IT Security Specialist - New York, United States - City of New York

Description

The mission of the New York City Police Department is to enhance the quality of life in New York City by working in partnership with the community to enforce the law, preserve peace, protect the people, reduce fear, and maintain order.

The NYPD strives to foster a safe and fair city by incorporating Neighborhood Policing into all facets of Department operations, and solve the problems that create crime and disorder through an interdependent relationship between the people and its police, and by pioneering strategic innovation.

The Information Security team within ITB is a highly specialized group of cyber security professionals tasked to oversee the defense and response of cyber security incidents within NYPD.

• Serve on a distributed security and technology team responsible for establishing and maintaining identities and entitlements within IAM solutions.
• Implement identity controls and settings that align with policies and governance structure.
• Work closely with security leadership, teammates and stakeholders to evaluate and implement access models that align with organizational risk posture.
• Support IAM governance, policies and solutions across SSO, directory, certificate, MFA, privileged accounts, automation and behavior analytics systems.
• Assess and resolve IAM issues that occur across the employee base, as well as with external entities.
• Secure access to both on-prem and cloud infrastructure, as well as to applications required to support a distributed remote workforce.
• Evaluate business impact and risk exposure based on the level of access granted and make recommendations where improvements should be made.
• Work closely with incident responders during potential incidents and escalate to management as needed.
• Document access, policies and exceptions, and maintain integrity for audit reviews.
• Review internal, external and contractor accounts as part of periodic audits.
• Make recommendations for improvements in automation efficiencies, security practices and end-user experience.
• Collect key performance indicators and related operational metrics, and track SLAs used to validate success as well as future areas of improvement.
• Execute tactical requests and support the strategic vision for rigorous and scalable IAM controls.
• Maintain understanding of business processes to aid in managing enterprise identity and access.
• Frequently interact with business units to understand their plans, risk posture and tolerance, and how IAM supports their vision and business obligations with security in mind.
• Implement IAM projects from inception to completion on time and within budget.