Listing Description

The NYISO’s Information Technology department invites applications for a full-time Senior IT Security Specialist - Access Management.

The Senior IT Security Specialist - Access Management provides information security services to protect the confidentiality, integrity, and availability of NYISO information and technical environments and to support NYISO’s enterprise security goals and objectives.  The Senior IT Security Specialist - Access Management evaluates existing NYISO security measures, assesses the effectiveness of those measures, and recommends changes that will improve all aspects of NYISO security.  Other responsibilities include:

• Design, develop, implement and maintain highly available solutions providing documentation of failover, backup and disaster recovery processes for all products in the access management portfolio including, but not limited to: Identity Governance and Lifecycle (IGL), Privileged Access Management (PAM), Physical Access Management, and Cloud Identity Services. 


• Responsible for delivery via the analysis, administration and operations of Role-Based Access Controls (RBAC), entitlement collections, provisioning and Access Reviews working with IT partners, and business customers. 


• Leads, develops and maintains the access management Standard Operating Procedures (SOP) on a regular basis to ensure compliance with corporate and regulatory standards as well as provide recommendations for operational improvements including automation and streamline processing opportunities. 


• Provides subject matter expertise for internal and external audits, including NERC CIP audits. Retrieves, analyzes, and presents data for audit requests; delivering artifacts and evidence to demonstrate compliance with regulatory requirements. 

Qualifications:

• Bachelor's Degree (BS) in Information Security, Computer Science, Computer Information Systems, or similar fields.  Master’s Degree (MS, MBA) preferred. 


• At least seven years of experience in progressively responsible information technology and/or IT security positions is required, along with an in-depth understanding of information security best practices, and expertise with related security technologies and tools.


• Experience in Identity and Access Management (IAM) & related technologies, including Directory Services, Single Sign-On, Authorization & Authentication Technologies, User Provisioning, Privileged Access Management, Role-Based Access Control (RBAC), etc. 


• Hands-On experience with one or more IAM tools for Identity Governance Lifecycle, Physical Access controls, privilege access, and Cloud Identity Services. 


• Certificate Management experience and end user support of certificate processing is desirable. 


• Hands-On experience with Multi-Factor Authentication (MFA) tools.  


• User Directory Administration experience and System Administration experience a plus 

Please note: The position will be filled at the level (Associate IT Security Specialist, IT Security Specialist, Senior IT Security Specialist) appropriate with experience and qualifications.

The NYISO takes pride in recruiting, developing and retaining highly talented individuals. In addition to competitive salaries, we offer a comprehensive benefits package and innovative reward programs.

The NYISO offers the flexibility to work both in the office and remotely, providing our employees with an enhanced work life balance. While the majority of the responsibilities of this role can be performed remotely, in most cases, employees will have periodic on-site requirements based on business needs. 

The NYISO is an Equal Opportunity Employer and as such, does not discriminate in its hiring or employment practices.