Security Administrator

About the role

The Security Administrator serves on the Information Security team for our organization, and is responsible for implementing, maintaining, and monitoring security controls across a hybrid environment with emphasis on Microsoft Azure, Microsoft 365, and collocated on-premises infrastructure. This role leads and supports incident response, access management, infrastructure hardening, and regulatory compliance activities in a highly regulated environment. A DevSecOps mindset, automation experience, and familiarity with security-as-code/infrastructure-as-code practices are preferred.

What you'll do

Security Operations & Incident Response

· Partner with Security and Risk leadership to design and implement security policies, standards, and frameworks.

· Participate in and coordinate security incident response activities including data breaches and virus outbreaks.

· Operate, tune, and use SIEM/SOAR and related tooling to detect, investigate, and respond to threats.

· Coordinate security incident response activities across technical teams.

· Develop, test, and implement disaster recovery strategies from a security viewpoint.

Access Management & Compliance

· Manage privileged access controls (including PIM and PAGs) and conduct regular access reviews.

· Ensure security controls align with financial industry regulatory and compliance standards.

· Coordinate with compliance officers on security-related regulatory requirements.

· Maintain asset inventory and system/component security documentation.

· Coordinate and oversee third-party penetration testing activities.

Security Infrastructure Management

· Manage security solutions across hybrid cloud environment.

· Participate in the implementation of security systems such as endpoint security, firewall, and anti-malware systems.

· Conduct regular security assessments to identify and remediate vulnerabilities.

· Conduct periodic access reviews of Kuvare systems.

· Recommend and implement improvements and upgrades.

· Coordinate with engineering teams on secure cloud (PaaS) implementations.

· Develop automation solutions using modern scripting languages to ensure reliable outcomes.

Leadership & Guidance

· Provide security architecture guidance for cloud and infrastructure initiatives.

· Mentor IT team members on security best practices.

· Partner with network, application, and database teams to implement secure solutions.

Qualifications

· 5+ years of IT Security experience, with at least 4 years focusing on Microsoft technologies.

· Advanced certifications in cybersecurity, in good standing (CISSP and\or CCSP)

· Deep knowledge of Microsoft Azure security services, including Defender, Intune, Sentinel, and Entra ID

· Extensive experience with hybrid cloud security architecture and controls

· Strong background in security tools administration and configuration

· Proven experience with endpoint security solutions and modern device management (Intune)

· Advanced knowledge of network security concepts, including VPNs, firewalls, and SASE.