The Fund for Public Health in New York City (FPHNYC) is a 501(c)3 non-profit organization that is dedicated to the advancement of the health and well-being of all New Yorkers. To this end, in partnership with the New York City Department of Health and Mental Hygiene (DOHMH), FPHNYC incubates innovative public health initiatives implemented by DOHMH to advance community health throughout the city. It facilitates partnerships, often new and unconventional, between government and the private sector to develop, test, and launch new initiatives. These collaborations speed the execution of demonstration projects, effect expansion of successful pilot programs, and support rapid implementation to meet the public health needs of individuals, families, and communities across New York City.

PROGRAM OVERVIEW:

The Division of Information Technology aims to align technology solutions with the DOHMH mission by prioritizing resource use and deploying innovations that facilitate the agencys day-to-day activities and enhance staff productivity and efficiency. Our goal is to provide users with a reliable, stable, and safe computing environment, through the collaboration of the Bureau of Technology Strategy & Project Management provides business analysis and IT project management services to define and deliver IT solutions that meet all program needs.

POSITION OVERVIEW:

The New York City Department of Health and Mental Hygiene (DOHMH) is seeking a qualified individual to fill the Cybersecurity Vulnerability Data Engineer role. We are currently seeking a data engineer to provide quality measurements, trends, and insights to the vulnerability remediation teams. This role will drive key strategic initiatives focused on operational excellence in reporting vulnerabilities to facilitate business decisions, automation development, and updates to executive dashboards, reports, and templates.

RESPONSIBILITIES:

• Develop, implement, and maintain the processes and capabilities of risk-driven vulnerability management and security testing program in a continuous improvement model.
• Deploy and operate open source and commercial vulnerability assessment and management tools.
• Provide vulnerability assessment, reporting, and remediation techniques to various technical teams.
• Identify gaps and opportunities through KPIs, KRIs, and additional metrics for executive audiences.
• Provide threat and vulnerability monitoring and identification.
• Triage discrepancies across reporting systems.

QUALIFICATIONS:

• Strong understanding of vulnerability management and software development lifecycles.
• Strong knowledge of the CVE program, Common Vulnerability Scoring System (CVSS), and other industry-specific vulnerability classification standards, frameworks, and best practices.
• Strong understanding of TCP / IP addressing, ports, protocols, services, DNS, DHCP, NAT, PAT, subnetting, and CIDR.
• Expertise in leading vulnerability/risk scanning and measurement tools - Rapid 7 Nexpose & InsightVM, Qualys, Tenable, Kenna, Metasploit, Burp, Prisma Cloud, etc.
• Expertise in static and dynamic application security tools (AppScan, Veracode), techniques, procedures, and the ability to interpret reports & explain them to application partners.

PREFERRED EDUCATION/SKILLS

• Bachelors degree in Computer Science, Information Technology, Information Systems, or equivalent education or work experience.
• 4+ years of prior relevant experience.
• Strong oral and written communication.
• Strong analytical and problem-solving skills.

SALARY AND BENEFITS

FPHNYC offers a comprehensive benefits package. The salary range for this position is commensurate with experience.

ADDITIONAL INFORMATION

There is potential for this position to transition to DOHMH and therefore candidates must meet DOHMH eligibility requirement including NYC residency.

TO APPLY

To apply, send Resume, with Cover Letter, including how your experience relates to this position. We ask that you do not contact our staff directly and no phone inquiries please. Applicants who best match the position needs will be contacted.

The Fund for Public Health in New York City is an Equal Opportunity Employer and encourages a diverse pool of candidates to apply.