Staff Newsroom Security Engineer

The mission of The New York Times is to seek the truth and help people understand the world. That means independent journalism is at the heart of all we do as a company. It’s why we have a world-renowned newsroom that sends journalists to report on the ground from nearly 160 countries. It’s why we focus deeply on how our readers will experience our journalism, from print to audio to a world-class digital and app destination. And it’s why our business strategy centers on making journalism so good that it’s worth paying for.

About the Role, Mission or Department Overview

The newsroom security engineer within Cybersecurity is a hands-on contributor who researches unique engineering projects to support the security of The New York Times newsroom. As a member of the Cybersecurity department, you will manage complex projects end-to-end. You will also drive technical security strategy for the newsroom, support measurable risk reduction, and collaborate across our engineering, security operations, threat management, and education teams. We are looking for an engineer who combines technical expertise with creativity and operational excellence, and who has experience designing and building security solutions for users facing complex and unique threat models.. This is a hybrid role based in New York City.

You will report to the Director, Information Security.

Responsibilities:

Evaluate existing cybersecurity tools used by the newsroom, identify opportunities for improvement, and help shape the roadmap for developing and enhancing internal security solutions.
Design security solutions that strengthen protections for newsroom staff while supporting efficient journalistic workflows.
Lead technical projects to enhance and scale existing newsroom security tools and services.
Partner with Information Security leadership to support and improve mobile security and digital forensics capabilities.
Collaborate with newsroom staff to understand security needs, provide technical guidance the use of security solutions.
Work with security education, threat management, and other teams to develop threat models for a variety of newsroom roles and translate those insights into practical security recommendations and protections.
Monitor new technologies, industry trends, and evolving threats, and incorporate relevant improvements into security strategies and solutions.
Travel to domestic and international office locations and bureaus, approximately 20% of the time.
Contribute to an inclusive and collaborative work environment while supporting The New York Times' commitment to journalistic independence and our mission to help people understand the world through trusted journalism.

Basic Qualifications:

7+ years of experience working on technical issues related to mobile malware, device security, data storage and providing technical solutions based on risk assessments.
Background with mobile threat detection tools and investigating alerts related to mobile devices, especially Apple devices.
Strong security that balance engineering requirements with operational newsroom needs.
Experience working in cloud environments, including AWS and GCP.
Experience with SecureDrop setup, technical support and threat modeling.
Strong cross-, including being a consistent point of contact for high-risk users and filling technical gaps between senior leadership and engineering.
Experience developing long-term security roadmaps and technical strategies rather than just executing tasks.
Knowledge of securing sensitive data storage solutions, particularly for high-risk assets.
Real passion for The New York Times's mission and dedication to be part of our innovation and growth.

Preferred Qualifications:

Experience with unique threat models, including but not limited to newsroom, media, executives, etc.
Experience with imaging devices, such as phones, laptops, hard drives, etc.
Experience building and maintaining secure workspaces or logically air-gapped environments for handling sensitive materials.
Experience providing technical support and risk assessments specifically for staff traveling to high-risk environments.
Ability to train other team members on specialized technical skills, such as forensics, to ensure team scalability.

This role may require limited on-call hours. An on-call schedule will be determined when you join, based on team size and other factors.

#LI-Hybrid

REQ-020266

The annual base pay range for this role is between:

$160,000—$190,000 USD

For roles in the U.S., dependent on your role, you may be eligible for variable pay, such as an annual bonus and restricted stock. Benefits may include medical, dental and vision benefits, Flexible Spending Accounts (F.S.A.s), a company-matching 401(k) plan, paid vacation, paid sick days, paid parental leave, tuition reimbursement and professional development programs.

For roles outside of the U.S., information on benefits will be provided during the interview process.

We’re excited to learn more about you and your experience. To keep our hiring process as fair and authentic as possible, we ask that you submit your own work and not use GenAI tools to generate substantive content during the application and interview process.

If you’re an Engineering candidate, we’ll let you know what specific GenAI tools you are permitted to use for your technical assessment.

The New York Times Company is committed to being the world’s best source of independent, reliable and quality journalism. To do so, we embrace a diverse workforce that has a broad range of backgrounds and experiences across our ranks, at all levels of the organization. We encourage people from all backgrounds to apply.

We are an Equal Opportunity Employer and do not discriminate on the basis of an individual's sex, age, race, color, creed, national origin, alienage, religion, marital status, pregnancy, sexual orientation or affectional preference, gender identity and expression, disability, genetic trait or predisposition, carrier status, citizenship, veteran or military status and other personal characteristics protected by law. All applications will receive consideration for employment without regard to legally protected characteristics. The U.S. Equal Employment Opportunity Commission (EEOC)’s Know Your Rights Poster is available here.

The New York Times Company will provide reasonable accommodations as required by applicable federal, state, and/or local laws. Individuals seeking an accommodation for the application or interview process should email reasonable.accommodations@nytimes.com. Emails sent for unrelated issues, such as following up on an application, will not receive a response.

The Company encourages those with criminal histories to apply, and will consider their applications in a manner consistent with applicable "Fair Chance" laws, including but not limited to the NYC Fair Chance Act, the Los Angeles Fair Chance Initiative for Hiring Ordinance, the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act.

For information about The New York Times' privacy practices for job applicants click here.

Please beware of fraudulent job postings. Scammers may post fraudulent job opportunities, and they may even make fraudulent employment offers. This is done by bad actors to collect personal information and money from victims. All legitimate job opportunities from The New York Times will be accessible through The New York Times careers site. The New York Times will not ask job applicants for financial information or for payment, and will not refer you to a third party to do so. You should never send money to anyone who suggests they can provide employment with The New York Times.

If you see a fake or fraudulent job posting, or if you suspect you have received a fraudulent offer, you can report it to The New York Times at NYTapplicants@nytimes.com. You can also file a report with the Federal Trade Commission or your state attorney general.