The New York Times is seeking an industry recognized thought leader who’s ambitious, thorough and motivated to serve as Principal Analyst on the team that protects our data, communications, journalists and sources.
Who are we?
Information Security helps prevent The Times from becoming news.
Our team works to protect the news makers, their support staff and the platforms which they rely on every day. We are responsible for everything from analyzing malware and tracking threat actors to penetration testing and educating staff on modern threats.
Who are we looking for?
We’re looking for a highly skilled infosec professional with excellent communication and technical ability who has experience in protecting the confidentiality, integrity and availability of assets and data. We want someone who has a passion for both information security and The Times’ mission, a strong desire to learn and willingness to share your knowledge with others. In the Principal role, you will be looked to as subject matter expert, mentor, and strategist. Recently, we’ve all needed to change how we work and shift our priorities. We need someone to join our team who can adapt quickly and reprioritize based on the news cycle and current conditions. 2020 is a major news year, one where we are all part of the story; join us in securing The Times.
What you’ll do
- Identify, analyze and remediate threats in our environment
- Identify gaps in existing security architecture and recommend improvements
- Implement tools and processes to improve our ability to detect and respond to threats
- Contribute to security policies, incident response plans and security playbooks
- Serve as escalation point for our on-call staff
- Mentor members of Information Security, help develop skills and broaden knowledge
- Work directly with staff to set up security tools and solutions, and provide support and advice for security-related questions and concerns
- Mentor and support other members of the team to grow their technical and leadership skill sets
- Collaborate with various teams in the newsroom, tech department, and more to identify interdisciplinary solutions to complex security problems
What you have
- 10+ years of relevant security experience
- Demonstrated evidence of impact in the Information Security Industry
- Intimate knowledge of tools similar to ones we use (SIEM, EDR, IDS,etc)
- Strong analytical, critical thinking and decision making skills
- Strong written and verbal communication skills, and the ability to communicate effectively to all levels of staff
- Strong customer service skills, especially when providing support and advice to people with varying technical skill levels
- Strong understanding of computer and networking concepts
- Experience with identity platforms and relevant security tooling
- Experience with scripting languages, regular expressions and APIs
- Experience with web, cloud and virtual environments, including AWS and GCP.