Associate Director, Cybersecurity

Leave a Comment / 5 minutes of reading

Job title: Associate Director, Cybersecurity

Company: New York Public Library

Job description: Associate Director, CybersecurityDepartment: Information TechnologyEmployment Type: Full TimeLocation: Crystal Building 40 W20th StReporting To: Jay HaqueCompensation: $165,000 – $172,000 / yearDescriptionOverview
NYPL Technology provides IT services supporting the Library’s mission. This includes, desktop, networking, systems, business applications, and cybersecurity services. The Cybersecurity team is tasked with maturing NYPL’s overall security posture to ensure PII and critical systems are safeguarded throughout the library.The Associate Director, Cybersecurity will partner with the IT Product and Policy lead to continually improve NYPL’s cybersecurity awareness and operational practices across the organization. This includes working collaboratively on writing and implementing policies, routinely reporting on operational tempo, documenting and communicating issues, selecting and administering NYPL’s suite of cybersecurity tools, and spearheading initiatives to implement cybersecurity-aware processes for handling data, payments, and systems across the Library.We are looking for someone we can count on to:Own:

  • Leadership of NYPL’s cybersecurity team
  • Day to day operational leadership of NYPL’s suite of cybersecurity tools
  • Technical partner for IT Strategy, Policy, and Insights team
  • Relationship management with key business partners and vendors
  • Technical architecture of cybersecurity ecosystem
  • Development of cybersecurity procedures and practices
  • Development of cybersecurity OKRs, PKIs
  • Point of contact for cybersecurity initiatives including audits, maturity assessments, and pentests

Teach:

  • Mentor cybersecurity staff
  • Help business partners assess cybersecurity risk to make informed decisions
  • Partner with IT line managers to mature security posture

Learn:

  • Understand Library’s unique place in ensuring security and privacy of the data and systems entrusted to it.
  • Advance NYPL’s cybersecurity practice through automation, right-sized operations, and commitment to developing a solid operational tempo.

Improve:

  • Monitoring and operation efficiency of the cybersecurity practice.
  • Enhance or introduce cybersecurity tools and practices.

Some expectations for this role are that within:1 month, this person will:

  • Be familiar with IT practices and teams, roles & responsibilities.
  • Build initial relationships with senior stakeholders across the organization.
  • Assess NYPL’s cybersecurity posture and begin thinking about enhancements.
  • Own project backlog and assess resource allocation
  • Prioritize efforts

3 months, this person will:

  • Own and understand cybersecurity practices
  • Take over Monthly IT Cybersecurity Updates
  • Establish routine operations and streamline reporting
  • Lead incident response efforts

6 months and beyond, this person will:

  • Provide expert level oversight and ownership of NYPL’s cybersecurity practice
  • Lead the team to execute key projects and day to day cybersecurity operations
  • Lead roadmap development and budget planning
  • Be the primary point of contact for all cybersecurity related projects.

Responsibilities

  • Co-lead development on internal practices, processes, and policies to enhance NYPL’s cybersecurity posture.
  • Enhance organizations risks assessment practices, incident response, and operational tempo reporting practices.
  • Evaluate business processes in key areas across the organization and recommend process and policy improvements to safeguard data, assets, and organization from cyber criminals.
  • Negotiate, influence, and build consensus with key partners to implement security-centric processes and practices.
  • Publish Information Security reports for an executive audience.
  • Liaise with NYC Cyber Command, NYPL’s Physical Security Team, Law Enforcement, and industry peers re: cybersecurity issues.
  • Continue to enhance the Library’s cybersecurity awareness program.
  • Evaluate, select, implement, and administer NYPL’s suite of cybersecurity tools.
  • Work closely with peers in IT, and partners throughout the Library, to identify gaps and implement cost-effective solutions

Required Education, Experience & SkillsRequired Education & Certifications

  • Bachelor’s degree or combination of education and work experience

Required Experience

  • 8+ years administering technology for a widely distributed organization.
  • 5+ years in cybersecurity role
  • 5+ years managing a team
  • Hands-on experience with vulnerability management, network security, systems security, and building cybersecurity programs
  • Strong experience with NIST or ISO cybersecurity standards and their application in a real-world business setting
  • Experience being the lead, or strong influencer, in implementing new policies and procedures across an organization

Required Skills

  • Excellent technical and non-technical verbal and written communication skills
  • Proven ability to assess risks while thinking pragmatically about remediation options
  • Excellent critical thinking skills with proven track record of solving complex problems with difficult budget and resource constraints
  • Proven ability to adapt to changing circumstances
  • Broad and strong hands-on experience across all Information Security domains including Anti-Virus, SIEM, Log Aggregation, WAF, Firewalls, MDR, Patch Management, Vulnerability Management, Penetration Testing, etc.
  • Broad hands-on experience with, or deep technical understanding of concepts, across all Information Technology domains including networking, systems engineering, cloud, application development, mobile, desktops, etc.

Managerial/Supervisory Responsibilities

  • Direct management of a team.

More…Core Values
All team members are expected and encouraged to embody the NYPL Core Values:

  • Be Helpful to patrons and colleagues
  • Be Resourceful in solving problems
  • Be Curious in all aspects of your work
  • Be Welcoming and Inclusive

Work Environment

  • Office setting

Physical Duties

  • Lift equipment up to 25 lbs

Pre-Placement Physical Required?
NoUnion/Non Union
Non-UnionFLSA Status
ExemptSchedule

  • Available on-call after hours and weekends
  • Hybrid 3-on / 2-off as workload permits
  • Travel to NYPL sites as needed

This job description represents the types and levels of responsibilities that will be required of the position and shall not be construed as a declaration of all of the specific duties and responsibilities for the role. Job duties may change if Library priorities change. Employees may be directed to perform job-related tasks other than those specifically presented in this description as needed.The New York Public Library Salary Statement
At the Library, we believe that pay transparency and pay equity are important to ensuring we source the best candidates and keep the best employees. When making a determination as to the appropriate salary for a candidate, we consider a variety of factors such, including, but not limited to, the position requirements, the skills, prior experience, and educational background required or preferred for the job, the scope and impact of the role within the organization, internal peer equity, and the candidate’s specific training, experience, education level, and skills. No single factor is conclusive; the Library reserves the right to consider any and all relevant factors and make a decision consistent with its policies.Union Salaries are determined by collective bargaining agreement(s).

Expected salary: $165000 – 172000 per year

Location: USA

Job date: Sat, 02 Mar 2024 02:52:38 GMT

Apply for the job now!

Leave a Comment

Related Posts

Scroll to Top