Job Information

CUNY Computer System Manager, Level 4 (Provisional) Lead IT Security Engineer - Office of Information Technology in New York, New York

Computer System Manager, Level 4 (Provisional) Lead IT Security Engineer - Office of Information Technology

Job ID



City College of New York

Full/Part Time



Add to My Favorite Jobs


I.T. Computer Systems Managers manage and direct an Information Technology area at a College or University level. They set policies and procedures, direct technical staff, and maintain responsibility for administrative as well as technical issues within their assigned area(s) of responsibility. They may manage major and/or large, complex information systems activities and/or manage a unit or group.

This job is in CUNY's Classified Managerial Service. The full specification is available on our web site at


Computer Systems Manager




The City College of New York (CCNY) is the founding institution of the City University of New York (CUNY) and is comprised of outstanding programs in architecture, engineering, medicine, and the liberal arts and sciences, annually serving over 16,000 undergraduate and graduate students. Leading CUNY in funded research, CCNY hosts several research centers, including two new advanced research centers.

CCNY's Office of Information Technology (OIT) is a vital component of the college's operation and is responsible for software applications, hardware support, telecommunications, media services, network infrastructure, instructional technologies, and information security. The OIT is committed to collaborating with the college community to provide excellent information technology products and services.

Under the general supervision of the Chief Information Officer and/or Deputy CIO, exercising independent initiative and judgment, the Lead IT Security Engineer will manage the City College of New York (CCNY) Office of Information Technology (OIT) Security Teams may manage other infrastructure groups. They will design, coordinate, and implement technical and procedural security initiatives. They will develop, analyze, and refine the College's information security protocols and technologies; maintain the College's information security infrastructure; ensure effective responses to information security threats and incidents; develop long-range goals for strategic IT security plans; maintain up-to-date knowledge of regulations governing security initiatives in academia and health care; conduct security monitoring, assessments, and audits; and promote awareness of information security best practices to the college community.

The Lead IT Security Engineer is expected to take a hands-on approach, leading proactive vulnerability assessments and the implementation of effective procedures and technical safeguards to mitigate information security risks. In fulfilling his or her duties, they will collaborate with other OIT units, including Networking, Telecommunications, IT Operations, User and Instructional Support Services, Application Development, and Business Services. They will also confer with college executives, faculty, staff, students, and contractors on information security-related matters and special projects.

The successful candidate will be expected to:

  • Lead and manage the campus incident management response and procedures by providing accurate, comprehensive, and timely communication of each incident's containment, reporting assessment, investigation, and correct problems while taking actions that can prevent future incidents

  • Manage, implement, and maintain campus security operations platforms such as IPS/IDS, firewalls, VPN, perimeter switching/routing, system monitoring logs, and other security appliances and platforms to strengthen defenses and optimize campus security

  • Lead, develop and implement a continuous regiment of vulnerability scans and penetration tests and adopt measures to address security deficiencies effectively and to optimize threat detection

  • Review and analyze the configuration of network and systems security architecture, procedures and technologies (e.g. IPS/IDS, firewalls, server/host protection, network access control, and encryption) and provide ongoing recommendations for achieving optimal security and performance

  • Develop, implement, maintain, and test access controls necessary to protect network perimeter, host systems, software applications, and sensitive data in accordance with security requirements (e.g. FERPA, HIPAA, PCI-DSS privacy requirements and university data retention and destruction policies)

  • Develop and integrate secure college-wide identity management and access control technologies, including password management, directory services, single sign-on, two­factor authentication, PIN management, digital signatures, smart cards, biometrics, PeopleSoft security access provisioning, etc.

  • Develop and promote effective information security awareness training and educational resources for the college community

  • Orchestrate IT Security-related projects from inception through implementation to ensure timely and effective completion in compliance with established security protocols and best practices

  • Design, implement, and manage a comprehensive strategic information security and IT risk management program that ensures to mitigate of system vulnerabilities and reduce attack surface vectors identified through risk assessment and threat modeling

  • In collaboration with college executives and IT managerial staff, generate semesterly security compliance attestation report documenting security risks and recommendations

  • Review, recommend, and drafts policies, procedures, standards in accordance with overall university policy and evolving industry best practices

  • Participate in university information security meetings and lead internal Information Security Task Force, which is comprised of IT managers and the Information Security Office


  1. Six (6) years of progressively responsible full-time paid information systems technology experience, at least 18 months of which shall have been in an administrative or managerial capacity in the areas of computer applications programming, systems programming, information systems development, data telecommunications, data base administration or a closely related area.

  2. Education at an accredited College or University may be substituted for the general information systems technology experience at the rate of one year of college for 6 months of experience up to a maximum of 4 years of college for 2 years of experience. In addition a Master's degree in computer science or a closely related field from an accredited college or university may be substituted for an additional year of the general information systems technology experience. However, all candidates must possess the 18 months of administrative or managerial experience described above.

This title has multiple levels. In addition to the minimum qualifications above, additional qualifications, such as education, experience, or certification relevant to the area of specialization are required.


Preferred Qualifications:

• At least six (6) years of experience in information security

• Must have expertise managing Cisco and Palo Alto next-generation firewalls and VPN, and Cisco routing and switching in an enterprise environment

• Experience with enterprise systems administration including Microsoft, Apple, and Linux/Unix operation systems, and Public/Private cloud platform (i.e., AWS, Azure, Google Cloud Platform)

• Experience using coding, scripting, and database queries and developer and security tools (e.g., Git, BitBucket, Hive, Swarm, etc.) to help analyze and respond to events and to automate processes

• Experience designing, configuring, and integrating network and systems security, including VPN, log analyzers, intrusion detection, intrusion prevention, firewalls, web application firewalls, network access control, and enterprise endpoint security solutions

• Familiarity with network protocols -TCP/UDP, DNS, HTTP/HTTPS, SSH, FTP, etc.

• Knowledge and understanding of relevant legal and regulatory requirements, including the Family Educational Rights and Privacy Act (FERPA), the Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard

• Strong interpersonal communication and writing skills

• Excellent organizational skills and attention to detail

• Experience supervising technical staff

• Relevant information security and/or information technology certifications (CISSP, Security+, CCSP, CISA, CISM)


Salary: $115,000 to $120,000

IMPORTANT NOTICE: Health Plan Coverage for Employees Hired on or after October 1, 2022 City of New York employees and employees of Participating Employers and their eligible dependents hired on or after October 1, 2022 will only be eligible to enroll in the EmblemHealth HIP HMO Preferred Plan and must remain in the HIP HMO Preferred Plan for the first year (365 days) of employment.

After 365 days of employment, the employee will have the option of either remaining in the HIP HMO Preferred Plan or selecting a different health plan within 30 days before the end of the 365th day period.

If a new health plan is selected, the new plan will be effective on the 366th day.

Only after the 365th day can the employee participate in any Annual Fall Transfer Period. An employee who needs to request an exemption from the required enrollment in the HIP HMO Preferred Plan can do so by submitting a HIP HMO Opt-Out Request Form to EmblemHealth. An employee, or eligible dependent, must meet certain criteria and the request must be approved by EmblemHealth before the exemption is granted. The HIP HMO Opt-Out Request Form and HIP service area are available on the EmblemHealth website.


CUNY offers a comprehensive benefits package to employees and eligible dependents based on job title and classification. Employees are also offered pension and Tax-Deferred Savings Plans. Part-time employees must meet a weekly or semester work hour criteria to be eligible for health benefits. Health benefits are also extended to retirees who meet the eligibility criteria.


If you are viewing this job posting in CUNYFirst, please click on "Apply Now" on the bottom of this page and follow the instructions.

If you are viewing this job posting externally, please apply as follows:

  • Go to and click on "Employment"

  • Click "Search job listings"

  • Click on "More options to search for CUNY jobs"

  • Search for Job Opening ID number: 26343

  • Click on the "Apply Now" button and follow the instructions.



Open until filled with review of resumes to begin on February 24, 2023.


CUNY Job Posting: Managerial/Professional


CUNY encourages people with disabilities, minorities, veterans and women to apply. At CUNY, Italian Americans are also included among our protected groups. Applicants and employees will not be discriminated against on the basis of any legally protected category, including sexual orientation or gender identity. EEO/AA/Vet/Disability Employer.