Administrator, It Security
job description
Job Description
The Information Security Administrator is responsible for a broad range of tasks, including the day-to-day administration of information security tools and devices, provisioning and de-provisioning, support for security information and event management (SIEM), audit participation and significant responsibilities for the security administration of a wide variety of applications across the enterprise. The Information Security Administrator interacts closely with IT Operations, Application Development, Compliance, and business departments.
JOB RESPONSIBILITIES:
Perform user and access administration on designated systems and applications
Perform system security administration on designated platforms:
Operating Systems
Applications and Network Security Devices
Standards and Procedures with industry best practices and vendor guidelines
Perform installation and configuration management of security systems and applications:
Policy Assessment, Compliance Tools, Network Security Appliances and Host-Based Security Systems
Perform threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats and are free from known vulnerabilities
Apply patches where appropriate and, at the direction of Director of Information Security, remove and mitigate known control weaknesses, such as unnecessary services, applications, or redundant user accounts
Locate and repair security problems and failures
Collate security incident and event data to produce monthly reports
Perform normal and exceptional processing of user access and change requests
Report unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes
Assist and train junior team members in the use of security tools, the preparation of security reports and the resolution of security issues
Develop and maintain documentation for security systems and procedures
Research, recommend, evaluate and implement information security solutions that identify and/or protect against potential threats, and respond to security violations
Provide guidance to junior members of the team
Respond, resolve, or escalate reported security incidents
Monitor system logs, SIEM tools and network traffic for unusual or suspicious activity
Interpret activity and make recommendations for resolution
Investigate and resolve security violations by providing postmortem analysis to illuminate the issues and possible solutions
Monitor internal control systems to ensure that appropriate information access levels and security clearances are maintained
Administer and maintain end-user accounts, permissions and access rights for all systems
Interact closely with the audit group and outside Assessors
Manage the collection of observation responses, evidence and remediation plans
Provide oversight and coordination of audit finding remediation including tracking progress and providing status and updates to the security and remediation project team
Support e-discovery processes to include identification, collection, preservation and processing of relevant data
Additional duties as assigned
SUPERVISORY RESPONSIBILITIES:
This job has no supervisory responsibilities