The Security Administrator will work to ensure the protection from potential malicious activities, protection of sensitive data, and displays consistently proven skills in cyber security mitigation capabilities. This position will work closely with the Cybersecurity Architect Manager, as well as other members of the Information Technology Team to support the continuous development, improvement, and maintenance of the Information Security Management Systems. Primary focus will be on the maintaining an accurate asset inventory, ensuring assets are up to date with associated patches and vulnerability remediation, corporate security tools are installed, configured, and maintained. A strong cyber security operational background as it relates to protecting endpoints and servers through best practices of vulnerability and patch management is ideal. In addition, the position will play a role in the initial response to alerts triggered by various security software components as they relate to end users and devices, determine mitigation efforts, or escalate as needed along with long term prevention.
The incumbent will live the corporate values of treating people with dignity and respect, practicing leadership, driving continuous improvement, acting with a sense of urgency, promoting innovation, fighting for consensus, and managing through teams.
Specific Responsibilities:
*Stay up to date with current software and operating system deployment technology for Laptops/PCs, mobile devices, MACs, etc.
*Research, evaluate, and assess emerging cyber security threats, incidents, and vulnerabilities specifically as they relate to end user devices and the operating systems, software, and connected peripherals.
*Perform end point device vulnerability remediation and patch management.
*Acts as technical lead for incident response, collaborating with incident response professionals and internal network and systems engineers.
*Working experience with SCCM, PDQ, WSUS, and other software deployment programs.
*Experience working with Intune or other mobile device management (MDM) solutions.
*Knowledge using Rapid 7 / or similar scanner finding and remediating infrastructure vulnerabilities.
*Knowledge of Rapid 7 / or similar implementation for Security Information and Event Management.
*Knowledge of CyberArk Security Suite / or similar (PAM/Privilege Cloud, Workforce Password Manager, EPM, etc.).
*Knowledge of CrowdStrike Security Suite / or similar (Anti-Virus, EDR, etc.).
*Knowledge of Dou / or similar for Multi Factor Authentication.
*Knowledge of Email filtering using Proofpoint, Office365, and Valimail / or similar solutions.
*Active Directory/DNS, DHCP, and Office 365 access management.
*Experience with incoming and outgoing email flow and applicable security components (Office 365, Proofpoint, Valimail) and Internet access filtering (Cisco Umbrella).
*Good understanding of information technology security requirements associated to industry standards: ISO 27000’s, CIS and NIST (PCI beneficial).
*Experience leading vulnerability management and patching processes to deliver weekly KPI and progress reports.
*Work independently, self-start, prioritize, and manage multiple projects simultaneously.
*Demonstrates agility and is flexible with changing priorities.
*React quickly and effectively to daily threats from external and internal sources.
Education and Experience:
*Bachelor’s Degree in related field with minimum 3 years of experience or 5-7 years’ experience with Information / Cyber Security as an analyst.
*3-5 years expertise in working with information security tool sets (Vulnerability Scanning, Patch Management, SIEM Management, and Incident Management) along with 2 plus years developing and maintain information security policies and procedures in accordance with frameworks.
*Direct, hands-on experience or a strong working knowledge of vulnerability management tools