Senior Security Engineer
7 days ago
Veteran Firm Seeking Senior Security Engineer for an Onsite Role in New York, NY
My name is Stephen Hrutka. I lead a Veteran-owned consulting firm in Washington, DC, focused on strategic sourcing, supply chain management, and IT Staffing.
We seek to fill a Senior Security Engineer role for the New York City Office of Technology and Innovation (NYC OTI).
The ideal candidate is a NY resident who has 12+ years of experience in information security, 8+ years in IT infrastructure management, application architecture, risk management, data architecture, middleware technology, and IT operations and project management, and a Bachelor's degree in Computer Science or Information Systems or equivalent work experience.
If you’re interested, I'll gladly provide more details about the role and discuss your qualifications further.
Thanks,
Stephen M Hrutka
Principal Consultant
www.hruckus.com
Executive Summary: HRUCKUS is seeking a Senior Security Engineer to support the New York City Office of Technology and Innovation (NYC OTI) for an onsite role in New York, NY.
Position Description: The Senior Security Engineer is essential to securing the City of New York’s systems for the MyCity Portal development project. This requires strong security controls over cloud identities and endpoint devices. Hardening cloud ecosystems through well-designed frameworks is critical in protecting the City of New York’s systems and data from various cyber-attacks.
Tasks:
- Perform organization-wide cybersecurity risk analysis and maintain updates on the identified risks
- Create, socialize, and obtain approval for cybersecurity strategy and plans to address generic and specific cybersecurity risks to the organization
- Create and follow a process to track progress against cybersecurity plans
- Lead the implementation of cybersecurity initiatives for MyCity Portal development project
- Create network architecture diagrams, collect communication flow information, and build high-level and low-level design documents
- Work on complex network problems, interact with vendor support teams and drive the issue to resolution
- Translate compliance requirements into specific security controls and present compensating security controls
- Report to upper management on current cybersecurity posture and progress on mitigating identified risks
- Identify cybersecurity gaps and maintain a risk register
- Create metrics to measure cybersecurity control efficacy
- Work with partners to create and maintain incident response plans
- Monitor and respond to alerts
- Review and optimize existing cybersecurity controls
- Ensure the organization’s compliance with cybersecurity best practices, policies, and standards
- Enforce endpoint security standards
- Analyze vulnerabilities and work with Application Development, IT, and Systems teams to ensure timely remediation and validation
- Perform threat simulations to detect possible risks and provide cybersecurity recommendations on topics like network perimeter, identity management, API security, microservices design, and application development
- Instruct and guide other teams to craft "secure by default" infrastructure; they may also investigate, build, and recommend innovative technologies or other methods that will improve the security of cloud-based and on-premises environments
Mandatory Skills/Experience:
- Bachelor's degree in Computer Science, Information Systems, or equivalent work experience
- At least 12+ years of experience in information security
- At least 8+ years in IT infrastructure management, application architecture, risk management, data architecture, middleware technology, and IT operations and project management
- At least 8+ years of experience with networking, load-balancing, DNS, TLS/SSL digital certificates, SAML and Single Sign-on technologies, Kerberos, MFA technologies, and Identity management
- At least 4+ years of experience working in a cloud environment (Azure, AWS, GCP)
- At least 4+ years of experience working in securing Internet-facing applications, utilizing WAF technologies (e.g., Akamai CDN and WAF, CloudFlare, Azure CDN and WAF, Azure FrontDoor, AWS CloudFront, and WAF, and similar reverse-proxy technologies)
- At least 4+ years of experience working with tools and techniques for collecting and processing Network Security Telemetry and Security Event Data.
- At least 4+ years of experience architecting, deploying, and managing endpoint security and EDR technology
- At least 4+ years of experience using scripting languages (Python, Bash, PowerShell, etc.)
- At least 4+ years of experience with Windows, Linux, or MacOS administration
- At least 4+ years of experience working with vulnerability management and scanning tools
- At least 4+ years of experience working with application scanning tools
Desirable skills/experience:
- Experience in implementing and operating Network Security Telemetry Collection Systems in multi-cloud and on-prem environments
- Experience in implementing and operating Data Loss Prevention Systems
- Experience in information security principles and practices, especially the implementation of practical technical controls to support organization policy
- Strong understanding of networking protocols, firewalls, and cybersecurity protection concepts, including software development lifecycle and compensating controls
- Strong understanding of cloud-based services such as O365, AzureAD, IAM, Entra ID
- Strong understanding of CIS controls
- Experience with Syslog-NG, LogScale (Humio), or similar SIEM/log aggregation systems
- Experience with SSO products and services such as Entra ID, PingFederate, or Okta
- Experience with NetSkope, Zscaler, Palo Alto Networks Prisma Access, or similar cloud proxies
- Familiarly with CASB/SASE products
- Experience with Cloud-based EDR/XDR tools
- Knowledge of endpoint security management, configuration policies, and procedures
- Experience with asset management and on-prem/cloud-based vulnerability management tools
- Highly flexible/willing to learn new technologies
- Highly organized with excellent analytical, problem-solving solving, and decision-making skills
- Excellent communication and collaboration skills
Position Details:
- Work Location: 80 Maiden Lane, New York, NY 10038
- Scheduled Work Hours: 35 hours/week
- Duration of Contract: 12 months
- Target Hourly Pay Rate: $93/hour
-
Senior Security Engineer
4 weeks ago
New York, New York, United States Bitcoin Devs Company Full timeJob Title: Senior Security EngineerJob Description:The Senior Security Engineer plays a vital role in ensuring the security and integrity of Bitcoin Devs Company’s platform, systems, and applications. This position is crucial in protecting the organization from potential security threats and vulnerabilities, as well as implementing and maintaining best...
-
Senior Application Security Engineer
1 month ago
New York, United States Emergent365 Full timeSenior Application Security Engineer*This position is highly technical. As a Senior Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues,...
-
Senior Software Engineer
2 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionJob Description for Job Posting About the RoleAbnormal Security is looking for a Senior Software Engineer to join the Detection Team. The Detection Division is focused on building the world's most advanced technology for identifying and stopping email and cloud-based attacks that were previously undetectable and help make...
-
Senior Security Engineer
2 months ago
New York, United States MDS (Micro-Data Systems) Full timeSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Manhattan, NY, Brooklyn, NY, or Trenton, NJTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...
-
Senior Security Engineer
7 days ago
New York, United States MDS (Micro-Data Systems) Full time*****NO C2C OR THIRD PARTY INQUIRIES*****Senior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Brooklyn, NYTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next...
-
Senior Security Systems Engineer
1 month ago
New York, New York, United States Acquired Data Solutions Full timeJob Title: Senior Security Systems EngineerWe are seeking a highly skilled Senior Security Systems Engineer to join our team at Acquired Data Solutions, Inc. in Egg Harbor, NJ.Job Summary:The successful candidate will be responsible for performing in-depth engineering analysis of security-related systems to determine their potential for further development,...
-
Senior Software Engineer
2 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout the RoleAbnormal Security is looking for a Senior ML Infra Engineer to join the Detection Team. The Detection Division is focused on building the world's most advanced technology for identifying and stopping email and cloud-based attacks that were previously undetectable and help make the world a safer place. As an ML...
-
Senior Application Security Engineer
1 month ago
new york city, United States Emergent365 Full timeSenior Application Security Engineer*This position is highly technical. As a Senior Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues,...
-
Senior Application Security Engineer
3 weeks ago
new york city, United States Emergent365 Full timeSenior Application Security Engineer*This position is highly technical. As a Senior Application Security Engineer, your role involves close collaboration with software development teams to ensure the safety of our customers during the development of innovative services. On any given day, your tasks may include code inspections to identify security issues,...
-
Senior Security Engineer
4 weeks ago
New York, United States Mizuho Bank Ltd Full timeJoin the Mizuho team as a Senior Security Engineer! This role will be focused on and around the regular administration/maintenance of security tools including performing upgrades/troubleshooting and maintaining system documentation. They may be required to help write or shape policies/procedures/run books/processes, etc. They will be expected to maintain...
-
Senior Security Engineer
1 month ago
new york city, United States MDS (Micro-Data Systems) Full timeSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Manhattan, NY, Brooklyn, NY, or Trenton, NJTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...
-
Senior Security Engineer
1 month ago
new york city, United States MDS (Micro-Data Systems) Full timeSenior Security EngineerLocation: Hybrid - 2-3 Days per week Onsite in Manhattan, NY, Brooklyn, NY, or Trenton, NJTop skills/tools, etc. that are MUST haves:Core security with experience deploying / upgrading and migrating Palo Alto firewallsConsultative and team playerHigh level of experience with Panorama and log collectorsPalo Alto Next Generation...
-
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout The RoleAbnormal Security is seeking a Senior Software Engineer to join the Inbound Email Products - Systems (IEPS) team. The MSP IEPS team is responsible for Abnormal's core Inbound Email Security product backend systems, including Remediation and Threat Log (data processing and storage). Our objective is to make...
-
Senior Engineering Manager, Platform Security
4 weeks ago
New York, New York, United States Oscar Health Full timeAbout the RoleOscar Health is seeking a Senior Engineering Manager, Platform Security to lead our cloud security efforts. As a key member of our Security team, you will be responsible for driving medium-to-long term innovation and strategy for cloud security at Oscar.You will collaborate extensively with diverse teams, offering strategic insights,...
-
Senior Back End Software Engineer
2 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout the RoleAbnormal Security is looking for a Senior Backend Engineer to join the Multi-Product Platform (MPP) team. The MPP team owns the product platform which enables scalable product development to support the business to create and launch various enterprise-level products for the customers with consistent experience. The...
-
Software Engineer II
2 weeks ago
New York, United States Abnormal Security Full timeJob DescriptionJob DescriptionAbout the RoleAbnormal Security is hiring a Software Engineer to join the Threat Response Engine team, an essential part of our mission to protect global enterprises from diverse and evolving email threats. At Abnormal, we've taken a novel approach to email security, utilizing behavioral AI to identify and counter complex...
-
Security Engineer
4 weeks ago
New York, United States Nationstaff Full timeAbout This Role We are seeking a highly capable Security Engineer / Senior Security Engineer, who will be responsible for various technical and cryptographic security aspects. This role requires a certain range of experience and an in-depth understanding of security engineering facets. Primary ResponsibilitiesPerform security analysis/audits/reviews/testing,...
-
Senior Security Software Engineer
2 weeks ago
New York, United States StubHub Full timeJob DescriptionJob DescriptionStubHub is on a mission to redefine the live event experience on a global scale. Whether someone is looking to attend their first event or their hundredth, we're here to delight them all the way from the moment they start looking for a ticket until they step through the gate. The same goes for our sellers. From fans selling...
-
Senior Security Engineer
6 days ago
New York, United States InterSources Full timeJob Title: Senior Security Engineer Work Location: New York NY Duration: 12 months contract Position Summary: THIS POSITION WILL ALLOW 35.00 - HOURS PER WEEKMANDATORY SKILLS/EXPERIENCE Bachelor's degree in Computer Science, Information Systems or equivalent work experience At least 12+ years of experience in information security At least 8+ years in IT...
-
Senior Security Engineer, Enterprise
3 months ago
New York, United States Braze Full timeAt Braze, we have found our people. We’re a genuinely approachable, exceptionally kind, and intensely passionate crew.We seek to ignite that passion by setting high standards, championing teamwork, and creating work-life harmony as we collectively navigate rapid growth on a global scale while striving for greater equity and opportunity – inside and...
