• Cybersecurity Senior Engineer

    NY CREATES (Albany, NY)


     

    Job Description for Cybersecurity Senior Engineer

     

    The Senior Cybersecurity Engineer is the organization's elite, tool-agnostic security technology architect and integration mastermind, responsible for the end-to-end design, deployment, hardening, orchestration, and lifecycle management of a defense-in-depth cybersecurity stack spanning SIEM, SOAR, Vulnerability Management (VM), Email Security, Phishing Simulation, Data Loss Prevention (DLP), Application Security (AppSec), and emerging controls across NY Creates (NYC) research ecosystems, semiconductor fabrication plants, hybrid cloud environments, OT/ICS, and regulated data flows. This role functions as the senior technical authority for cross-domain security engineering, seamlessly integrating disparate tools into a unified, automated, and intelligence-driven security operations platform.

    JOB SUMMARY

    Job Responsibilities include but are not limited to:

    + Architect and operationalize a centralized SIEM platform with high-volume event ingestion, custom data parsing, advanced correlation logic, and threat framework-aligned detection content.

    + Lead SOAR platform engineering: design and implement production-grade automation playbooks with bidirectional integration across endpoint, network, identity, and ticketing systems.

    + Integrate and enhance Vulnerability Management capabilities into detection and response workflows for automated risk scoring, containment actions, and remediation tracking.

    + Deploy and manage secure Email Security gateways with advanced threat detection, URL analysis, impersonation defense, and policy enforcement; integrate with DLP for sensitive data protection.

    + Own enterprise Phishing Simulation and awareness programs: develop targeted campaigns, measure user behavior, and automate adaptive training enrollment.

    + Implement and govern DLP solutions across endpoints, cloud services, and network boundaries; author context-aware policies with automated incident response and user remediation.

    + Embed Application Security controls into development lifecycle: static, dynamic, and dependency analysis with policy enforcement in CI/CD pipelines.

    + Engineer unified data pipelines for telemetry normalization, enrichment, and long-term retention; enable advanced threat hunting and behavioral analytics.

    + Conduct detection engineering: develop and maintain high-fidelity detection rules aligned to adversary tactics, techniques, and procedures.

    + Lead technology evaluations, proof-of-concepts, and vendor consolidation initiatives; author technical requirements and integration standards.

    + Produce executive-level security posture reports: detection efficacy, automation maturity, risk reduction trends, and compliance readiness.

    + Validate control effectiveness through structured red and purple team exercises; drive continuous tuning and improvement.

    + Mentor junior engineers and analysts in platform administration, automation development, and detection logic; establish internal knowledge transfer programs.

    + Represent NYC in cross-institutional security architecture forums and industry working groups.

    + Critical thinking to identify control gaps, correlate cross-domain events, and design layered mitigation strategies.

    + Ability to automate infrastructure and security workflows using scripting and infrastructure-as-code practices.

    + High degree of initiative, dependability, and ability to lead technical initiatives without formal authority.

    + Effective oral & written communication skills, including architecture documentation, executive presentations, and technical standards authorship.

    Job Requirements:

    Minimum Requirements for Cybersecurity Senior Engineer

     

    + Minimum of six (6) years of progressive cybersecurity engineering experience with at least seven (3) years in senior, platform-agnostic security architecture and integration leadership roles within complex, regulated environments (research institutions, federal contractors, critical infrastructure, 5,000+ users/assets, hybrid cloud + OT).

    + Bachelor's degree in Cybersecurity, Computer Engineering, Information Systems, or related STEM field from an accredited institution; Master's degree or advanced industry certification strongly preferred.

    Advanced, vendor-neutral certifications required (at least three from different security domains):

    + SIEM architecture and detection engineering

    + SOAR automation and orchestration

    + Vulnerability Management program leadership

    + Email Security and DLP policy design

    + Application Security in DevSecOps

    Expert-level, hands-on proficiency across:

    + SIEM: high-volume ingestion, data modeling, correlation, and long-term retention

    + SOAR: playbook development, API orchestration, and incident workflow automation

    + Vulnerability Management: authenticated scanning, risk prioritization, and remediation integration

    + Email Security: threat detection, DMARC, and secure gateway operations

    + DLP: policy authoring, data classification, and incident response

    + AppSec: shift-left testing, dependency management, and pipeline security

    + Demonstrated integration portfolio: 20+ cross-platform API and data flow connections with resilience, monitoring, and secret management.

    + Detection engineering: 100+ high-confidence detection rules mapped to MITRE ATT&CK with validated efficacy.

     

    This position is contingent on the satisfactory completion of a background check.

    Preferred Requirements

    + GIAC Continuous Monitoring or Security Automation

    + Certified Information Systems Security Professional (CISSP) - Architecture focus

    + Cloud Security Architecture (CCS, CCSP)

     

    Don't meet every requirement? At NY Creates we are dedicated to building a welcoming workplace. If you are excited about working for NY Creates but your experience doesn't exactly align perfectly with the job description, we encourage you to apply anyway, you might still be a perfect fit or a fit for another role at NY Creates.

     

    Benefits

     

    + Medical, Vision, and Dental

    + Competitive Pay and PTO

    + Flexible Heath Spending and Dependent Care Accounts

    + Basic / Optional Life Insurance

    + Post-Retirement Health Insurance

    + Employer contribution of 7% of earnings to a Basic Retirement plan after meeting one year of service.

    + Optional employee contributed retirement account

    Salary Range: $120,000 - $140,000

    **Posted salary rates are determined upon experience and education

    Additional Information:

    NOTE: Some positions require access to export-controlled commodities, technical data, technology, software, or restricted programs where U.S. Government authorization may be required.

     

    For positions requiring such access, offers of employment are contingent upon the employer being able to obtain the necessary authorization, including, if required, an export license from the U.S. Department of Commerce's Bureau of Industry and Security, the U.S. Department of State's Directorate of Defense Trade Controls, or other government agencies. The decision to pursue an export license application is at The Research Foundation for SUNY's sole discretion. Proof of status may be required prior to employment in connection with necessary authorizations.

     

    Employment is with the Research Foundation for SUNY. The Research Foundation is an Equal Opportunity Employer, including individuals with disabilities and protected veterans.

     

    In compliance with the Americans with Disabilities Act (ADA), if you have a disability and require a reasonable accommodation to apply please call Human Resources at 518-437-8686.