Senior IT Security Specialist

The New York Independent System Operator (NYISO) manages the efficient flow of electricity on more than 11,000 circuit-miles of high-voltage transmission lines, dispatching power from hundreds of generating units across the state.

The New York Independent System Operator (NYISO) applies cutting-edge technology to operating a reliable electricity system, managing competitive markets for wholesale electricity, and planning for the Empire State's energy future.  The NYISO’s Information Technology department invites applications for a full-time Senior IT Security Specialist.

The Senior IT Security Specialist provides a wide range of information security services to protect the confidentiality, integrity, and availability of NYISO information and technical environments and to support NYISO’s enterprise security goals and objectives. Responsibilities vary by function, and security operations, threat management, security incident response, security event monitoring and analysis, vulnerability management, engineering and operation of security tools and infrastructure, access, identity & account management, risk management, supply chain cyber risk management, information protection, development and maintenance of security policies, standards, and procedures, and the delivery of effective security awareness training. The Senior IT Security Specialist evaluates existing NYISO security measures, assesses the effectiveness of those measures, and recommends changes that will improve all aspects of NYISO security. The Senior IT Security Specialist is responsible for ensuring compliance with corporate and regulatory standards and plays a key role in ensuring the NYISO’s compliance with cyber risk frameworks and standards.

ESSENTIAL DUTIES and RESPONSIBILITIES

• Designs and manages technologies in support of the NYISO’s Security Operations function; responsible for cyber security architecture, design, system integration, installation, upgrades, and patching, monitoring, system integrity, security, disaster recovery, and performance; develops and maintains technology standards and procedures; leads or participates on project teams and collaborates with application developers and infrastructure peers as necessary; performs backup and restoration procedures; leads audit efforts and ensures compliance with corporate and regulatory standards; mentors and trains junior staff; provides expertise in strategic IT planning; establishes and maintains working relationships with IT partners, business customers, and vendors.
• Responsible for all parts of the system lifecycle of managed cyber security platforms. Establishes and documents a comprehensive set of expertise for a wide range of security technologies and processes including, but not limited to: Security Information and Event Management (SIEM); Threat Management Platform, Anti-malware prevention and analysis; vulnerability scanners; penetration testing; computer and network forensics tools and processes; secure application coding and scanning; and cyber security incident
• Architects, designs, and develops security automation to orchestrate security solutions (SOAR) to automate repetitive tasks, and mature monitoring and response
• Applies broad and deep security expertise to investigate activity, trends, and patterns in NYISO systems, ensuring the security, availability, and integrity of the NYISO’s information assets and technical environments, including energy management systems designated as national critical infrastructure. Will serve as a security thought leader in the
• Interacts frequently with peers from across the IT organization to develop solutions that ensure the security of IT infrastructure and business applications. Provides guidance on the configuration of security infrastructure to implement robust security measures & controls through technology solutions.
• Designs IT security architecture, and makes recommendations on infrastructure, including hardware, software, architecture, and systems management.
• Collaborates with the Security Operations team to ensure security technologies are configured properly to monitor, track, and analyze networks/systems for potential security violations while also assisting in all such potential cyber security
• Ensures the delivery of all assigned projects, both by representing Enterprise Security on business projects, as well as serving as the lead on Enterprise Security initiatives within area of specialty. May perform additional project duties such as requirements development, project management, and quality
• Participates as a key member of Cyber Security Incident Response Team by providing subject matter expertise to more junior staff on security concepts and
• Oversees the collection of metrics and key performance indicators that measure Enterprise Security’s effectiveness, as well as the development of reports and dashboards that communicate security readiness to business leaders.

QUALIFICATIONS:

• Bachelor's Degree (BS) in Information Security, Computer Science, Computer Information Systems, or similar fields. Master’s Degree (MS, MBA) preferred.
• At least seven years of experience in progressively responsible information technology and/or IT security positions is required, along with an in-depth understanding of information security best practices, and expertise with related security technologies and tools. This position also requires a broad and deep expertise in different information security technologies, as well as a conceptual knowledge of system development lifecycles, code and application vulnerabilities, and ability to identify solutions to challenging technical problems. Experience with complex IT infrastructure systems is preferred. Experience in the energy sector is desirable.
• Knowledge of various security methodologies and processes, and technical security solutions (firewall, intrusion detection systems, and Security Information and Event Management (SIEM) platforms, Threat Intelligence Platforms, Vulnerability Scanning, Security Orchestration and Response ).
• Experience working with various event logging systems and be proficient with security event log analysis. Previous experience with Security Information and Event Monitoring (SIEM) platforms that perform log collection, analysis, correlation, and alerting is also
• Experience in analyzing net flow data and packet capture (PCAP).

CERTIFICATES, LICENSES, REGISTRATIONS

• GIAC, CISA, CEH, CFE, CISSP, or similar certification preferred.
• Knowledge of NIST Special Publication 800 Series is preferred.

ADDITIONAL REQUIREMENTS

• Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures, and governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to write presentations and articles for publication that conform to prescribed style and format. Ability to effectively communicate security and risk-related concepts to technical and nontechnical
• Ability to add, subtract, multiply and divide in all units of measure, using whole numbers, common fractions and decimals. Ability to compute rate, ratio and percent and to draw and interpret bar graphs.
• Ability to define problems, collect data, establish facts and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete
• Proficient with personal computers running the Windows operating system; experience with productivity software such as Microsoft Office applications, e-mail, and Internet

PHYSICAL DEMANDS

While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand, walk, sit and use hands to perform routine office tasks. The employee is occasionally required to reach with hands and arms. The employee must occasionally lift and/or move up to 15 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

WORK ENVIRONMENT

The noise level in the work environment is usually moderate. Contact with staff and public will occur. Travel may be required to attend and/or conduct meetings, conferences and training. This position may require work on nights, weekends or holidays.

The NYISO takes pride in recruiting, developing and retaining highly talented individuals. In addition to competitive salaries, we offer a comprehensive benefits package and innovative reward programs.

At the NYISO, we realize the importance of balancing the availability of remote work with the inherent value of bringing people together to attain success in the areas of maximum collaboration, relationship building and growth, teamwork, innovation and problem solving, as well as professional development and mentoring. In this role, you will be required to work onsite from our Rensselaer, NY location several days per workweek, with the option to work remotely on the remaining days. You will also be expected to respond to all business needs that may require any increase to the regular onsite requirements.

All offers of employment will be made contingent upon the successful completion of a drug screening and background check.

 The NYISO is an Equal Opportunity Employer and as such, does not discriminate in its hiring or employment practices.

#LI-Hybrid