Senior Strategic Intelligence Analyst
About New York City Cyber Command
New York City Cyber Command (NYC3) is committed to protecting City systems that provide vital services to New Yorkers from cyber threats, and helping residents become safer in their digital lives. As the organization defending the largest municipality in the country, NYC3 is charged with directing citywide incident response, setting citywide cybersecurity policies and standards and working with city agencies to strengthen their cyber defenses.
“To lead and execute an innovative, intelligence-driven, risk-informed cyber defense and response strategy -- with the support of key partners and allies -- that enables the city government to properly function and provide services to New Yorkers.”
“New York City is the most cyber-resilient city in the world”.
Senior Strategic Intel Analysts within NYC Cyber Command perform many critical functions within the Threat Management discipline. Chief among these functions is providing direct operational support to key verticals of the Threat Management team by consuming and analyzing operational and strategic intelligence, as well as coordinating between Intel Analysts and the Strategic Intel lead. Some of the Senior Strategic Intel Analysts tasks are described below:
Responsibilities will include:
• Provide relevant, timely, and accurate strategic threat intelligence support to network defenders at NYC3;
• Lead the collection, processing, analysis, and dissemination of strategic intelligence products throughout the City of New York;
• Manage key analytic projects and programmatic development initiatives;
• Manage operations and improvement of the finished intelligence platform;
• Develop and capture strategic intelligence requirements for stakeholders across the City of New York;
• Conduct quality assurance for strategic analysis and reporting;
• Create and document detailed standard operating procedures and playbooks;
• Socialize the Strategic Intel Team’s products and capabilities across the City of New York;
• Develop and maintain relationships with various external communities including SLTT, vendors, ISACS, etc.
• Intake and incorporate relevant feedback for strategic intelligence products;
• Analyze and trend previous incident case data;
• Actively research and track geo-political trends, threat actors, malware, and campaigns;
• Apply structured analytic techniques and analytic methodology to intelligence analysis;
• Provide direct strategic intelligence support to relevant NYC3 team to support policy creation, business decisions, and risk assessments;
• Brief relevant strategic findings to NYC3 leadership, City of New York stakeholders, and external strategic partners;
• Handle special projects and initiatives as assigned.
Minimum Qual Requirements
1. A baccalaureate degree, from an accredited college including or supplemented by twenty-four (24) semester credits in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or
2. A four-year high school diploma or its equivalent approved by a State’s department of education or a recognized accrediting organization and three years of satisfactory experience in any of the areas described in “1” above; or
3. Education and/or experience equivalent to “1” or “2”, above. College education may be substituted for up to two years of the required experience in “2” above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. In addition, twenty-four (24) credits from an accredited college or graduate school in cyber security, network security, computer science, computer programming, computer engineering, information technology, information science, information systems management, network administration, or a pertinent scientific, technical or related area; or a certificate of at least 625 hours in computer programming from an accredited technical school (post high school), may be substituted for one year of experience.
The preferred candidate should possess the following:
• Excellent verbal and written communication skills;
• Previous experience briefing both technical and executive audiences;
• Previous experience in project management
• Experience tracking and monitoring changes in geo-political events, malware, phishing campaigns, actor TTPs, etc.;
• Previous experience vetting intelligence partners and data sources;
• Experience capturing and actioning strategic intelligence requirements across a large organization;
• Strong understanding of cybersecurity and risk management concepts;
• Prior experience as a threat intelligence practitioner with a strong understanding of intelligence lifecycle management;
• In-depth knowledge of the cyber threat landscape and how to apply attacker motivation, capability and intent to an organizational threat landscape;
• Experience authoring and reviewing finished intelligence products at all audience levels;
• Previous experience collecting and analyzing all-source intelligence - OSINT, Intel Feeds, Tools, Vendor, Partner, Deep Web, etc.;
• Working knowledge of disseminating intelligence - including managing role based access in knowledgebase systems, product design, capturing relevant metrics, etc.;
• Experienced with providing mentorship to peers, interns, and college-aides.
Special Note: Taking and passing civil service exams are necessary to maintain employment with the City of New York. Please check the Department of Citywide Administrative Services (DCAS) website (http://www.nyc.gov/html/dcas/html/work/exam_monthly.shtml) for important exam filing information. Please ensure that you are either a permanent employee in the civil service title listed on this posting, or, that you file for the examination when there is an open filing period. For more information regarding the civil service process, please visit the DCAS website at: http://www.nyc.gov/html/dcas/html/work/work.shtml
* Interested applicants with other civil service titles who meet the preferred requirements should also submit a resume for consideration
For City employees, please go to Employee Self Service (ESS), click on Recruiting Activities > Careers, and search for Job ID #471327
For all other applicants, please go to www.nyc.gov/jobs/search and search for Job ID #471327
SUBMISSION OF A RESUME IS NOT A GUARANTEE THAT YOU WILL RECEIVE AN INTERVIEW
APPOINTMENTS ARE SUBJECT TO OVERSIGHT APPROVAL
NOTE: This position is open to qualified persons with a disability who are eligible for the 55-a Program.
Please indicate in your cover letter that you would like to be considered for the position under the 55-a program.
Department of Information Technology & Telecommunications and the City of New York are equal opportunity employers.
DoITT participates in E-Verify
Day - Due to the necessary technical support duties of this position in a 24/7 operation, candidate may be required to work various shifts such as weekends and/or nights/evenings.
New York, NY
New York City residency is generally required within 90 days of appointment. However, City Employees in certain titles who have worked for the City for 2 continuous years may also be eligible to reside in Nassau, Suffolk, Putnam, Westchester, Rockland, or Orange County. To determine if the residency requirement applies to you, please discuss with the agency representative at the time of interview.