Job Description
NYU Langone Health is a world-class, patient-centered, integrated academic medical center, known for its excellence in clinical care, research, and education. It comprises more than 200 locations throughout the New York area, including five inpatient locations, a children’s hospital, three emergency rooms and a level 1 trauma center. Also part of NYU Langone Health is the Laura and Isaac Perlmutter Cancer Center, a National Cancer Institute designated comprehensive cancer center, and NYU Grossman School of Medicine, which since 1841 has trained thousands of physicians and scientists who have helped to shape the course of medical history. At NYU Langone Health, equity, diversity, and inclusion are fundamental values. We strive to be a place where our exceptionally talented faculty, staff, and students of all identities can thrive. We embrace diversity, inclusion, and individual skills, ideas, and knowledge. For more information, go to nyulangone.org, and interact with us on LinkedIn, Glassdoor, Indeed, Facebook, Twitter, YouTube and Instagram.
Position Summary:
We have an exciting opportunity to join our team as a Sr II Security Analyst.
In this role, the successful candidate is a highly motivated individual with a passion for research and uncovering cybersecurity threats and threat actors. This person will be a key member of the IT Security team responsible for participating in threat based investigations, creating and updating detection methodology, and providing expert support for daily monitoring and incident response. The individual is expected to be fully aware of the enterprises security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals.
Job Responsibilities:
- Research new cyber threats, actors, and technologies that impact the organization and industry.
- Identify anomalous behavior on the network or endpoint devices and be able to provide an assessment of malware behavior.
- Utilize tools and advanced techniques to hunt and identify threats and actor groups and their motives, techniques, tools, and methods.
- Translate threat intelligence into detection and hunting strategies, hypotheses, and queries.
- Maintain awareness within the threat intelligence community of vulnerabilities being exploited and provide comprehensive assessments on the impact to our environment.
Additional Position Specific Responsibilities:
Operations
Lead analytic and investigative support for large scale and complex security incidents.
Provide support (including off hours) to analyze and triage potential incidents.
Support, administer, and fine tune in-place security solutions for efficient and appropriate operations.
Periodically write and present assessment reports to peers and management.
Development
Provide guidance on building and/or improving information security processes and implementation of tools and technologies used for enterprise security. Use existing tools to provide metrics to support recommendations.
Develop and maintain dashboards, reports, and alerts to identify potential threats, vulnerabilities, and technical risks. Integrate new reports and alerts into the incident response process.
Conduct research into IT Security solutions and products as required
Minimum Qualifications:
To qualify you must have a 5+ years experience in cyber threat intelligence, incident response, security operations teams, and malware analysis.
5+ years in enterprise firewalls and network
3+ years in threat intelligence tools (Anomali), SIEM tools (i.e. Splunk), Endpoint Security tools (i.e. Crowdstrike, Cylance, Tanium), DLP (i.e. Symantec Vontu).
Detailed understanding of the TCP/IP networking stack and network technologies.
Experience with tools such as Proofpoint, Domain Tools, VirusTotal, Wireshark, Snort, NMAP.
Excellent technical knowledge of mainstream operating systems (for example, Microsoft Windows, Mac OS, and Linux) and a wide range of security technologies, such as network security appliances, vulnerability scanners, anti-malware solutions, advanced threat protection systems, security incident and event monitoring tools, and automated policy compliance and desktop security tools.
Familiarity with technologies such as VPN, Active Directory, Virtualization Platforms, and databases.
Strong understanding of industry security best practices and standards.
Preferred Qualifications:
Experience with Anomali, Proofpoint, Tanium, Cylance, Crowdstrike
Qualified candidates must be able to effectively communicate with all levels of the organization.
NYU Langone Health provides its staff with far more than just a place to work. Rather, we are an institution you can be proud of, an institution where you’ll feel good about devoting your time and your talents.
NYU Langone Health is an equal opportunity and affirmative action employer committed to diversity and inclusion in all aspects of recruiting and employment. All qualified individuals are encouraged to apply and will receive consideration without regard to race, color, gender, gender identity or expression, sex, sexual orientation, transgender status, gender dysphoria, national origin, age, religion, disability, military and veteran status, marital or parental status, citizenship status, genetic information or any other factor which cannot lawfully be used as a basis for an employment decision. We require applications to be completed online.
If you wish to view NYU Langone Health’s EEO policies, please click here. Please click here to view the Federal “EEO is the law” poster or visit https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm for more information.
NYU Langone Health provides a salary range to comply with the New York state Law on Salary Transparency in Job Advertisements. The salary range for the role is $92,065.99 – $127,258.56 Annually. Actual salaries depend on a variety of factors, including experience, specialty, education, and hospital need. The salary range or contractual rate listed does not include bonuses/incentive, differential pay or other forms of compensation or benefits.
To view the Pay Transparency Notice, please click here