×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant

Senior Consultant - Cybersecurity Compliance Analyst

Job in City of Albany, Albany, Albany County, New York, 12201, USA
Listing for: New York State Technology Enterprise Corporation (NYSTEC)
Full Time position
Listed on 2025-12-30
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below
Location: City of Albany

Senior Consultant - Cybersecurity Consultant

Join to apply for the Senior Consultant - Cybersecurity Consultant role at New York State Technology Enterprise Corporation (NYSTEC).

About Us

NYSTEC is a nonprofit technology consulting company, advising agencies, organizations, institutions, and businesses since 1996. We’re independent and vendor-neutral, so we have our clients’ best interests  NYSTEC, we know that we succeed when individuals and teams flourish personally and professionally, so our benefits and perks support that mindset.

About

The Role

As a senior consultant on the Cybersecurity and Data Privacy team, you will collaborate with team members to support our clients as you expand your knowledge related to assessing and securing cloud-based solutions, application protocol interfaces (APIs) and artificial intelligence (AI) technologies. NYSTEC is considered a trusted advisor, providing cybersecurity subject matter expertise and program operations support for our clients. Your day-to-day role as a NYSTEC consultant will involve providing support for our client’s security program.

Our client’s security program oversees vendor- and data-consuming-entity security compliance, including security control analysis. Cybersecurity team members also support security program elements, such as incident response, vulnerability management, and anti-phishing efforts. This position is expected to be performed on-site in Albany, NY.

Key Responsibilities
  • Integrating identity and access management, such as NY.Gov , into client system initiatives.
  • Preparing and delivering summaries, reports, and presentations to communicate complex technical security and privacy information, and make actionable recommendations to both technical and nontechnical stakeholders.
  • Assisting with developing and maturing API and AI security standards.
  • Coordinating with the web and application security testing team.
  • Ensuring regulatory compliance with the Health Insurance Portability and Accountability Act (HIPAA), Centers for Medicare & Medicaid Services (CMS) Acceptable Risk Safeguards (ARS), New York State standards and policies, and National Institute of Standards and Technology (NIST) Special Publication 800-53.
  • Conducting security compliance assessments.
  • Preparing security documentation and policies.
  • Supporting audits and CMS reviews.
About You

Required Qualifications
  • Excellent work ethic, critical thinking, analytic, and problem-solving skills.
  • Clear and concise written and verbal communication skills.
  • Diplomacy and stakeholder relationship development and management skills.
  • Sound operational technical background.
  • Knowledge of, and experience with, implementing NIST 800-53 controls and an understanding of the IT security processes behind those controls.
  • Ability to assess IT risk in a client’s environment and a desire to learn NIST 800-30 style risk assessments.
  • Security certification from an accredited organization, such as ISC
    2.
Preferred/Desired Qualifications
  • Skills across multiple security domains.
  • Experience with privacy programs, requirements, and controls.
  • Knowledge of the New York State Medicaid program, its systems, data, and uses.
  • Expertise in public health, health information, or security and privacy policies and standards, such as NIST 800-53 and CMS ARS.
  • Expertise with identity and access systems and modern protocols, such as Security Assertion Markup Language (SAML), Open Authorization (OAuth), OpenID Connect, multi-factor authentication (MFA), etc.
  • Experience with vulnerability assessments of cloud services and infrastructure.
  • Familiarity with the secure software development life cycle (SSDLC) and technologies and the causes of vulnerabilities.
  • Ability to articulate risk and mitigation strategies to clients in written and verbal communications.
  • A background in software development or system administration.
Education and Experience
  • A bachelor’s degree and five to seven years of experience in an operational or information security role.
  • An equivalent combination of advanced education, training, and experience (e.g., relevant classwork or outside training and security certifications) may be considered.

The target base salary for this…

Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search