Please contact your Administrator to change your authorization settings.
The New York City Department of Investigation (DOI) is one of the oldest law enforcement agencies in the country with a mission of combating municipal corruption. It serves the people of New York City by acting as an independent and nonpartisan watchdog for New York City government, City agencies, and City employees, vendors with City contracts, individuals and entities that receive City funds.
The Information Technology Unit of the NYC Department of Investigation is currently seeking a highly skilled and motivated Data Security Engineer to join our team and play a pivotal role in safeguarding our organization against cyber threats as well as our agency's sensitive data, including data stored within databases. Your responsibilities encompass the design, implementation, and maintenance of security measures to protect data at rest and in transit. You will work collaboratively with cross-functional teams to ensure data security best practices, compliance, and the implementation of Data Loss Prevention (DLP) measures. If you're passionate about defending against cyber threats and want to be part of a dynamic and innovative agency, we want to hear from you.
Key Responsibilities:
As a Data Security Engineer at DOI, your duties include but are not limited to:
-Design, implement, and maintain security measures for data and databases, including encryption, access controls, and authentication mechanisms.
-Classify data based on its sensitivity and ensure appropriate levels of protection.
-Establish and enforce data access controls, user permissions, and least privilege principles to limit access to authorized personnel.
- Secure and harden database configurations to minimize security vulnerabilities, ensuring compliance with industry standards.
-Implement and manage encryption technologies to protect data at rest and in transit.
-Configure and monitor database audit trails to track data access and changes.
-Ensure compliance with relevant data security regulations, such as HIPAA, NIST, and industry standards like ISO 2700 Series.
-Deploy and manage DLP solutions to prevent unauthorized data leakage and monitor data flows.
-Regularly scan and assess data and databases for vulnerabilities and prioritize remediation.
-Develop and practice an incident response plan for data and database-related security incidents.
-Maintain accurate documentation of data classifications, database configurations, security policies, and incident response procedures.
-Provide training and guidance to data users and database administrators on security best practices, compliance requirements, and DLP policies.
-Conduct regular security audits and assessments of data and databases to identify and rectify security issues.
-Implement robust data backup and recovery procedures to safeguard data and enable rapid restoration in case of data loss.
-Stay updated on the latest data and database security threats, vulnerabilities, and DLP best practices and adapt security measures accordingly
(1) A baccalaureate degree from an accredited college, including or supplemented by twenty-four (24) semester credits in computer science or a related computer field and two (2) years of satisfactory full-time software experience in designing, programming, debugging, maintaining, implementing, and enhancing computer software applications, systems programming, systems analysis and design, data communication software, or database design and programming, including one year in a project leader capacity or as a major contributor on a complex project; or
(2) A four-year high school diploma or its educational equivalent and six (6) years of full-time satisfactory software experience as described in "1" above, including one year in a project leader capacity or as a major contributor on a complex project; or
(3) A satisfactory combination of education and experience that is equivalent to (1) or (2) above. College education may be substituted for up to two years of the required experience in (2) above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. A masters degree in computer science or a related computer field may be substituted for one year of the required experience in (1) or (2) above. However, all candidates must have a four year high school diploma or its educational equivalent, plus at least one (1) year of satisfactory full-time software experience in a project leader capacity or as a major contributor on a complex project.
NOTE: In order to have your experience accepted as Project Leader or Major Contributor experience, you must explain in detail how your experience qualifies you as a project leader or as a major contributor. Experience in computer operations, technical support, quality assurance (QA), hardware installation, help desk, or as an end user will not be accepted for meeting the minimum qualification
requirements.
Special Note
To be eligible for placement in Assignment Level IV, in addition to the Qualification Requirements stated above, individuals must have one year of satisfactory experience in a project leader capacity or as a major contributor on a complex project in data administration, database management systems, operating systems, data communications systems, capacity planning, and/or on-line applications programming.
-Proven experience in data and database security roles, including database administration. -Strong knowledge of data and database security principles, encryption techniques, access controls, auditing, and DLP solutions. -Familiarity with various database management systems (e.g., Oracle, MySQL, SQL Server). -Excellent analytical and problem-solving skills. -Effective communication and collaboration abilities. -A commitment to staying up-to-date with evolving data and database security trends, DLP technologies, and best practices. -Proficiency in computer systems, networks, operating systems, and a deep understanding of cybersecurity tools and technologies. -Capability to design and implement security architectures aligned with business goals and industry best practices, including network segmentation and defense-in-depth strategies. -Knowledge of emerging threats and the ability to adapt security measures accordingly, including the analysis of threat intelligence feeds. -Proficiency in leading and coordinating incident response efforts effectively, including incident planning and execution. -Expertise in assessing, prioritizing, and managing security risks using risk assessment methodologies. -Understanding of secure coding principles and collaboration with developers to ensure application security. -Proficiency in encryption techniques for data at rest and in transit, along with knowledge of data loss prevention (DLP) strategies. -Familiarity with cloud security best practices and the ability to secure cloud environments (e.g., AWS, Azure, Google Cloud). -Knowledge of security standards, compliance frameworks (e.g., NIST, ISO 27001), and relevant regulations (e.g., GDPR, HIPAA). -Excellent communication and leadership skills for collaborating with cross-functional teams, providing security guidance, and maintaining documentation. -Hands on core Java, J2EE JSP, Servlets, HTML, Html5, Javascript, Struts/Spring Framework, XML is required -Agile Process knowledge is mandatory and should have applied it in one of the customer engagement. -Technical/business analysis experience (includes documentation of technical design, end-user requirements, designing and writing use cases, component design descriptions and process flow diagrams) Additional Skills -Security+, CySA+ , CCSP, SSCP, CCNA Certifications are a plus. -Expertise in working on Linux Server, Windows Server and Windows 10/11 OS including command-line functions and occasional registry editing. -Experience with MS Office 2019 and Office 365. Experience with Remote Desktop. -Hands-on experience with removing viruses and spyware using various tools valued. -Experience with Web-based applications support is strongly preferred.
This position is also open to qualified persons with a disability who are eligible for the 55-a Program. Please indicate at the top of your resume and cover letter that you would like to be considered for the position through the 55-a Program.
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education's website at https://studentaid.gov/pslf/.
New York City Residency is not required for this position
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.