Cybersecurity and System Administrator

Job Description

Job Description

Description

Cybersecurity and System Administrator

Description

The Cybersecurity and System Administrator role provides enterprise-level technical support to our end clients. This position provides support in person, via phone, web, email, chat and other channels as required.

Also responsible for performing tasks as required to support the general ongoing Cybersecurity Solutions team efforts on an as needed basis.

Duties

• Interacts with clients and evaluates vendor products
• Take ownership of client issues reported and see problems through to resolution
• Assist with network security including network design and documentation
• Be a member of our Managed Security Operations Center (MSOC) team and monitor client alerts and eventually (after training) perform Threat Hunting
• Participate in our Incident Response Team for our clients and do emergency response to clients experiencing incidents
• Advise client on virtualized environment security including on-premise and cloud based security such as Amazon AWS, Google Cloud and Microsoft Azure.
• Occasionally assist clients with items not typically associated with a purely cybersecurity role such as :
• Microsoft Windows-based server environments with Active Directory (AD) and AzureAD
• Maintaining networking devices and firewalls
• Office 365 (O365) and Microsoft 365 (M365) administration
• Asset and license management
• Assists in the installation, implementation, and upgrades of client infrastructure with a security mindset.
• Oversee purchasing of equipment and software as requested by client
• Manage yearly client software and service renewals
• Provide prompt and accurate feedback to clients
• Ensure proper documentation and satisfactory closure of all client issues
• Support Windows, MacOS, and Linux
• Document knowledge in the form of knowledge base articles for sharing with the rest of the team
• Identify and implement process improvements
• Accept other routine or project work as required, including non-IT administrative tasks related to contract administration, vendor management, etc.

Responsibilities

• Monitor and maintain client projects and issues
• Responsible for SOC monitoring
• Responsible for management and maintenance of client infrastructure and cybersecurity
• Responsible for monitoring and documenting server and security environment data
• Responsible a list of clients cybersecurity

Other Duties

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job.

Duties, responsibilities and activities may change at any time with or without notice

Position Requirements

• At least 5 years of relevant experience
• Proven working experience in networking, system administration and cybersecurity role
• Solid understanding of the key concepts of cybersecurity including the underlying concepts of Networking and System Administration
• Some experience with Security Operations Centers including components like Security Information and Event Management system (SIEM), Security Orchestration, Automation, and Response (SOAR), and Incident Response (IR) lifecycle, IR Plans, Playbooks, etc.
• Experience with network security and system administration
• Experience working with Virtualized environments, both cloud-based and on-site
• Knowledge of infrastructure monitoring solutions such as Splunk, Nagios, etc
• Basic understanding of Databases and Structured Query Language (SQL) and NoSQL
• Understand Asset Management and troubleshooting, maintaining, and monitoring client infrastructure.
• Strong troubleshooting and problem-solving skills
• Excellent client-facing skills with strong customer service satisfaction
• Excellent written and verbal communication skills
• Must be detail oriented and able to follow tasks and projects through satisfactory completion
• Strong desire to learn and the ability to pick up on new concepts quickly
• Must be able to thrive in an environment performing both technology and operation-based tasks daily, with the ability to multi-task and / or switch between tasks as needed

Position Preferred

• An associates degree in an IT or technical discipline or at least 7 years of relevant experience
• Penetration Testing experience
• Threat Hunting using a modern Security Information and Event Management system (SIEM) like Stellar Cyber
• Security Assessments using tools such as Cybersecurity & Infrastructure Security Agency’s (CISA) Cyber Security Evaluation Tool (CSET)
• Risk Management based approach to cybersecurity using modern Risk Management System (RMS)
• Infrastructure and Cybersecurity Consulting Experience

Work Environment

This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.

While performing the duties of this job, the employee is regularly required to talk and hear. This position requires standing, walking, bending, kneeling, stooping, crouching, crawling and climbing all day.

Specific vision abilities required by this job include close vision, distance vision, color vision, peripheral vision, depth perception and ability to adjust focus.

Position Type / Expected Hours of Work

This is a full-time position. Days and hours of work are Monday through Friday, 8 : 30 a.m. to 5 p.m.

Key Responsibilities

• Monitor and maintain client projects and issues
• Responsible for SOC monitoring
• Responsible for management and maintenance of client infrastructure and cybersecurity
• Responsible for monitoring and documenting server and security environment data
• Responsible a list of clients' cybersecurity

Skills Knowledge and Expertise

• At least 5 years of relevant experience
• Proven working experience in networking, system administration and cybersecurity role
• Solid understanding of the key concepts of cybersecurity including the underlying concepts of Networking and System Administration
• Some experience with Security Operations Centers including components like Security Information and Event Management system (SIEM), Security Orchestration, Automation, and Response (SOAR), and Incident Response (IR) lifecycle, IR Plans, Playbooks, etc.
• Experience with network security and system administration
• Experience working with Virtualized environments, both cloud-based and on-site
• Knowledge of infrastructure monitoring solutions such as Splunk, Nagios, etc
• Basic understanding of Databases and Structured Query Language (SQL) and NoSQL
• Understand Asset Management and troubleshooting, maintaining, and monitoring client infrastructure.
• Strong troubleshooting and problem-solving skills
• Excellent client-facing skills with strong customer service satisfaction
• Excellent written and verbal communication skills
• Must be detail oriented and able to follow tasks and projects through satisfactory completion
• Strong desire to learn and the ability to pick up on new concepts quickly
• Must be able to thrive in an environment performing both technology and operation-based tasks daily, with the ability to multi-task and / or switch between tasks as needed

Benefits

CRI Advantage provides flexible benefit packages to fit employee and family needs. Benefits are effective from the first day of employment.

Medical (PPO and HDHP plans), Dental, Vision, STD, LTD, Life and AD&D

Access to Flexible Spending Accounts (FSA) and Health Savings Accounts (HSA)

Paid Time Off (PTO) accruals, Paid Holidays, and for some roles sick leave

401(k) with employer match

Employee Assistance Program (EAP)

Discount Rewards Program

Free technical and professional training with access to over 8,000 classes

Credit Union Membership

Employee Wellness Program