Senior IT Security Specialist

The New York Independent System Operator (NYISO) manages the efficient flow of electricity on more than 11,000 circuit-miles of high-voltage transmission lines, dispatching power from hundreds of generating units across the state.

The New York Independent System Operator (NYISO) applies cutting-edge technology to operating a reliable electricity system, managing competitive markets for wholesale electricity, and planning for the Empire State's energy future. The NYISO’s Information Technology department invites applications for a full-time Senior IT Security Specialist.

The Senior IT Security Specialist plays a critical role within NYISO’s Security Operations function, focusing on the architecture, design, integration, and management of advanced cyber security technologies. This position is responsible for ensuring the security, availability, and integrity of NYISO’s information assets and technical environments, including systems designated as critical infrastructure. Senior IT Security Specialist manage the lifecycle of internal and cloud-based security platforms, develops security automation solutions, and oversee compliance with corporate and regulatory standards. Collaboration with IT peers, mentoring junior staff, and leading security initiatives are key components of this role. The ideal candidate will possess extensive experience in IT security, a deep understanding of security best practices, and expertise in a broad range of security technologies and processes.

ESSENTIAL DUTIES And RESPONSIBILITIES

• Designs and manages technologies in support of the NYISO’s Security Operations function; responsible for cyber security architecture, design, system integration, installation, upgrades, and patching, monitoring, system integrity, security, disaster recovery, and performance; develops and maintains technology standards and procedures; leads or participates on project teams and collaborates with application developers and infrastructure peers as necessary; performs backup and restoration procedures; leads audit efforts and ensures compliance with corporate and regulatory standards; mentors and trains junior staff; provides expertise in strategic IT planning; establishes and maintains working relationships with IT partners, business customers, and vendors.
• Responsible for all parts of the system lifecycle of managed cyber security platforms. Establishes and documents a comprehensive set of expertise for a wide range of security technologies and processes including, but not limited to: Security Information and Event Management (SIEM); Threat Management Platform, Anti-malware prevention and analysis; vulnerability scanners; penetration testing; computer and network forensics tools and processes; secure application coding and scanning; and cyber security incident response.
• Architects, designs, and develops security automation to orchestrate security solutions (SOAR) to automate repetitive tasks, and mature monitoring and response capabilities.
• Applies broad and deep security expertise to investigate activity, trends, and patterns in NYISO systems, ensuring the security, availability, and integrity of the NYISO’s information assets and technical environments, including energy management systems designated as national critical infrastructure. Will serve as a security thought leader in the NYISO.
• Interacts frequently with peers from across the IT organization to develop solutions that ensure the security of IT infrastructure and business applications. Provides guidance on the configuration of security infrastructure to implement robust security measures & controls through technology solutions.
• Designs IT security architecture, and makes recommendations on infrastructure, including hardware, software, architecture, and systems management.
• Collaborates with the Security Operations team to ensure security technologies are configured properly to monitor, track, and analyze networks/systems for potential security violations while also assisting in all such potential cyber security incidents.
• Ensures the delivery of all assigned projects, both by representing Enterprise Security on business projects, as well as serving as the lead on Enterprise Security initiatives within area of specialty. May perform additional project duties such as requirements development, project management, and quality testing.
• Participates as a key member of Cyber Security Incident Response Team by providing subject matter expertise to more junior staff on security concepts and technologies.
• Oversees the collection of metrics and key performance indicators that measure Enterprise Security’s effectiveness, as well as the development of reports and dashboards that communicate security readiness to business leaders.

QUALIFICATIONS:

• Bachelor's Degree (BS) in Information Security, Computer Science, Computer Information Systems, or similar fields. Master’s Degree (MS, MBA) preferred, or equivalent experience.
• At least seven years of experience in progressively responsible information technology and/or IT security positions is required, along with an in-depth understanding of information security best practices, and expertise with related security technologies and tools. This position also requires a broad and deep expertise in different information security technologies, as well as a conceptual knowledge of system development lifecycles, code and application vulnerabilities, and ability to identify solutions to challenging technical problems. Experience with complex IT infrastructure systems is preferred. Experience in the energy sector is desirable.
• Knowledge of various security methodologies and processes, and technical security solutions (firewall, intrusion detection systems, and Security Information and Event Management (SIEM) platforms, Threat Intelligence Platforms, Vulnerability Scanning, Security Orchestration and Response etc.).
• Experience working with various network technologies, operating systems, databases, cloud environments (AWS, Azure) and coding standards.
• Expert knowledge of security problems associated with modern web languages and frameworks, including but not limited to Python, Bash, Perl, PowerShell, JavaScript, Java and C#.
• Working knowledge of network communications and routing protocols (e.g., TCP, UDP, ICMP, BGP, MPLS, etc.) and common internet applications and standards (e.g., SMTP, DNS, DHCP, SQL, HTTP, HTTPS, etc.)
• Experience administering various operating systems (e.g., Windows, OS X, Linux, etc.) commonly deployed in enterprise networks. A conceptual understanding of Windows Active Directory is also desired.
• Advanced debugging and troubleshoot issues, including interacting with internal operations teams & external technology vendors.
• Familiarity with standards such as SAML, WS-Sec; SOAP; REST, OATH; OAuth2.0; XML, JSON, REST, etc., is desirable.
• Experience with various IT / Security technologies including DNS, DHCP, MS Exchange, Proxy, Endpoint Security, Vulnerability Management, SEIM, Zero Trust Principles, etc., is desirable.

CERTIFICATES, LICENSES, REGISTRATIONS

• GIAC, CISA, CEH, CFE, CISSP, or similar certification preferred.
• Secret Clearance or above preferred.
• Knowledge of NIST Special Publication 800 Series is preferred.

Additional Requirements

• Ability to read, analyze and interpret general business periodicals, professional journals, technical procedures, and governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to write presentations and articles for publication that conform to prescribed style and format. Ability to effectively communicate security and risk-related concepts to technical and nontechnical audiences.
• Ability to add, subtract, multiply and divide in all units of measure, using whole numbers, common fractions and decimals. Ability to compute rate, ratio and percent and to draw and interpret bar graphs.
• Ability to define problems, collect data, establish facts and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.
• Proficient with personal computers running the Windows operating system; experience with productivity software such as Microsoft Office applications, e-mail, and Internet programs.

PHYSICAL DEMANDS

While performing the duties of this job, the employee is regularly required to talk or hear. The employee frequently is required to stand, walk, sit and use hands to perform routine office tasks. The employee is occasionally required to reach with hands and arms. The employee must occasionally lift and/or move up to 15 pounds. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

WORK ENVIRONMENT

The noise level in the work environment is usually moderate. Contact with staff and public will occur. Travel may be required to attend and/or conduct meetings, conferences and training. This position may require work on nights, weekends or holidays.

The NYISO takes pride in recruiting, developing and retaining highly talented individuals. In addition to competitive salaries, we offer a comprehensive benefits package and innovative reward programs.

The NYISO offers the flexibility to work both in the office and remotely, providing our employees with an enhanced work life balance. While the majority of the responsibilities of this role can be performed remotely, in most cases, employees will have periodic on-site requirements based on business needs.

All offers of employment will be made contingent upon the successful completion of a drug screening and background check.

The NYISO is an Equal Opportunity Employer and as such, does not discriminate in its hiring or employment practices.

Salary Range

$99,600 — $166,200 USD