Senior Cybersecurity Engineer

Summary:     

The Child Mind Institute is seeking a highly skilled and dependable individual to join our team as a Senior Cybersecurity Engineer.

Reporting to the Director of Information Security, this is a Full-Time Exempt position located in our NYC headquarters office. 

We’re dedicated to transforming the lives of children and families struggling with mental health and learning disorders by giving them the help they need. We’ve become the leading independent nonprofit in children’s mental health by providing gold-standard evidence-based care, delivering educational resources to millions of families each year, training educators in underserved communities, and developing tomorrow’s breakthrough treatments. 

The Child Mind Institute is proud to be named a Great Place to Work-Certified company! Our competitive compensation and benefits include medical insurance, 401(k), paid parental leave, dependent care, flexible work schedules, discounted tickets and entertainment perks programs. For more information about our benefits, please visit our employee benefits website. 

Child Mind Institute is committed to creating an inclusive culture where all employees feel welcomed and valued.   

Responsibilities:  

•           Implement the cybersecurity requirements of networks, systems, and applications, documenting them in formal security engineering documents using the Risk Management Framework and supporting artifacts associated with risk assessments.

•           Work directly with system engineers, security leadership team, and management to deliver results for internal and Client environments.

•           Conducts periodic tests, and scans of networks and systems to find and mitigate vulnerabilities. This includes the monitoring and response to Intrusion Detection System (IDS), alerts from 3rd-party solutions, and anti-virus alerts.

•           Review threat and vulnerabilities identified from security tools and threat intelligence, understand vulnerabilities as they related to the platforms, and understand misconfigurations, and communicate results.

•           Provide subject matter expertise on architecture, authentication, and systems security.

•           Design, install and configure network security architectures, including firewalls, Demilitarized Zones (DMZ), router ACLs (Access Control Lists), and web content filters.

•           Design security controls appropriate for cloud environments (Microsoft365 and Azure or AWS -hosted solutions)

•           Applying security controls as part of zero-trust strategy

•           Responsible for managing vulnerability scanning tools (Tenable, Rapid7, Qualys etc.)

•           Work with existing security tools and vendors to assist with:

•           Assist in digital investigations for security incidents.

•           Assist in executing processes and activities within the security Incident response lifecycle.

•           Develop, test, document, employ and communicate threat hunting methodologies, findings, and outcomes and aid in development of metrics. This includes reports with varying levels of leadership.

•           Assist in threat hunting to identify, classify, prioritize, and report on cyber threats following industry best practices.

•           Author, update, and maintain SOPs, playbooks, work instructions.

•           Create reports on evaluations and recommendations.

•           Other duties as assigned. 

Qualifications:  

• 5+ years working experience in an IT or Information Security Department 
• Bachelors degree in field related IT or technical certifications including: CISSP, CISM, COMP TIA, CCSP, CISA, Ethical Hacking, etc.
• Excellent team participation skills (listening, contributing, leading).
• Excellent communication skills, both written and verbal, 
• Excellent critical thinking and problem-solving skills including the ability to troubleshoot security incidents in a team environment.

• Professional demeanor and attitude.
• Self-starter and team player able to establish and maintain effective working relationships.

• Passion for the Child Mind Institute’s mission.

Special Considerations: 

Please upload your CV during the application process.  

The salary range for the position is posted. Factors such as candidate's work experience, education/training, job-related skills, internal peer equity, as well as market and business considerations affect the salary offered within this range. In addition, this salary may be subject to a geographic adjustment (according to a specific city and state and depending on the role), if an authorization is granted to work outside of the location listed in this posting. 

The Child Mind Institute is an equal opportunity employer and does not discriminate in employment based on race, religion (including religious dress and grooming practices), color, sex/gender (including pregnancy, childbirth, breastfeeding or related medical conditions), sex  stereotype, gender identity/gender expression/transgender (including whether or not you are transitioning or have transitioned) and sexual orientation; national origin (including language use restrictions and possession of a driver's license issued to persons unable to prove their presence in the United States is authorized under federal law [Vehicle Code section 12801.9]); ancestry, physical or mental disability, medical condition, genetic information/characteristics, marital status/registered domestic partner status, age (40 and over), sexual orientation, military or veteran status, or any other basis protected by federal, state or local law or ordinance or regulation.