We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
New
American Museum of Natural History jobs

Cybersecurity Engineer

American Museum of Natural History
United States, New York, New York
200 Central Park W (Show on map)
Jul 08, 2025
Cybersecurity Engineer

|
Posting Details
Position Information


Position Title Cybersecurity Engineer
Department Information Technology - 139
Position Summary
The American Museum of Natural History is one of the world's preeminent scientific and cultural institutions, and has as its mission to discover, interpret and disseminate information about human cultures, the natural world and the universe through a wide-ranging program of scientific research, education and exhibition.

The Information Technology department is seeking a full-time Cybersecurity Engineer to apply information security knowledge across a broad range of disciplines, activities and contexts to provide a secure data environment for the Museum. This position has operational responsibility across several domains, including, but not limited to: data security, digital forensics, incident response and analysis, IT systems and operations, network security, systems and applications security and vulnerability management.

The Engineer works with IT staff, cybersecurity staff and leadership and other Museum users to develop the security operations and infrastructure controls needed to provide a secure environment and in response to emerging threats and incidents facing the Museum.

Job duties include, but are not limited to:

  • Maintain and operate the Museum's information security infrastructure, including, but not limited to: network and host-based security platforms, vulnerability scanning systems and tools, intrusion detection/prevention systems (IDS/IPS), file integrity verification and monitoring software, security information and event management (SIEM) platform, application (Layer 7) firewall, network access control (NAC), data loss prevention (DLP), log indexing and correlation platform, anti-virus and anti-spyware console, firewall and network access controls lists and web and email proxy and filtering systems.
  • Review and correlate data from various system reports, alerts and logs, as well as industry and partner alerts to identify potential risks and direct threats to the Museum's infrastructure, services and users. Initiate responses to such alerts consistent with establish operational standards and Museum policy and procedures.
  • Identify and complete effective response mitigations in response to detected threats.
  • Assist with vulnerabilities and risk analyses of existing and planned systems for a diverse clientele including scientific researchers, educational professionals, exhibit designers, administrative support staff and collaborators. Assist with digital forensics examinations, including malware analysis, using a variety of tools. Support incident response (IR) functions in keeping with existing policies, protocols and procedures.
  • Continuously maintain an in-depth knowledge of the rapidly changing cybersecurity landscape by synthesizing information about cybersecurity from various sources including Homeland Security, CERT, media vendors and research organizations. Use that knowledge to spot potential risks to the Museum.
  • Participate in weekly off-hours (non-office hours) maintenance windows.
  • Participate in weekly on-call rotation to respond to and triage cybersecurity alerts.
  • Maintain a schedule that includes after-hours deployment/maintenance and 24/7 emergency response to IT infrastructure service disruptions and cybersecurity threats.


The expected salary range for the Cybersecurity Engineer is $70,000/annual - $77,000/annual. The AMNH offers an extensive benefits package designed to meet the needs of our dedicated and diverse community.

Pay will be determined based on several factors. The hiring range for the position at commencement is based on the type of work and the scope of responsibilities. The salary and placement offered is based on a number of individualized factors, including, but not limited to, skills, knowledge, training, education, credentials, areas of specialization and depth and scope of experience.
Minimum Qualifications

  • High School Diploma or equivalent.
  • Two years of relevant direct IT experience.
  • Experience, knowledge and comfort working in a heterogeneous IT infrastructure environment, with various IT systems, technologies, platforms, concepts and applications, including Windows, Unix, Linux, VMware, Oracle, SQL Server, MySQL, Active Directory, OpenLDAP and Cisco networking platforms.
  • Proficiency in the development of software code, scripts and automations.
  • Solid understanding of the latest security principles, techniques and protocols.
  • Demonstrated ability to analyze, troubleshoot and investigate information technology issues.
  • Functional knowledge of cloud services and technologies.
Preferred Qualifications

  • College degree in information technology, cybersecurity or another related field.
  • Training in cybersecurity methods (including, but not limited to incident response, forensics, cybersecurity operations) that provides a basic knowledge of the data security compliance regulations and information security controls needed to mitigate cyber threats and vulnerabilities of applications, databases and infrastructure platforms.
  • Three years direct work experience in information security, information security compliance, incident response, digital forensics and/or associated fields.
  • Experience in building and maintaining security systems, including firewalls, intrusion prevention systems, SIEM tools, vulnerability analysis systems, file integrity monitoring tools, data loss prevention, network access control, logging and correlation platforms and endpoint protection systems.
  • Proficiency in the development of software code, scripts and automations of cybersecurity services.
  • Ability to analyze, troubleshoot and investigate security-related information systems anomalies based on security platform reporting, network traffic, log files and host-based and automated security alerts.
Physical Demands

  • Must be able to remain in a stationary position (sitting or standing) for prolonged periods.
  • Must be able to occasionally lift up to 20 pounds.
  • Must be able to move about the Museum campus.
  • Positioning/change of positioning: Must be able to frequently position oneself/body to accomplish job duties.
Category Full-Time
Total Number of Scheduled Hours Per Pay Period 70
Union Status Non-Union
FLSA Exempt
Expected Salary Minimum $70,000/annual
Expected Salary Maximum $77,000/annual
EEO Statement
The American Museum of Natural History is an Equal Opportunity/Affirmative Action Employer. The Museum does not discriminate with respect to employment, or admission or access to Museum facilities, programs or activities on the basis of race, creed, color, religion, age, disability, marital status, partnership status, gender (including sexual harassment), sex, sexual orientation, gender identity, gender expression, genetic information, pregnancy and lactation accommodations, alienage or citizenship status, current or former participation in the uniformed services, status as a veteran, caregiver, pre-employment marijuana testing, sexual and reproductive health decisions, salary history, national or ethnic origin, height, weight, or on account of any other basis prohibited by applicable City, State, or Federal law. Additional protections are afforded in employment based on arrest or conviction record, status as a victim of domestic violence, stalking and sex offenses, unemployment status, and credit history, in each case to the extent provided by law.
Quick Link https://careers.amnh.org/postings/4467
Posting Detail Information


Posting Number GS894P
Open Date 07/08/2025
Close Date
Open Until Filled Yes
Special Instructions to Applicants

Supplemental Questions

Required fields are indicated with an asterisk (*).



  1. *
    Do you have a High School Diploma or GED?

    • Yes
    • No


  2. *
    Do you have two years of relevant direct IT experience?

    • Yes
    • No


  3. *
    Are you proficient in developing software code, scripts and automations?

    • Yes
    • No


  4. *
    Do you have experience with, knowledge of and feel comfortable with working in a heterogeneous IT infrastructure environment, with various IT systems, technologies, platforms, concepts and applications, including Windows, Unix, Linux, VMware, Oracle, SQL Server, MySQL, Active Directory, OpenLDAP and Cisco networking platforms?

    • Yes
    • No


  5. *
    Do you have a solid understanding of the latest security principles, techniques and protocols?

    • Yes
    • No


  6. *
    Are you able to analyze, troubleshoot and investigate information technology issues?

    • Yes
    • No


  7. *
    Do you have a functional knowledge of cloud services and technologies?

    • Yes
    • No


  8. *
    Can you maintain availability to participate in weekly off-hours (non-office hours) maintenance windows?

    • Yes
    • No


  9. *
    Can you maintain availability to participate in a weekly on-call rotation to respond to and triage cybersecurity alerts?

    • Yes
    • No


  10. *
    Can you maintain availability to include after-hours deployment/maintenance and 24/7 emergency response to IT infrastructure service disruptions and cybersecurity threats?

    • Yes
    • No




Documents Needed To Apply
Required Documents

  1. Resume
  2. Cover Letter


Optional Documents

Applied = 0
MORE JOBS LIKE THIS

(web-8588dfb-vpc2p)