About Us:

NYSTEC is a nonprofit technology consulting company, advising agencies, organizations, institutions, and businesses since 1996. We’re independent and vendor-neutral, so we have our clients’ best interests at heart. At NYSTEC, we know that we succeed when individuals and teams flourish personally and professionally, so our benefits and perks support that mindset.

About the Role:

As a principal consultant - cybersecurity technical project manager, you will collaborate with team members to conceptualize, deliver, and support our clients through today’s ever-changing landscape. NYSTEC is considered a trusted advisor, partner of choice, and employer of choice. We believe that every interaction is an opportunity to deliver exceptional service that empowers client success!

NYSTEC is looking for a dedicated and qualified technical resource for a New York City (NYC) organization to support technical cybersecurity compliance and project management needs. This position requires on-site presence at the client’s location in NYC.

Key Responsibilities

• Organizational cybersecurity compliance.

• Update and/or develop new security policies, standards, procedures, checklists, technical reports, and guidelines to meet regulatory requirements.
• Develop and maintain system security plans.
• Maintain a plan of actions and milestones (POA&M).

• Technical project management.

• Assist the agency’s chief information security officer (CISO) and the security team with day-to-day management of security activities.
• Manage projects related to the design and implementation of security controls, tools, and integrations.
• Manage vendors in their execution of statements of work and hold them accountable.
• Perform project planning and execution, change management, and cross-functional team management in a matrixed environment.
• Coordinate responses to audits.

About You:

Required Qualifications

• Experience writing and/or updating cybersecurity policies and procedures.
• Experience updating system security plans.
• Experience with cybersecurity project manager.
• Knowledge of and experience with the implementation of National Institute of Standards and Technology (NIST) 800-53 controls.
• Knowledge of and experience with the NIST Cyber Security Framework (NIST CSF).
• Knowledge of and experience with the NIST Risk Management Framework (NIST RMF).
• Knowledge of and experience with the Health Insurance Portability and Accountability Act (HIPAA) Security and Privacy Rule.

Preferred Qualifications

• Information systems security certification (e.g., certified information systems security professional [CISSP], certified information systems auditor [CISA], certified information security manager [CISM]).
• Project management certification (e.g., project management professional [PMP]).

Education and Experience

• Eight years of experience in cybersecurity and compliance.
• Two years of experience in project management.
• A bachelor’s degree in a related field of study.
• An equivalent combination of advanced education, training, and experience will be considered.

The pay range for this position is $121,355.00 to $167,000.00 per year.

It is NYSTEC's policy to provide equal employment opportunity (EEO) to all individuals, regardless of actual or perceived race, color, creed, religion, sex, or gender (including pregnancy, childbirth, and related medical conditions), gender identity or gender expression (including transgender status), age, national origin, ancestry, citizenship status, physical or mental disability, protected medical condition as defined by applicable state or local law, genetic information, military service and veteran status, sexual orientation, marital status, or any other characteristic protected by local, state, or federal laws and ordinances. NYSTEC is strongly committed to this policy and believes in the concept and spirit of the law.

Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please contact recruitment@nystec.com if you require a reasonable accommodation to apply for or to perform this job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

Applicants must be authorized to work in the United States without the need for visa sponsorship now or in the future.

Learn more about NYSTEC by visiting www.nystec.com.