Cyber Security Administrator

The Cyber Security Administrator is responsible for the detection, prevention, analysis, and monitoring of security threats in an enterprise-level organization. This role involves developing, implementing, and maintaining security policies, procedures, and guidelines specific to on-prem and other cloud services. The Cyber Security Administrator will lead incident response efforts, conduct risk assessments, manage vulnerabilities, and ensure compliance with industry security standards. This position will be on-site in our Oakdale, NY office.

Responsibilities include:

1. Configure and enforce security policies, including conditional access and multi-factor authentication (MFA), to ensure secure application and data access.
2. Ensure security tools and systems (firewalls, antivirus, encryption) are up-to-date and properly configured.
3. Develop, implement, and maintain an incident response plan and business continuity plan, ensuring rapid detection, containment, and resolution of security incidents.
4. Investigate security incidents, coordinate with IT and other departments to remediate vulnerabilities, and document incidents with root cause analysis and corrective measures.
5. Conduct internal and external vulnerability scans, apply security patches, and implement system hardening techniques to mitigate risks.
6. Monitor security events in real-time using advanced threat detection tools, conducting forensic analysis when necessary.
7. Develop and implement security strategies to protect enterprise infrastructure from cyber threats and ensure compliance with frameworks such as NIST and ISO 27001.
8. Manage Identity and Access Management (IAM) solutions, including privileged access management (PAM), enforcing least privilege policies, and overseeing user provisioning and deprovisioning.
9. Implement Data Loss Prevention (DLP) solutions to safeguard sensitive data and prevent unauthorized exfiltration.
10. Configure and maintain Security Information and Event Management (SIEM) systems for centralized logging, threat detection, and analysis.
11. Oversee network security by managing Intrusion Detection and Prevention Systems (IDS/IPS), VPNs, and Zero Trust security models.
12. Conduct regular incident response testing to ensure readiness for potential cyber threats.
13. Assess third-party vendor security practices to ensure compliance with internal security policies and industry best practices.
14. Monitor and manage cloud security posture across Azure and Office 365, ensuring compliance with security policies and best practices.
15. Work closely with IT teams to design and implement security solutions for cloud and on-premises environments.
16. Conduct security awareness training sessions to educate employees and enforce best practices.
17. Maintain detailed records of security incidents, risk assessments, and compliance audits, preparing reports for senior management.

Qualifications:

1. 5 years of experience in an enterprise security and incident response role, 7 years preferred.
2. Bachelor’s degree in computer science required, Master’s degree preferred.
3. Strong understanding of cybersecurity frameworks, threat intelligence, and best practices.
4. Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection solutions.
5. Proficiency in cloud security, particularly in Office 365, Azure, and other cloud environments.
6. Ability to conduct risk assessments, penetration testing, and vulnerability management.
7. Strong incident response and forensic analysis skills.
8. Experience with scripting and automation tools such as PowerShell, Python, or Bash.
9. Excellent problem-solving and analytical skills with the ability to work independently and collaboratively.
10. Strong communication skills with the ability to convey complex security concepts to non-technical stakeholders.
11. Industry certifications such as CISM, CEH, or Microsoft Security certifications are a plus.

*The Authority may accept an equivalent combination of education and experience to meet the requirements*

Interested candidates should submit their application and resume, including salary requirements via the SCWA website (www.scwa.com) and click on “Career Opportunities”. Salary is commensurate with education and experience within the range of $110,000-120,000. Salary expectations must be disclosed on application.