Job details
About Us:
The people of Memorial Sloan Kettering Cancer Center (MSK) are united by a singular mission: ending cancer for life. Our specialized care teams provide personalized, compassionate, expert care to patients of all ages. Informed by basic research done at our Sloan Kettering Institute, scientists across MSK collaborate to conduct innovative translational and clinical research that is driving a revolution in our understanding of cancer as a disease and improving the ability to prevent, diagnose, and treat it. MSK is dedicated to training the next generation of scientists and clinicians, who go on to pursue our mission at MSK and around the globe.
Exciting Opportunity at MSK: Cyber Security Analyst II
Memorial Sloan Kettering (MSK) is a globally recognized leader in cancer care, research, and innovation, dedicated to advancing patient outcomes through cutting-edge technology and clinical excellence. The Cyber Security Analyst II role focuses on strengthening third-party risk visibility, enhancing real-time monitoring capabilities, and securing vendor integrations across enterprise SaaS and cloud environments. This position blends hands-on security engineering with analytical expertise, enabling proactive detection, investigation, and mitigation of vendor-related risks while supporting secure, scalable business operations.
MSK’s Cyber Security Analyst II role emphasizes real-time vendor monitoring, SaaS integration security, and proactive risk detection. You’ll design monitoring solutions, analyze alerts, and collaborate with threat hunting teams to strengthen third-party risk management across complex enterprise environments.
Role Overview
Design and implement monitoring tools to track third-party vendor activity across enterprise networks in real time
Analyze and triage security alerts related to vendor access, SaaS integrations, and external systems
Act as a liaison between cybersecurity operations and threat hunting teams to escalate vendor-related risks
Partner with threat hunting teams to build and mature third-party threat detection capabilities
Integrate and normalize data from platforms such as ServiceNow, Workday, and Salesforce
Develop API-based integrations across SaaS and cloud environments for centralized telemetry visibility
Identify risks from persistent vendor access beyond contract expiration
Optimize monitoring tools to reduce false positives and improve signal quality
Align monitoring practices with vendor risk management, supply chain security, and compliance requirements
Key Qualifications
Strong foundation in cybersecurity principles, risk management, and threat detection methodologies
Experience with enterprise SaaS platforms such as ServiceNow, Workday, and Salesforce
Hands-on experience with APIs, cloud integrations, and hybrid/cloud-first security environments
Familiarity with threat hunting frameworks and incident response workflows
Understanding of regulatory and compliance standards related to vendor and supply chain risk
Core Skills
Analytical thinking to correlate vendor behavior across systems and detect anomalies
Cross-functional communication to align cybersecurity, vendor management, engineering and organzational stakeholders
Technical adaptability across APIs, cloud platforms, and evolving SaaS ecosystems
Problem-solving mindset focused on improving visibility, detection, and risk reduction
Ownership and accountability in driving initiatives and enhancing security capabilities
Additional Information:
Location: Hybrid; 633 Third Ave, New York, NY
Schedule: 9:00 AM – 5:00 PM EST, Monday – Friday. 99% remote
Pay Range: $124,000.00 - $204,700.00
FSLA Status: Exempt
Closing:
At MSK, we believe in fair, competitive pay that reflects your job, experience, and skills.
MSK is an equal opportunity and affirmative action employer committed to diversity and inclusion in all aspects of recruiting and employment. All qualified individuals are encouraged to apply and will receive consideration without regard to race, color, gender, gender identity or expression, sexual orientation, national origin, age, religion, creed, disability, veteran status or any other factor which cannot lawfully be used as a basis for an employment decision.
Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.
Application Process
Cyber Security Analyst II
Department:Informatics & Information Technology
Location: New York, NY