FDNY SECURITY ENGINEER

S

Stratford Solutions Inc.

FDNY SECURITY ENGINEER

Brooklyn, NY
Full Time
Paid
  • Responsibilities

    Title: FDNY Security Engineer - Specialist 3

    Location: On-Site 9 MetroTech Brooklyn, NY 11201

    Scheduled Work Hours: Monday-Friday 9-5, 35 Hours/Week

    Rate: $90-$100/Hour

    SCOPE OF SERVICES TASKS:

    • Participate in the implementation of security controls in a Public Safety ESINET and NENA compliant NG911 system.

    • Ensure the security controls are adequate for all Public Safety Answering points (PSAPs) in the commission of the 911 program at PSAP.

    • Develop security configurations.

    • Establish security best practices as well as review all vendor designs ensuring compliance with security standards and governance models established by the City of New York.

    • Provide expertise in integration and engineering of Security platforms.

    • Manage test cases and identify risks associated with system integrations

    • Work with vendors to integrate security platforms into Public Safety infrastructure

    • Architect security controls.

    • Assess Active Directory security roles and policies

    • Configure IDS/IPS security policies

    • Troubleshoot level 3 security related issues.

    • Configure security policies in DNS

    • Examine current firewall policies and ensure completeness and accuracy

    Lead resolution of security incidents

    MANDATORY SKILLS/EXPERIENCE Note: Candidates who do not have the mandatory skills will not be considered

    • Minimum of 12 years Security Engineering experience

    • Strong network security experience

    • Strong project management experience

    • Must be able to lead projects

    • Any compliance experience, specifically HIPAA, is highly desirable

    • Bachelor’s degree in computer science, information technology or related field.

    • Should be able to utilize security frameworks like NIST and MITRE.

    • Strong knowledge of security management tools to facilitate troubleshooting, i.e. Wireshark, Net brain, Extra hop, Net witness etc.

    • Strong Identity and Access Management background • Experience with configuring DNS

    • Strong experience in performing security risk assessments

    • Understanding of the various VPN technologies

    • Knowledge of resilient designs to ensure high availability

    • Knowledge of IPS/IDS design as standalone hardware or as a feature within firewalls

    • Ability to create reports using KRI and KPI

    • Experience with Next Generation Firewalls including Palo alto, Fortinet, Forcepoint, etc.

    • Work with vendors, carriers, and other technical groups to implement new security controls and troubleshoot existing controls.

    DESIRABLE SKILLS/EXPERIENCE:

    • Understanding of SIP security design and implementation for Voice/Video and Data.

    • Understanding for firewall policies and application security

    • Experience in auditing/assessing data network security design.

    • Experience in auditing/assessing applications security design.