
- Recommend compensating and mitigating controls and triage zero day and known vulnerabilities to contain the impact of exploitation of those vulnerabilities.
- Keep up to date with current threat landscape, emerging attack vectors, and vulnerability trends.
- Consolidate vulnerabilities from multiple sources, e.g., vendors, the Cybersecurity and Infrastructure Security Agency (CISA), security researchers, security tools, New York City Cyber Command (NYC3), etc.
- Prioritize the vulnerabilities and identify the impacted systems.
- Understand the FDNY technologies, architecture, team structures, and culture.
- Support Client with the coordination of vulnerability remediation activities.
- Provide vulnerability tracking and management.
- Perform validation testing of patched systems and applications.
- Provide guidance on threat and vulnerability management best practices and share knowledge with client staff.
- Interface with and respond to NYC3 regarding vulnerability and threat research, remediation efforts, and reporting.
- Perform due diligence on vulnerability remediation requests from NYC3, e.g., if the vulnerability impacts client systems, severity changes, active exploitation etc.
- Utilize solutions/tools used at FDNY, such as, but not limited to Armis, Splunk, Secureworks, Tenable, and Rapid 7 to discover vulnerabilities (including scans, setup alerts, etc.), and track and validate remediation.
- Track the status of all vulnerability remediation activities in the FDNY ServiceNow and SharePoint systems.
- Develop and share skills necessary to create correlation searches in Splunk, in accordance with client priorities.
- Work closely with client unit staff to develop correlation searches to match the severity and granularity needed to be effective.
- Provide assistance and expertise for reviewing and interpreting the results of the regular internal and external vulnerability scans.
- Provide assistance to improve the monitoring and analyzing of data from security systems (such as intrusion detection system [IDS/IPS] logs) to determine if there are any patterns indicating a compromised system(s).
- Facilitate the development of working relationships with NYC3 and other NYC intel and cybersecurity organizations.
- A minimum of a bachelor’s degree.
- At least 4 years of satisfactory full-time related experience.
- At least 4 years of experience in Cybersecurity, including vulnerability assessments, penetration testing, security assessments, strategy and program development, network architecture designs, or monitoring solutions;
- Ability to analyze cybersecurity documentation, including security policies, plans, and procedures;
- Experience with cybersecurity standards and best practices and how to integrate them;
- Strong background with next generation firewall products, intrusion detection systems, DMZ, IPSec, DNS, SMTP, HTTP proxies, etc;
- Knowledge of security best practices across multiple platforms, such as Microsoft Windows, VMWare, Cisco IOS, and Mobile OS Android/Apple IOS;
- Knowledge of public-key cryptography, understanding of encoding, encryption, and hashing techniques;
- Knowledge of security best practices: NIST, CIS, Cisco, Juniper, Palo Alto, Fortinet, Checkpoint, Microsoft, Unix/Linux, etc;
- Experience with evaluating security vulnerabilities, developing mitigation strategies, and implementing remediation;
- Work with vendors, carriers and other technical groups to implement new designs and optimize the network.
- Strong understanding of network protocols (EIGRP, OSPF, BGP, etc)
- Understanding of campus and datacenter switching using Cisco and Arista.
- Ability to implement VxRail into a network environment
- Knowledge of deploying and maintaining Next Generation Firewalls including Cisco, Palo alto, Fortinet, Forcepoint, etc.
- Capable of deploying and supporting Cisco DNA
- Understanding of software defined networking technologies for datacenters such as Cisco ACI or Arista Cloudvision
- Strong background in F5 load balancing
- Ability to migrate services between datacenters
- Understanding of the various VPN technologies
- Familiarity with Infoblox to maintain public facing DNS services as well as IPAM
- Design and maintenance of wireless environment including controllers and APs.
- Knowledge of IPS/IDS design as standalone hardware or as a feature within firewalls
- Strong knowledge of network management tools to facilitate troubleshooting, i.e., Wireshark, Netbrain, Extrahop, etc.
- Ability to implement, manage and administer Cisco ISE
Vacancy expired!