Information Technology Security Specialist
City of New York
Date: 3 weeks ago
City: Manhattan, NY
Contract type: Full time
The NYC Department of Probation (DOP) is a world leader in working creatively and effectively engaging with people under court-mandated community supervision. Through innovative partnerships with people and organizations throughout the New York City, DOP provides opportunities for those on probation to access services and opportunities that positively impact their life trajectory. Following the best current data on “what works,” staff at DOP engage in meaningful relationships with those on probation to enhance community safety and decrease recidivism.
The Department of Probation (DOP) is seeking a technically skilled and proactive IT Security Specialist to join its Information Technology team. This role is critical to strengthening the agency’s cybersecurity and physical security posture, addressing current vulnerabilities, and implementing enterprise-grade solutions. The ideal candidate will have hands-on experience with network security technologies (e.g., Palo Alto, Cisco), surveillance systems (e.g., Genetec), and a strong understanding of threat detection, incident response, and compliance.
Responsibilities
Monitor network traffic and system logs using SIEM platforms and tools such as Palo Alto Panorama and Cisco SecureX to identify suspicious activity and investigate anomalies.
Conduct vulnerability scans and penetration tests using tools like Tenable and Qualys to identify and remediate risks across infrastructure and endpoints.
Respond to security alerts and incidents, contain threats, and support forensic investigations using packet capture tools, log analysis, and endpoint telemetry.
Configure and maintain firewalls (Palo Alto, Cisco ASA), IDS/IPS, endpoint protection, and centralized port security systems to enforce security policies and block malicious activity.
Lead the implementation of Genetec Security Center for CCTV coverage across agency facilities.
Develop and enforce a formal IT security framework, including policies, incident response plans, and user awareness training.
Finalize and implement restricting external drives as per DOP policy.
Deploy web filtering and site-blocking controls to prevent access to malicious or inappropriate websites.
Oversee the transition from unsecured Android mobile devices to Apple devices, working with T-Mobile to complete the migration.
Implement centralized port security to detect and block rogue devices on the network.
Lead the purchase and deployment of four Palo Alto firewalls to protect internal systems from external threats.
Secure agency printers by removing public IP exposure and implementing a centralized print server solution.
Collaborate with internal bureaus and external partners, including NYC Cyber Command, to assess risks, share intelligence, and improve overall security posture.
Evaluate IT and surveillance equipment prior to deployment to ensure compliance with security benchmarks.
Minimum Qualifications
A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,
Education and/or experience which is equivalent to "1" above.
Preferred Skills
Preferred Skills Minimum 5 years of hands-on experience designing, implementing, and maintaining network security architecture, including segmentation, access control, and threat mitigation strategies across enterprise environments. Proven expertise configuring and managing Palo Alto firewalls (including Panorama), Cisco networking and security platforms (e.g., ASA, Firepower, SecureX), and Genetec Security Center for surveillance and physical security integration. Advanced proficiency with SIEM platforms (e.g., Splunk, Microsoft Sentinel), vulnerability management tools (e.g., Tenable, Qualys), and scripting languages such as Python and PowerShell for automation and log analysis. Strong working knowledge of Windows Server, Linux distributions (e.g., Ubuntu, CentOS), Active Directory, and cloud infrastructure including Microsoft Azure and Amazon Web Services (AWS). Demonstrated ability to perform complex threat analysis, conduct forensic investigations, and troubleshoot multi-layered security incidents in real time. Excellent written and verbal communication skills, with the ability to translate technical findings into actionable insights for both technical and non-technical stakeholders. Possession of industry-recognized certifications such as CCNA Security, Palo Alto PCNSA, CompTIA Security+, or CISSP is highly desirable.
Public Service Loan Forgiveness
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education’s website at https://studentaid.gov/pslf/
Residency Requirement
New York City Residency is not required for this position. However, you must reside in New York State
Additional Information
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.
, $75,000.00 – $180,000.00
The Department of Probation (DOP) is seeking a technically skilled and proactive IT Security Specialist to join its Information Technology team. This role is critical to strengthening the agency’s cybersecurity and physical security posture, addressing current vulnerabilities, and implementing enterprise-grade solutions. The ideal candidate will have hands-on experience with network security technologies (e.g., Palo Alto, Cisco), surveillance systems (e.g., Genetec), and a strong understanding of threat detection, incident response, and compliance.
Responsibilities
Monitor network traffic and system logs using SIEM platforms and tools such as Palo Alto Panorama and Cisco SecureX to identify suspicious activity and investigate anomalies.
Conduct vulnerability scans and penetration tests using tools like Tenable and Qualys to identify and remediate risks across infrastructure and endpoints.
Respond to security alerts and incidents, contain threats, and support forensic investigations using packet capture tools, log analysis, and endpoint telemetry.
Configure and maintain firewalls (Palo Alto, Cisco ASA), IDS/IPS, endpoint protection, and centralized port security systems to enforce security policies and block malicious activity.
Lead the implementation of Genetec Security Center for CCTV coverage across agency facilities.
Develop and enforce a formal IT security framework, including policies, incident response plans, and user awareness training.
Finalize and implement restricting external drives as per DOP policy.
Deploy web filtering and site-blocking controls to prevent access to malicious or inappropriate websites.
Oversee the transition from unsecured Android mobile devices to Apple devices, working with T-Mobile to complete the migration.
Implement centralized port security to detect and block rogue devices on the network.
Lead the purchase and deployment of four Palo Alto firewalls to protect internal systems from external threats.
Secure agency printers by removing public IP exposure and implementing a centralized print server solution.
Collaborate with internal bureaus and external partners, including NYC Cyber Command, to assess risks, share intelligence, and improve overall security posture.
Evaluate IT and surveillance equipment prior to deployment to ensure compliance with security benchmarks.
- Maximum salary not guaranteed.
Minimum Qualifications
A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,
Education and/or experience which is equivalent to "1" above.
Preferred Skills
Preferred Skills Minimum 5 years of hands-on experience designing, implementing, and maintaining network security architecture, including segmentation, access control, and threat mitigation strategies across enterprise environments. Proven expertise configuring and managing Palo Alto firewalls (including Panorama), Cisco networking and security platforms (e.g., ASA, Firepower, SecureX), and Genetec Security Center for surveillance and physical security integration. Advanced proficiency with SIEM platforms (e.g., Splunk, Microsoft Sentinel), vulnerability management tools (e.g., Tenable, Qualys), and scripting languages such as Python and PowerShell for automation and log analysis. Strong working knowledge of Windows Server, Linux distributions (e.g., Ubuntu, CentOS), Active Directory, and cloud infrastructure including Microsoft Azure and Amazon Web Services (AWS). Demonstrated ability to perform complex threat analysis, conduct forensic investigations, and troubleshoot multi-layered security incidents in real time. Excellent written and verbal communication skills, with the ability to translate technical findings into actionable insights for both technical and non-technical stakeholders. Possession of industry-recognized certifications such as CCNA Security, Palo Alto PCNSA, CompTIA Security+, or CISSP is highly desirable.
Public Service Loan Forgiveness
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education’s website at https://studentaid.gov/pslf/
Residency Requirement
New York City Residency is not required for this position. However, you must reside in New York State
Additional Information
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.
, $75,000.00 – $180,000.00
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resume