Full Job Description
The Infrastructure Engineer reports directly to the agency Chief Information Security Officer (CISO), responsible for protecting, monitoring, and enhancing the infrastructure and security posture of NYC Department of Citywide Administrative Services information systems, applications, networks, and cloud environments. The position combines advanced incident response, digital forensics, threat detection, vulnerability management, cybersecurity analytics, governance, risk and compliance (GRC), and security operations functions. The role serves as a technical escalation point for cybersecurity incidents, supports enterprise security initiatives, conducts cybersecurity assessments and audits, develops policies and procedures, and collaborates with City agencies, vendors, and stakeholders to improve cyber resilience and operational security.
Key Responsibilities
- Lead and coordinate cybersecurity incident response, digital forensics, malware analysis, threat hunting, containment, eradication, recovery, and post-incident activities.
- Monitor and analyze security events, alerts, logs, and threat intelligence using SIEM, endpoint protection, cloud security, and monitoring platforms.
- Perform vulnerability assessments, risk analyses, remediation tracking, validation testing, and reporting across infrastructure, applications, cloud environments, and endpoints.
- Conduct cybersecurity audits, control assessments, risk reviews, and compliance evaluations aligned with NIST CSF, NIST SP 800-53, CIS Controls, Zero Trust principles, and Citywide cybersecurity policies.
- Develop and maintain cybersecurity policies, standards, procedures, playbooks, incident response plans, and operational documentation.
- Support Identity and Access Management (IAM) operations, including SSO, MFA, RBAC, access reviews, provisioning, deprovisioning, and privileged access governance.
- Analyze cybersecurity metrics, trends, vulnerabilities, incidents, and operational performance indicators; develop executive-level reports and recommendations.
- Partner with internal technology teams, application owners, vendors, City agencies, and external partners to improve cybersecurity capabilities and remediation outcomes.
- Support cloud security reviews, application security assessments, secure application onboarding, and software security initiatives.
- Provide technical leadership, mentoring, and guidance to junior cybersecurity staff and cross-functional stakeholders.
- Assist with audit readiness, evidence collection, regulatory compliance activities, and cybersecurity governance initiatives.
- Research emerging threats, technologies, attack techniques, and industry best practices to strengthen defensive capabilities.
To Apply:
Please go to www.nyc.gov/careers or www.nyc.gov/ess for current NYC employees and search for Job ID # 784379.
No phone calls, faxes or personal inquiries permitted. Only those candidates under consideration will be contacted.
IT INFRASTRUCTURE ENGINEER - 95714
Qualifications
1. A baccalaureate degree from an accredited college in computer science, engineering or a related field and four years of satisfactory full-time experience related to datacenter engineering and operations, cloud engineering and operations, complex IT infrastructure engineering; or,
2. A baccalaureate degree from an accredited college and eight years of satisfactory full-time experience related to datacenter engineering and operations, cloud engineering and operations, complex IT infrastructure engineering; or,
3. Education and/or experience which is equivalent to "1" or "2" above.
Additional Information