Exela Technologies is hiring: Security Administrator in Renton
Exela Technologies, Renton, WA, United States
Security Administrator About the Role: As a Security Administrator, you will play a crucial role in safeguarding the organization's information systems and data from security threats and unauthorized access. You will be responsible for implementing and maintaining security measures, policies, and procedures to ensure compliance with industry regulations and protect sensitive information. Additionally, you will monitor security events, investigate incidents, and collaborate with IT teams to address vulnerabilities and mitigate risks. Essential Job Responsibilities: Security Management: Implement and maintain security controls, policies, and procedures to protect the organization's information systems, networks, and data assets. Configure and manage security technologies, such as firewalls, intrusion detection systems (IDS), intrusion prevention systems (IPS), antivirus software, and encryption tools. Access Control: Administer user access privileges and permissions across various systems, applications, and network resources, ensuring adherence to the principle of least privilege. Monitor and audit user account activities, review access logs, and conduct periodic access reviews to identify and remediate unauthorized access. Vulnerability Management: Conduct regular security assessments, vulnerability scans, and penetration tests to identify potential security weaknesses and gaps in the organization's infrastructure. Track and prioritize security vulnerabilities, coordinate remediation efforts with IT teams, and ensure timely patching and updates of systems and applications. Incident Response: Monitor security events and alerts, investigate suspicious activities, and respond to security incidents in accordance with established incident response procedures. Document and report security incidents, breaches, and findings to management, and collaborate with internal stakeholders and external authorities as necessary. Security Awareness and Training: Develop and deliver security awareness training programs and materials to educate employees on security best practices, policies, and procedures. Promote a culture of security awareness and compliance throughout the organization, emphasizing the importance of protecting sensitive information and data assets. Qualifications: Bachelor's degree in information technology, computer science, cybersecurity, or a related field; or equivalent combination of education and relevant experience. Experience in information security roles, with hands-on experience in security administration, access control, and vulnerability management. In-depth knowledge of security technologies, standards, and frameworks, such as ISO 27001, NIST Cybersecurity Framework, and CIS Controls. Experience with security tools and platforms, including firewalls, IDS/IPS, SIEM, endpoint protection, and security information and event management (SIEM) systems. Strong understanding of network protocols, encryption techniques, authentication methods, and security principles. Relevant certifications, such as CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), or CompTIA Security, are highly desirable. Excellent analytical and problem-solving skills, with the ability to assess and mitigate security risks and vulnerabilities effectively. Strong communication and interpersonal skills, with the ability to communicate complex security concepts to technical and non-technical stakeholders. This job description is not intended to be all-inclusive. The employee may be required to perform other related duties as assigned to meet the ongoing needs of the organization. Duties, responsibilities, and activities may change or be modified at any time with or without notice.