Team Lead/Principal Security Engineer, Cyber Incident Response Team
US-NY-Brooklyn
Job ID: 2022-10012 Type: NYU IT (WS1170) # of Openings: 1 Category: Technology New York University
Overview
Reporting to the Director, Cybersecurity Detect, Response, and Forensics in the Global Office of Information Security (GOIS), the Team Lead/Principal Security Engineer leads a team of information security professionals through activities relating to monitoring, detecting and responding to cyber security events. In addition, the Team Lead is responsible for the development and oversight of the NYU cyber security incident response plan to ensure team members are effectively led. This role maintains operational efficiencies throughout the entire process/life cycle from the initial cyber security event, through the analysis of the incident, and the determination of a potential breach/impact. As the NYU technical hands-on leader for the Cyber Incident Response Team, this role works with multiple technical platforms, interfaces with other teams within NYU IT, GOIS, and in schools, campuses, business units and/or any external partner(s) including managed service partners. This role is a key resource for protecting NYU's information assets, brand, and reputation from a cyber security breach/event while managing the overall detection-response-forensics process.
Responsibilities
Required Education: Bachelor's Degree in Information Security, Information Assurance, or related field, i.e. Electrical Engineering, or Computer Science
Preferred Education: Master's Degree in Information Security or Cybersecurity or in a related field i.e. Electrical Engineering or Computer Science
Required Experience: 5+ years of experience in Information Security and 3+ years of experience working collaboratively on teams and leading others in a security operations function to monitor, detect, respond to cyber attacks and 3+ years of experience driving measurable improvements in monitoring; experience managing security information and event management (SIEM) systems, threat intelligence platforms, security automation and orchestration solutions, intrusion detection and prevention systems (IDS/IPS), file integrity monitoring (FIM), data loss prevention (DLP) and other network and system monitoring tools; experience in investigations using formal chain-of-custody methods, forensic tools and best practices.
Preferred Experience: 7+ years of experience in Information Technology
Required Skills, Knowledge and Abilities: Certifications: CISSP (ISC2's- Certified Information System Security Professional) or CISM (ISACA's - Certified Information Security Manager) or any GIAC certification such as GCIH - GIAC Certified Information Handle Technical competence managing team members. Familiarity with recent threats and adversarial tactics and techniques, as well as the ability to quickly understand complex environments. interface with other business units and develop analysts. Ability to communicate technical information to a non-technical audience. Excellent project management, planning, and analytical skills. Intermediate to advanced knowledge of a subset of the following: data communications, standard programming and scripting languages (C, C++, Perl, Python), network security, modern workstation-based operating systems (Windows, Unix, Mac). Knowledge of a variety of current and emerging technologies. Track record of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating effectively. Excellence in communicating business risk due to cybersecurity issue.
Qualifications
NYU aims to be among the greenest urban campuses in the country and carbon neutral by 2040. Learn more at nyu.edu/nyugreen.
EOE/AA/Minorities/Females/Vet/Disabled/Sexual Orientation/Gender Identity PI175586492 |