Sign upLog in
IT Jobs

IT Security Specialist

Compu-Vision Consulting Inc.

New York, NY

Apply
JOB DETAILS
SALARY
$80–$85 Per Hour
SKILLS
Access Control, Analysis Skills, Antivirus, Applications Security, Best Practices, Cloud Applications, Cloud Computing, Communication Skills, Computer Security, Continuous Improvement, Corrective Action, Cross-Functional, Cryptographic Protocols, Cryptography, Data Visualization, Documentation, Enterprise Protection, Establish Priorities, External Audit, Financial Trend Analysis, Firewalls, Information Technology & Information Systems, Information/Data Security (InfoSec), Internal Audit, Intrusion Detection Systems, Intrusion Prevention Systems, Leadership, Mentoring, Metrics, Network Monitoring, Network Systems, Operational Improvement, Operational Support, Operations Security (OPSEC), Phishing, Presentation/Verbal Skills, Process Improvement, Regulatory Compliance, Regulatory Requirements, Reporting Dashboards, Reporting Skills, Risk, Risk Analysis, Risk Management, Root Cause Analysis, Routing Protocols, Security Analysis, Security Auditing, Security Compliance, Security Information and Event Management (SIEM), Security Infrastructure, Security Monitoring, Security Protocols, Software Patches, Status Reports, Support Documentation, Technical Leadership, Trend Analysis, Vulnerability Scanners, Writing Skills
LOCATION
New York, NY
POSTED
4 days ago
Title: IT Security Specialist
Location: New York, NY
Duration: 1 year

Job Description:

Objectives
" Enhance the overall security posture of Client's IT infrastructure across cloud, on-premises, and hybrid environments.
" Identify, assess, prioritize, and mitigate security risks and vulnerabilities.
" Strengthen cyber compliance alignment with applicable regulations, city mandates, and security frameworks.
" Improve vulnerability management processes and remediation tracking.
" Support proactive detection, response, and operational security activities.
" Build internal security capability through mentoring and team collaboration.
" Promote security awareness and best practices across the agency.

Responsibilities
1. Cyber Compliance & Governance
" Support compliance with relevant security standards, city policies, and regulatory requirements.
" Assist in maintaining security documentation, including policies, standards, and procedures.
" Participate in internal and external security audits and assessments.
" Support POAM tracking, remediation validation, and risk acceptance documentation.
" Provide compliance reporting and status updates to leadership.
" Ensure new systems, enhancements, and integrations follow required security accreditation processes.

2. Risk Assessment & Risk Management
" Conduct and support enterprise risk assessments.
" Identify, evaluate, and document security risks across applications, infrastructure, endpoints, and cloud systems.
" Recommend risk mitigation strategies and track remediation efforts.
" Assist in maintaining risk registers and risk dashboards.
" Support third-party/vendor risk evaluations where applicable.
" Provide executive-ready summaries of risk exposure and remediation progress.

3. Vulnerability Management
" Conduct regular vulnerability scans using tools such as Rapid7.
" Analyze vulnerability findings and prioritize remediation based on risk impact.
" Work with IT and infrastructure teams to coordinate patching and remediation.
" Validate remediation efforts and perform re-scans as needed.
" Develop reporting dashboards to track vulnerability trends and closure rates.
" Support endpoint vulnerability analysis leveraging tools such as CrowdStrike and related platforms.

4. Security Operations & Monitoring
" Monitor network and system activity for suspicious behavior and unauthorized access attempts.
" Investigate security alerts and incidents.
" Perform root cause analysis and implement corrective and preventive actions.
" Assist in improving detection capabilities and alert tuning.
" Support log monitoring and integration efforts (e.g., SIEM environments).
" Maintain awareness of emerging threats, vulnerabilities, and attack trends.

5. Endpoint & Infrastructure Security
" Advise on security controls, including firewalls, IDS/IPS, endpoint detection and response (EDR), antivirus, encryption, and access controls.
" Support endpoint hardening initiatives.
" Assist in configuration reviews and baseline validation.
" Provide operational support for day-to-day security tasks across infrastructure and endpoints.

6. Team Building, Mentoring & Collaboration
" Mentor junior security staff and provide technical guidance.
" Promote knowledge sharing within the IT Security team.
" Support cross-functional collaboration with infrastructure, application, and cloud teams.
" Assist in developing internal security capabilities and improving operational maturity.
" Contribute to a culture of accountability, ownership, and continuous improvement.

7. Security Awareness & Training
" Develop and deliver security awareness materials and training sessions.
" Guide IT staff and end-users on security best practices.
" Support phishing simulations and awareness initiatives.
" Assist leadership in promoting a security-first mindset across the agency.

8. Reporting & Executive Communication
" Prepare and present reports on:
o Risk assessments o Vulnerability metrics
o Incident trends
o Compliance status o Remediation progress
" Develop dashboards and visualizations to support data-driven decision making.
" Provide clear, concise updates to management and executive leadership.

Deliverables:

" Enterprise security risk assessments and risk register updates.
" Vulnerability assessment reports with remediation tracking.
" Compliance status reports and audit support documentation.
" Updated security policies, procedures, and standards.
" Incident response documentation and post-incident analysis reports.
" Security awareness training materials and sessions.
" Executive-level security metrics dashboards.

Preferred Skills:

" Strong verbal and written communication skills.
" Ability to work independently and collaboratively in a team environment.
" Knowledge of networking concepts (firewalls, routing, protocols).
" Working knowledge of Rapid7 or similar vulnerability management platforms.
" Working knowledge of CrowdStrike or similar EDR tools.
" Familiarity with security frameworks and information security domains.
" Knowledge of security protocols and encryption standards.
" Understanding of cloud security principles and hybrid environments.
" Experience with risk assessment methodologies.
" Ability to mentor and guide team members.

About the Company

C

Compu-Vision Consulting Inc.

Similar Job Searches

Application Analyst JobsCisco Engineer JobsClinical Systems Analyst JobsComputer Analyst JobsComputer Consultant JobsComputer Operator JobsComputer Specialist JobsComputer Systems Specialist JobsComputer Technician JobsConfiguration Analyst Jobs