New York Times Company logo
New York Times Company

Publisher of the internationally recognized daily newspaper, The New York Times , The New York Times Company is a global media organization whose mission is to

Staff Newsroom Security Engineer

Location

New York

Posted

1 day ago

Salary

$160K - $190K / year

Seniority

Senior

Bachelor DegreeAWSGCP

Job Description

Staff Newsroom Security Engineer

New York Times Company

Title: Staff Newsroom Security Engineer Location: New York, NY Job Description About the Role, Mission or Department Overview The newsroom security engineer within Cybersecurity is a hands-on contributor who researches unique engineering projects to support the security of The New York Times newsroom. As a member of the Cybersecurity department, you will manage complex projects end-to-end. You will also drive technical security strategy for the newsroom, support measurable risk reduction, and collaborate across our engineering, security operations, threat management, and education teams. We are looking for an engineer who combines technical expertise with creativity and operational excellence, and who has experience designing and building security solutions for users facing complex and unique threat models.. This is a hybrid role based in New York City. You will report to the Director, Information Security. Responsibilities: - Evaluate existing cybersecurity tools used by the newsroom, identify opportunities for improvement, and help shape the roadmap for developing and enhancing internal security solutions. - Design security solutions that strengthen protections for newsroom staff while supporting efficient journalistic workflows. - Lead technical projects to enhance and scale existing newsroom security tools and services. - Partner with Information Security leadership to support and improve mobile security and digital forensics capabilities. - Collaborate with newsroom staff to understand security needs, provide technical guidance the use of security solutions. - Work with security education, threat management, and other teams to develop threat models for a variety of newsroom roles and translate those insights into practical security recommendations and protections. - Monitor new technologies, industry trends, and evolving threats, and incorporate relevant improvements into security strategies and solutions. - Travel to domestic and international office locations and bureaus, approximately 20% of the time. - Contribute to an inclusive and collaborative work environment while supporting The New York Times' commitment to journalistic independence and our mission to help people understand the world through trusted journalism. Basic Qualifications: - 7+ years of experience working on technical issues related to mobile malware, device security, data storage and providing technical solutions based on risk assessments. - Background with mobile threat detection tools and investigating alerts related to mobile devices, especially Apple devices. - Strong security that balance engineering requirements with operational newsroom needs. - Experience working in cloud environments, including AWS and GCP. - Experience with SecureDrop setup, technical support and threat modeling. - Strong cross-, including being a consistent point of contact for high-risk users and filling technical gaps between senior leadership and engineering. - Experience developing long-term security roadmaps and technical strategies rather than just executing tasks. - Knowledge of securing sensitive data storage solutions, particularly for high-risk assets. - Real passion for The New York Times's mission and dedication to be part of our innovation and growth. Preferred Qualifications: - Experience with unique threat models, including but not limited to newsroom, media, executives, etc. - Experience with imaging devices, such as phones, laptops, hard drives, etc. - Experience building and maintaining secure workspaces or logically air-gapped environments for handling sensitive materials. - Experience providing technical support and risk assessments specifically for staff traveling to high-risk environments. - Ability to train other team members on specialized technical skills, such as forensics, to ensure team scalability. - #LI-Hybrid REQ-020266 The annual base pay range for this role is between: $160,000—$190,000 USD For roles in the U.S., dependent on your role, you may be eligible for variable pay, such as an annual bonus and restricted stock. Benefits may include medical, dental and vision benefits, Flexible Spending Accounts (F.S.A.s), a company-matching 401(k) plan, paid vacation, paid sick days, paid parental leave, tuition reimbursement and professional development programs.

Related Categories

Related Job Pages

More Security Engineer Jobs

Zscaler logo

Director, AI Security Specialist

Zscaler

We make it easy to secure your cloud transformation. Get fast, secure, and direct access to apps without appliances.

Full TimeRemoteTeam 5,001-10,000Since 2008H1B Sponsor

• Scale the AI Technical Strategy • Lead & Co-Elevate Elite Talent • Build Repeatable GTM Playbooks • Act as Executive Sponsor • Bridge the Product-to-Field Loop

United States
$194.3K - $277.5K / year
Panorama Education logo

Senior AI Security Engineer

Panorama Education

Leading K-12 platform transforming teaching and student support with AI, MTSS, and surveys.

Full TimeRemoteTeam 201-500Since 2012H1B Sponsor

Role Description As a Senior AI Security Engineer at Panorama, you'll own the security of our internal AI systems, tooling, and the external services we integrate with. Our mission is serving students and educators, and protecting their data is the foundation that everything else depends on. AI is central to unlocking better outcomes for the students and educators we serve, and this role exists to ensure we do so responsibly. You'll work closely with the teams building our shared AI infrastructure, leading how we evaluate, govern, and secure AI tools and services as the landscape continues to evolve. This is a hands-on engineering role for someone who brings structure to ambiguous problems and is energized by work that hasn't been fully mapped out yet. You'll report to the Director of Information Security. What You'll Do - Securing Internal AI Systems - Lead the security design for Panorama's shared AI infrastructure and AI-powered internal workflows, building the guardrails that govern how AI systems access, process, and handle sensitive data at every layer. - Own threat modeling for AI-specific risks, including the attack surfaces that don't map cleanly onto traditional application security. - Design controls for validating, logging, and auditing AI outputs in contexts where accuracy and data protection are non-negotiable. - Build security tooling and automated checks that let internal teams adopt AI capabilities without slowing down. - AI Tool and Integration Governance - Build and maintain the process for reviewing external AI tools, APIs, and SaaS integrations before internal adoption, keeping criteria current as the vendor landscape evolves. - Evaluate third-party AI services for data handling practices, privacy posture, and risk to sensitive data. - Establish standards for how teams integrate external model providers and AI-powered tools, covering technical, privacy, and contractual requirements. - AI Security Governance - Define and drive Panorama's approach to AI security governance, including the policies, standards, and decision-making processes we use to adopt AI responsibly. - Work with security and engineering leadership to align AI governance with broader data protection and compliance obligations. - Serve as the internal point of view on AI security risk, helping leadership understand tradeoffs and make informed decisions as we expand our AI capabilities. - Partnership and Enablement - Work closely with the engineers and product leaders owning the internal AI platform to embed security into the platform itself. - Partner with squads and teams adopting AI tooling to apply the right patterns early and avoid risks. - Translate security requirements into practical guidance the team can act on. - Collaborate with IT on the identity, access, and device controls that intersect with AI systems and integrations. - Serve as an active member of the security squad, keeping AI security integrated into Panorama's broader security approaches, standards, and decision-making. Qualifications - 5+ years of security engineering experience, with hands-on work building and securing production systems. - Direct experience with AI systems security: LLM integrations, tool-using agents, retrieval pipelines, or comparable work. - A genuine commitment to protecting student data and to the mission of serving students and educators. - Experience evaluating or governing third-party AI tools and services, with an eye toward data privacy and vendor risk. - Strong grounding in application and data security: threat modeling, access control, secrets management, and secure handling of sensitive data. - Demonstrated ability to build security programs, processes, or standards from scratch rather than inheriting a mature playbook. - Comfort operating in a space where the tools, risks, and best practices are still being defined, and a track record of bringing structure to ambiguous problems. - A collaborative working style that brings teams along rather than gating them. Nice to Have - Familiarity with MCP or similar tool-use and integration patterns. - Experience securing internal developer platforms or shared infrastructure. - Knowledge of K-12 privacy requirements such as FERPA, COPPA, or state-level student data privacy laws. - Experience with cloud security guardrails, posture management, and identity and access patterns. Benefits - Base Salary: The base salary range for this position is $170,000- $250,000 USD // Annually. - 401K with an employer match. - Health, dental, vision, life insurance, and short-term and long-term disability coverage. - Flexible spending account for health care and dependent care. - Wellness Reimbursement. - Work from Home Reimbursement. - Flexible vacation policy. - Parental leave program. - Company Issued Laptop.

United States
$170K - $250K / year
Zscaler logo

Director, AI Security Specialist

Zscaler

We make it easy to secure your cloud transformation. Get fast, secure, and direct access to apps without appliances.

Full TimeRemoteTeam 5,001-10,000Since 2008H1B Sponsor

• Scale the AI Technical Strategy • Lead & Co-Elevate Elite Talent • Build Repeatable GTM Playbooks • Act as Executive Sponsor • Bridge the Product-to-Field Loop

United Kingdom

Cybersecurity & Governance Consultant

Enlightened, Inc.

As one of the Washington Metropolitan-area’s fastest growing IT companies, we are always looking for creative, passionate and responsible employees. We acknowledge that intelligent, dedicated employees are our greatest asset and are continuously adding to our talented and diverse team. If you feel innovation, integrity and a drive to deliver are key components to success, we invite you to become Enlightened.

Role Description We are seeking a seasoned Cybersecurity & Governance Consultant to support an enterprise technology strategy initiative. This role will focus on: - Assessing enterprise cybersecurity posture and governance practices. - Evaluating cybersecurity policies, standards, and operational risks. - Developing AI governance frameworks and recommendations. - Conducting data governance and information management assessments. - Supporting business impact assessments and risk prioritization activities. - Developing governance documentation and implementation recommendations. - Aligning recommendations with industry best practices and regulatory standards. - Collaborating with executive leadership and technical stakeholders. Qualifications - Bachelor's degree in Cybersecurity, Information Technology, Information Systems, or a related field. - 10+ years of cybersecurity, governance, or risk management experience. - Experience developing cybersecurity governance frameworks. - Strong knowledge of cybersecurity standards and best practices. - Experience with data governance and enterprise risk management. - Excellent analytical and communication skills. Requirements - CISSP, CISM, CGEIT, CRISC, or similar certification (preferred). - Experience with AI governance frameworks (preferred). - Government or public sector consulting experience (preferred). - Experience supporting enterprise technology strategy initiatives (preferred). Company Description As one of the Washington Metropolitan-area’s fastest growing IT companies, we are always looking for creative, passionate and responsible employees. We acknowledge that intelligent, dedicated employees are our greatest asset and are continuously adding to our talented and diverse team. If you feel innovation, integrity and a drive to deliver are key components to success, we invite you to become Enlightened.

United States