Job description

Job Summary: The Information Systems Security Engineer will lead security audit efforts and champion organization-wide adherence to cybersecurity best practices. Acting as a liaison between the CISO, IT, and business units, this role ensures compliance with NIST 800-53, NYS DOH SSP 3.0, and HIPAA frameworks. The engineer will oversee audit readiness—documentation, assessments, and remediation—while guiding teams on implementing and configuring security controls to meet industry standards. This is a high-impact position for someone who thrives on cross-functional collaboration, has a sharp eye for risk, and can translate complex technical requirements into actionable improvements across diverse teams. Essential Duties and Responsibilities: • Plan, research, and design the overall organization security architecture. • Working with System Engineering, develop, review, and approve the installation requirements for LANs, WANs, VPNs, routers, firewalls, and related network devices, Servers, and endpoint devices. • Evaluate and validate cloud configurations (e.g., AWS, Azure, GCP) across departments to ensure adherence to security best practices • Design and enforce security controls for cloud infrastructure, including IAM policies, encryption standards, and network segmentation • Ensure readiness and alignment with frameworks like NIST 800-53, HIPAA, and NYS DOH SSP 3.0 • Implement and manage SIEM tools to monitor cloud activity and detect anomalies • Support incident response efforts related to cloud breaches or misconfigurations • Maintain up-to-date knowledge of emerging threats and evolving cloud security standards • Provide guidance and oversight to business units on secure deployment and maintenance of cloud services • Ensure all personnel have Information Systems access limited to their need and role in the organization. • Develop project timelines for system upgrades and prepare cost estimates. • Assist with incident response as events are escalated, including triage, remediation, and documentation. • Define qualitative and quantitative metrics to assess the success of the security program and provide regular reports to security and business leadership. • Act as a point of contact for disaster recovery and business continuity as it relates to security frameworks, compliance, and privacy laws. • Test the final security system and update and upgrade it as needed. • Establish disaster recovery procedures and conduct security breach drills. • Respond quickly and effectively to all security incidents and provide post-event analyses and follow up. • Monitor and guides the security team, to cultivate a sense of security awareness, and arrange for continuous education. • Remain up to date with the latest security systems, frameworks, standards, authentication protocols, and products. • Maintain confidentiality. • Perform other duties, as assigned. • Must possess a valid Driver’s License from New York, or a contiguous state (i.e., Connecticut, New Jersey, Pennsylvania, and Vermont) OR Must have the ability to take ample public transportation to attend meetings in person in the community and in the office as needed. Education and Experience: • Bachelor’s degree in the field of Computer Science, Cyber Security or related field, or equivalent combination of education and experience, is required. • Five years’ experience in cyber security or information security preferred. • Solid understanding of attack vectors and common systems vulnerabilities for the purposes of applying defense controls. • Knowledge of securities industry and compliance and related Frameworks (NIST 800-53, NYS DOH SSP V3.0, HIPAA). • Working knowledge and use of vulnerability scanners and other security tools. • Experience with the implementation of security policies in an IT environment. • Advanced IT Security Certifications a plus. • Advanced proficiency in Microsoft Office. • Strong written, verbal, and interpersonal skills. • Excellent documentation skills. • Highly motivated and self-directed. • Ability to effectively prioritize and execute tasks in a high-pressure environment. • Some travel may be required. • Absolute sense of integrity and personal commitment to serving people with I/DD and their families. • Demonstrate professionalism, respect, and ability to work in a team environment. AAP/EEOC CCANY provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability, or genetics. In addition to federal law requirements, the organization complies with applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training, and all other legally protected classifications.

Requirements