Proposed Salary Range$100,000.00 – $120,000.00 (Annual)
The Mayor’s Office of Contract Services (MOCS) is a New York City oversight and service agency that manages procurement citywide, from planning and release of agency solicitations to payment of vendors. Annually, agencies procure billions in products and services from a diverse pool of vendors that represent various industries. MOCS therefore aims to ensure that the procurement process remains fair, transparent, efficient and cost-effective.
MOCS makes it easier to do business through use of end-to-end technology tools, increases transparency by publication of enriched data and hosting public hearings, and strengthens procurement operations by providing direct assistance and resources to all stakeholders. MOCS also partners with agencies and vendors to identify areas for policy reform, resulting in ongoing process improvement to reduce administrative burdens and increase the positive impact of services on communities. The MOCS Director serves as the City Chief Procurement Officer.
MOCS team members operate in a fast-paced, collaborative, service-oriented environment, where flexibility and ability to achieve results are valued. All managers lead teams and/or lines of service, assuming increasing levels of responsibility for the organization’s success. Managers align daily operations to the agency’s strategic priorities, engage stakeholders in planning, and drive performance using well-defined success metrics, along with effective people and project management strategies (including but not limited to the assignment of work, maintenance of performance standards, maintaining baseline staff knowledge and professional development). MOCS maintains a lean staffing model, with managers both supervising and implementing tasks within or across areas of responsibility. All managers are expected to deliver timely and quality work products and services, participate in ongoing improvement activities, proactively deepen their knowledge of procurement and government operations. Managers must serve as principal ambassadors for the organization and are expected to handle confidential matters. promote established priorities, deescalate conflict, and proactively escalate issues along with proposed solutions.
The IT Security Engineer Manager will lead the implementation and management of information security controls to optimize the overall information security posture of MOCS. The IT Security Engineer Manager will manage and conduct periodic risk assessments to develop and implement appropriate mitigation plans. The IT Security Engineer Manager will also advise technical professionals on the implementation of security controls to meet security and privacy compliance requirements in accordance with DoITT Citywide security policies and provide overall information security awareness for the agency.
Responsibilities include, but are not limited to the following:
• Lead day to day IT security operations for MOCS.
• Manage and coordinate operational components of incident management, including detection, response, and reporting.
• Manage production issues and incidents and participate in problem and change management forums.
• Assist and guide the disaster recovery planning in the selection of recovery strategies and the development, testing and maintenance of disaster recovery plans.
• Design, coordinate and oversee security testing procedures to verify the security of systems, networks and applications, and manage the remediation of identified risks.
• Collaborate with NYC Cyber Command, DOITT IT Security and IT security vendors to provide solutions addressing the full cyber event and incident response life cycle.
• Consult with DOITT IT Engineering and operations teams to ensure that security is factored into the resolution, selection, installation and configuration of hardware, applications, and software.
• Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.
• Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware or software.
• Provide technical and managerial expertise for the administration of security tools.
• Lead large-scale projects that include infrastructure upgrades, new technology, pen testing, vulnerability analysis and risk management.
• Provide security communication, awareness and training for audiences which may range from senior leaders to field staff.
• Work with various stakeholders to identify information asset owners to classify data and systems as part of an access control framework implementation.
• Serve as an active and consistent participant in the information security governance process.
• Work with the IT and business stakeholders to define metrics and reporting strategies that effectively communicate successes and progress of the security program.
• Assist with the design and compliance of internal security policies and applicable laws and regulations.
• Provide support and guidance for legal and regulatory compliance efforts, including audit support.
• Coordinate the development of risk assessments, audit plans and scopes for internal audit and compliance engagements.
• Prepare and review internal audit and compliance reports.
• Ensure that a full security assessment, including a vulnerability scan and penetration test is carried out so that an information security strategy is developed and aligned to service and operational requirements.
• Perform special projects and initiatives as assigned.
Minimum Qual Requirements
1. Graduation from an accredited college with a baccalaureate degree; or
2. Graduation from an accredited community college plus two years of experience with administrative, analytic, coordinative, supervisory or liaison responsibilities; or
3. A four year high school diploma or its educational equivalent plus four years of experience as described in “2” above; or
4. A satisfactory equivalent combination of education and experience
• Experience in large enterprise security planning, design, configuration, installation, troubleshooting, integration, security performance monitoring, product maintenance, and security product configuration enhancements
• Demonstrated capabilities to assess organizational cybersecurity hygiene, quantify cyber risks, and recommend tactical and strategic courses of action
• Knowledge of information security technologies, complex network architecture, internet connectivity and DMZ strategies
• Knowledge of common information security management frameworks, such as NIST.
• Understanding of the current cyber threat landscape, attack methodologies, and risk mitigation/ remediation strategies.
• Experience in cyber forensics and threat analysis.
• Knowledge of data management and data classification concepts, architecture, federation, PKI and cryptography.
• Knowledge of data privacy regulations, and compliance issues.
• Exceptional knowledge of Microsoft Office programs such as Word, Excel, Access, PowerPoint and Visio.
• Outstanding collaboration, team building and problem-solving skills.
• Ability to communicate with all levels of stakeholders for requirements gathering and clarifying requirements.
• Excellent analytic, organization, presentation and facilitation skills with the ability to handle multiple tasks under tight deadlines.
• Attention to detail.
• Learn and adapt to new management software systems (i.e. Remedy, HP Quality Center, SharePoint, etc.)
**As of August 2, 2021, all new hires must be vaccinated against the COVID-19 virus, unless they have been granted a reasonable accommodation for religion or disability. If you are offered city employment, this requirement must be met by your date of hire, unless a reasonable accommodation for exemption is received and approved by the hiring agency.**
See DCAS Directive No. 2020-2 (https://www1.nyc.gov/assets/dcas/downloads/pdf/agencies/directive_2020_2.pdf) regarding residency requirement during the COVID-19 emergency.
The U.S. Department of Education provides student loan forgiveness through the Public Service Loan Forgiveness Program (PSLFP) to qualifying public service employees. As an employee of the City of New York, you may be eligible for loan forgiveness should you meet the program’s eligibility requirements. For additional information on PSLFP, please visit https://studentaid.ed.gov/sa/repay-loans/forgiveness-cancellation/public-service.
External Applicants, please go to www.nyc.gov/jobs and search for Job ID#: 466008.
Current City Employees, please go to www.nyc.gov/ess and search for Job ID#: 466008.
Mayor’s Office of Contract Services is an equal opportunity employer. Mayor’s Office of Contract Services recognizes the unique skills and strengths gained through military service. Veterans and service members of the U.S. Armed Forces are strongly encouraged to apply. Special accommodations provided to applicants with disabilities. Please contact MOCS Disability Service Facilitator at email@example.com or 212-298-0734 only to request an accommodation. No other phone calls or personal inquiries permitted.
For technical assistance, please use the following supported browsers: Chrome 35 and above, Firefox 24 and above, Internet Explorer 9 and above, and Safari 6 and above. If you encounter any errors, please clear your cache (web browser history). For instructions, please visit https://a127-jobs.nyc.gov/psc/nycjobs/EMPLOYEE/HRMS/c/HRS_HRAM_FL.HRS_CG_SEARCH_FL.GBL?Page=NYC_EHIRE_HELP_FL&Action=U&. When navigating this website, you should use only the links and navigational buttons within the pages. Using your web browser’s BACK, FORWARD or REFRESH buttons may cause loss of data or lead to unintentional log outs.
255 Greenwich Street. New York, NY 10007
New York City residency is generally required within 90 days of appointment. However, City Employees in certain titles who have worked for the City for 2 continuous years may also be eligible to reside in Nassau, Suffolk, Putnam, Westchester, Rockland, or Orange County. To determine if the residency requirement applies to you, please discuss with the agency representative at the time of interview.
Please note that certain computer-related civil service titles are exempt from NYC residency requirement