The New York City Department of Investigation (DOI) is one of the oldest law enforcement agencies in the country with a mission of combating municipal corruption. It serves the people of New York City by acting as an independent and nonpartisan watchdog for New York City government, City agencies, and City employees, vendors with City contracts, individuals and entities that receive City funds.
The Information Technology Unit of the NYC Department of Investigation is currently seeking a highly skilled and motivated Data Security Engineer to join our team and play a pivotal role in safeguarding our organization against cyber threats as well as our agency's sensitive data, including data stored within databases. Your responsibilities encompass the design, implementation, and maintenance of security measures to protect data at rest and in transit. You will work collaboratively with cross-functional teams to ensure data security best practices, compliance, and the implementation of Data Loss Prevention (DLP) measures. If you're passionate about defending against cyber threats and want to be part of a dynamic and innovative agency, we want to hear from you.

Key Responsibilities:
As a Data Security Engineer at DOI, your duties include but are not limited to:

-Design, implement, and maintain security measures for data and databases, including encryption, access controls, and authentication mechanisms.
-Classify data based on its sensitivity and ensure appropriate levels of protection.
-Establish and enforce data access controls, user permissions, and least privilege principles to limit access to authorized personnel.
- Secure and harden database configurations to minimize security vulnerabilities, ensuring compliance with industry standards.
-Implement and manage encryption technologies to protect data at rest and in transit.
-Configure and monitor database audit trails to track data access and changes.
-Ensure compliance with relevant data security regulations, such as HIPAA, NIST, and industry standards like ISO 2700 Series.
-Deploy and manage DLP solutions to prevent unauthorized data leakage and monitor data flows.
-Regularly scan and assess data and databases for vulnerabilities and prioritize remediation.
-Develop and practice an incident response plan for data and database-related security incidents.
-Maintain accurate documentation of data classifications, database configurations, security policies, and incident response procedures.
-Provide training and guidance to data users and database administrators on security best practices, compliance requirements, and DLP policies.
-Conduct regular security audits and assessments of data and databases to identify and rectify security issues.
-Implement robust data backup and recovery procedures to safeguard data and enable rapid restoration in case of data loss.
-Stay updated on the latest data and database security threats, vulnerabilities, and DLP best practices and adapt security measures accordingly

(1) A baccalaureate degree from an accredited college, including or supplemented by twenty-four (24) semester credits in computer science or a related computer field and two (2) years of satisfactory full-time software experience in designing, programming, debugging, maintaining, implementing, and enhancing computer software applications, systems programming, systems analysis and design, data communication software, or database design and programming, including one year in a project leader capacity or as a major contributor on a complex project; or
(2) A four-year high school diploma or its educational equivalent and six (6) years of full-time satisfactory software experience as described in "1" above, including one year in a project leader capacity or as a major contributor on a complex project; or
(3) A satisfactory combination of education and experience that is equivalent to (1) or (2) above. College education may be substituted for up to two years of the required experience in (2) above on the basis that sixty (60) semester credits from an accredited college is equated to one year of experience. A masters degree in computer science or a related computer field may be substituted for one year of the required experience in (1) or (2) above. However, all candidates must have a four year high school diploma or its educational equivalent, plus at least one (1) year of satisfactory full-time software experience in a project leader capacity or as a major contributor on a complex project.
NOTE: In order to have your experience accepted as Project Leader or Major Contributor experience, you must explain in detail how your experience qualifies you as a project leader or as a major contributor. Experience in computer operations, technical support, quality assurance (QA), hardware installation, help desk, or as an end user will not be accepted for meeting the minimum qualification
requirements.
Special Note
To be eligible for placement in Assignment Level IV, in addition to the Qualification Requirements stated above, individuals must have one year of satisfactory experience in a project leader capacity or as a major contributor on a complex project in data administration, database management systems, operating systems, data communications systems, capacity planning, and/or on-line applications programming.

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.