Director of Cybersecurity Preparedness

Job ID: 733797

Location: Brooklyn, NY

Salary Range: $75,000 - $170,000

Division: NYC Cyber Command

The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City. From delivering affordable broadband to protecting against cybersecurity threats and building digital government services, OTI is at the forefront of how the City delivers for New Yorkers in the 21^st century.  Watch our welcome video to see our work in action, follow us on social media @NYCOfficeofTech, and visit oti.nyc.gov to learn more.

At OTI, we offer great benefits, and the chance to work on projects that have a meaningful impact on millions of people. You'll have the opportunity to work with cutting-edge technology and collaborate with other passionate professionals who share your drive and commitment to making a difference through technology.

About New York City Cyber Command

OTI’s Office of Cyber Command is committed to protecting City systems that provide vital services to New Yorkers from cyber threats, and helping residents become safer in their digital lives. As the organization defending the largest municipality in the country, Cyber Command is charged with directing citywide incident response, setting citywide cybersecurity policies and standards and working with city agencies to strengthen their cyber defenses.

Job Description

Reporting to Cyber Command’s Chief Operating Officer, the Director of Cybersecurity Preparedness supports managing activities related to cyber resilience exercising both internally and across city agencies and external partners on behalf of Cyber Command.

Responsibilities will include, but are not limited to:

• Design and execute on complex exercises including multi-stakeholder scenarios, workshops, table tops and other exercises, to include the end-to-end management of the exercise process;
• Work collaboratively across teams to develop cohesive testing programs and work with subject matter experts to drive real-world scenario planning that results exercise participants to better understand the impact of cyber incidents, operational dependencies, and areas for mitigation and improvement.
• Conduct after action reporting and provide relevant insights to guide improvements and adjustments to cybersecurity response processes, to include updating and developing playbooks and runbooks where appropriate.
• Test and update incident response plans and processes to address existing and emerging threats;
• Coordinate efforts among relevant team members throughout the incident response lifecycle and support executive briefing by providing timely and relevant updates to appropriate executive stakeholders and agency leadership;
• Develop after-action reports with recommendations and observations;
• Support, as needed, during an incident with an impacted agency or agencies business.
• Perform special projects and initiatives as assigned.

Minimum Qualifications:

1. A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position;  OR

2. Education and/or experience which is equivalent to "1" above.

Preferred Skills:

• The preferred candidate should possess the following:

• Working knowledge of technology and cyber risk management process and controls, industry best practices, and frameworks.
• Strong communication skills and ability to lead large groups of stakeholders through various forms of exercise.
• Experience providing high level recommendations to executives with decision making authority, including written and verbal briefs.
• Experience documenting quickly shifting scenarios to maintain a clear record of what occurred.
• Attention to detail and strong analytical skills.
• Background in the field of cyber and information security, with a focus on cyber risk management, readiness, resilience, crisis management, or similar experience designing and facilitating executive tabletop exercises for business leaders at complex organizations.

Technical knowledge of the cybersecurity field including a strong understanding of global cyber threats, threat actors and tactics, techniques and procedures (TTPs) used by cyber adversaries, particularly related to the financial sector.

To Apply:  Please go to www.cityjobs.nyc.gov and search for Job ID #733797

* Interested applicants with other civil service titles who meet the preferred requirements should also submit a resume for consideration

Additional Information

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.

OTI participates in E-Verify