Friedman Williams
Security Administrator Nashville TN
Job ID: 16958
The Security Administrator position will help protect the firm by maintaining, implementing, and monitoring internal security controls to prevent, detect and respond to cyber threats. The position will also provide security input during the implementation of software systems, networks, and data center(s) to ensure security requirements are met and industry best practices are followed. The Security Administrator will assist in managing Security Systems such as various endpoint protections, network and system logging, monitoring, physical access controls, and other prevention and detection controls as needed. The Security Administrator must focus on continuous improvement of prevention and response capabilities through automation and critical thinking. The professional is responsible for scrutinizing malware, targeted attacks, and intrusion detection. The Security Administrator will identify, investigate, and respond to information security alerts, events, and Help Desk tickets. They play an active role in searching through datasets, alerts, and notifications to detect any threats and anomalies. The Security Administrator will help resolve any issues related to network perimeter and security infrastructure devices. They must help identify and remediate Windows and other security vulnerabilities.
ESSENTIAL FUNCTIONS
• Security Alerts: Review, respond, and remediate where applicable
• Vulnerability remediation (may also be tasked with vulnerability administration, enhancements, scans, and automation development opportunities)
• Phish campaign monitoring and resolution
• Analyze security systems and seek improvements on a continuous basis
• Report possible threats or software issues
• Research weaknesses and determine ways to counter them
• Understand software, hardware, and internet needs while adjusting them according to our business environment
• Assist fellow employees with cybersecurity, software, hardware, or IT needs
• Carry out and support information security plans and policies
• Respond to, investigate, and assist in recovery efforts related to a security breach
• Assist in Security Awareness training development and support
• Troubleshoot security and network problems
• Ensure the organization’s data and infrastructure are protected by enabling and/or recommending appropriate security controls
• Participate and follow the change management process
• Daily administrative tasks, reporting, and communication within Information Security as well as relevant departments within the organization, as needed or directed
• Administer, configure, and troubleshoot security infrastructure devices
• Test new software and firmware, as needed or directed
• Other duties as assigned
Qualifications:
• Bachelor’s Degree in Computer Science, Computer Engineering, Computer Security, or four (4) years of equivalent work experience
• Ability to pass background check
• Comprehensive working knowledge of Microsoft Windows Desktop and Server operating systems, Active Directory, Azure Active Directory, PowerShell and/or Python scripting tools, Kusto Query Language (KQL), firewall administration tools, OSI Model, LAN/WAN/VPN skills
• Experience with industry tools such as Endpoint Detection and Response (EDR), Security Orchestration Automation and Response (SOAR), Security Information and Event Management (SIEM)
• Experience with industry products such as Microsoft cloud security solutions, Mimecast or other Secure Email Gateway (SEG) platforms, Tenable.io
Bonus qualifications:
• CompTIA Security+, Microsoft Security Operations Analyst (SC-200), or other related/equivalent certifications
• Working knowledge of email security controls like DMARC, DKIM, and SPF
• Familiarity with cybersecurity frameworks (MITRE ATT&CK, NIST Cybersecurity, ISO)