Job Description

THE SELECTED CANDIDATE WILL BE OFFERED A SALARY BETWEEN $155,000.00 - $165,000.00.

The Administration for Children’s Services (ACS) protects and promotes the safety and well-being of children and families through child welfare and juvenile justice services and community supports. ACS manages community-based supports and foster care services, and provides subsidized child care vouchers. ACS child protection staff respond to allegations of child maltreatment. In juvenile justice, ACS oversees detention, placement and programs for youth in the community.

ACS' Office of Information Technology (OIT) is responsible for providing high-quality, reliable, and sustainable technology services as well as IT support to meet the needs of the families and children we serve through ACS, its vendor partners, and other City agencies. Within OIT, the Chief Information Security Officer (CISO) Unit is responsible for establishing and maintaining the information security program at ACS to ensure information assets and technologies are adequately protected. This Unit directs staff in identifying, developing, implementing, and maintaining processes across ACS and its program divisions to reduce information and IT risks. The CISO Unit also responds to incidents, establishes appropriate standards and controls, manages security technologies, and directs establishment and implementation of policies and procedures.

Reporting to the ACS Chief Information Security Officer (CISO), the Deputy CISO role is pivotal for maintaining an enterprise-wide, information risk management program, and cybersecurity organization.

The Deputy CISO will be responsible for performing the following duties, but will not be limited to:

Strategic Leadership:

• Partner with the CISO to work closely with all areas of ACS' business to develop and articulate a shared vision for a "best-in-class" information security and compliance program aligned with the objectives of the Agency.

Security Architecture and Design:

• Responsibilities include strategy, architecture, solutions design, program coordination and execution, awareness, outreach, business management, and reporting on information security program effectiveness.

Policy Development and Compliance:

• Develop and maintain information security policies, standards, and procedures in compliance with regulatory requirements and industry best practices to ensure adherence across the organization.

Security Awareness and Training:

• Work closely with NYC Cyber and CISO to develop and deliver comprehensive security awareness and training programs to educate employees and stakeholders about information security risks, policies and best practices, and monitor training compliance.

Incident Response and Investigation:

• Work alongside the CISO to lead incident response efforts, including investigation, containment, and remediation of security incidents and breaches in coordination with internal teams and external stakeholders like NYC Cyber and NYC Office of Technology and Innovation (OTI).

Continuous Improvement:

• Monitor emerging threats, technologies, and industry trends to proactively identify areas for improvement and innovation in the agency's information security program.

Reporting and Metrics:

• Prepare regular performance metrics to report on the effectiveness of the information security program, including key performance indicators (KPIs) and key risk indicators (KRIs) for presentations to Executive Leadership and the CIO.

• Develop and manage strong strategic relationships within IT. Ensuring projects, initiatives, and security platforms are meeting NIST 800-53, SOC Type II, and FedRamp standards.

ADDITIONAL INFORMATION:

Section 424-A of the New York Social Services Law requires an authorized agency to inquire whether a candidate for employment with child-caring responsibilities has been the subject of a child abuse and maltreatment report.

TO APPLY:

• Please go to www.cityjobs.nyc.gov or www.nyc.gov/ess for current NYC employees and search for Job ID #645851

• NO PHONE CALLS, FAXES, OR PERSONAL INQUIRES PERMITTED

• NOTE: ONLY THOSE CANDIDATES UNDER CONSIDERATION WILL BE CONTACTED

Qualifications

A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or,

Education and/or experience which is equivalent to "1" above.

Additional Information

The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.