Senior Cyber Security Administrator

Senior Cyber Security Administrator  
Department: IT
 
Reports to: Manager, Information Security
 
Job Summary: Provide hands-on technical leadership in securing the IT systems, networks, and data. This role involves deploying, managing and optimizing cybersecurity tools, responding to incidents, and maintaining a resilient infrastructure. Working within a small, agile team, the position also supports system administration tasks. It leads Business Continuity and Disaster Recovery (BC/DR) planning and testing to ensure uptime and data integrity.
 

About the Team
The IT department comprises a small team of skilled professionals who manage daily operational responsibilities alongside project initiatives. Our objective is to deliver efficient, customer-centric service with professionalism and courtesy. We operate collaboratively, providing support to staff at both the national office and remote locations, with occasional travel required. As a lean team, we emphasize agility and adaptability while maintaining the highest standards of quality.
 
Duties & Responsibilities
Security Operations & Continuous Improvement

• Administer, monitor, and optimize network and perimeter security controls, including next-generation firewalls, WAFs, and IDS/IPS systems, to prevent unauthorized access and ensure regulatory compliance
• Install, configure, and maintain enterprise security solutions, including MDR, EDR, and SIEM platforms, to support proactive threat detection and incident response
• Implement Zero Trust architectures, including ZTNA, micro-segmentation, and identity-based access policies
• Develop, maintain, and enforce security policies, standards, procedures (SOPs), and configuration baselines
• Conduct regular audits of security policies across all on-premises and cloud-based applications, domain controllers, firewalls, and related systems, and implement best practices to ensure robust cybersecurity measures are consistently applied throughout the network
• Lead and collaborate with infrastructure and application teams to implement industry-standard cybersecurity initiatives, driving continuous improvement of the organization's security posture
• Support compliance with NIST CSF, CIS, PCI-DSS, and other relevant frameworks

 
Incident Response & Threat Analysis

• Lead security incident response processes from detection through containment, eradication, and recovery
• Perform forensic investigations using logs, endpoint telemetry, and network traffic captures
• Develop and operationalize incident response playbooks covering escalation, notification, and post-incident reviews
• Conduct root cause analyses, document lessons learned & implement corrective actions to improve security posture

 
Vulnerability Management

• Execute regular vulnerability assessments and coordinate external / internal penetration testing engagements
• Configure and maintain vulnerability management platforms (e.g., Tenable, Qualys, Rapid7)
• Collaborate with infrastructure and application teams to prioritize and remediate identified vulnerabilities
• Ensure timely patch deployment while balancing operational and business continuity considerations

Penetration Testing & Ethical Hacking

• Conduct internal penetration tests and ethical hacking exercises on networks, endpoints, APIs, and web applications
• Simulate advanced persistent threat scenarios through red/purple teaming to assess detection and response capabilities
• Document findings provide remediation guidance and validate resolution through re-testing.

 
Identity and Access Management (IAM)

• Architect, implement, and maintain IAM solutions supporting SSO, MFA, PAM, and role-based access control (RBAC).
• Oversee user lifecycle management, including provisioning, deprovisioning, and privilege audits.
• Integrate IAM systems with directory services and enterprise applications to strengthen authentication and authorization

 
Business Continuity & Disaster Recovery

• Develop, maintain, and test Business Continuity & Disaster Recovery plans in alignment with organizational risk strategy
• Conduct regular DR testing and tabletop exercises to validate recovery objectives (RTO/RPO)
• Document DR outcomes and implement continuous improvements to minimize downtime and data loss risk.
• Collaborate with infrastructure and application owners to ensure system redundancy, data protection, and failover capabilities.

 
Qualifications
Education
 

• Bachelor's degree in computer science, IT, or equivalent experience

 
Experience
 

• 7-10+ years of hands-on experience in Cybersecurity operations, network defense, and infrastructure security
• Hands-on expertise managing enterprise-scale security tools such as next-generation firewalls, MDR/EDR, DLP, and NAC
• Proven track record in designing, implementing, and maintaining secure, resilient networks across multi-site environments
• Demonstrated experience leading complex network and security projects, including upgrades, migrations, and recovery.
• Strong background in vulnerability management, incident response, and security hardening across hybrid on-premises and cloud environments.
• Proficient in patch management with a focus on minimizing operational risk while ensuring business continuity.
• Experienced in developing, maintaining, and executing Business Continuity and Disaster Recovery (BC/DR) plans, including DR testing and post-event analysis.

 
Skills

• Deep technical expertise with Next-Generation Firewalls (Palo Alto, Cisco), Web Application Firewalls, and centralized management platforms such as Panorama and Cisco Meraki.
• Proficient in VPN technologies, including Prisma Access, Site-to-Site, SSL VPN, and IPsec for secure remote and inter-site connectivity.
• Strong understanding of advanced routing protocols (OSPF, BGP, EIGRP) and firewall rule design, including NAT, IDS/IPS configuration, and traffic segmentation.
• Experienced with Network Access Control (NAC) solutions such as Aruba ClearPass, implementing 802.1X authentication, device onboarding, and guest access policies.
• Skilled in integrating network and security solutions within virtualized environments (VMware, Hyper-V, VxRail) to ensure scalable and resilient infrastructure.
• Hands-on experience managing SIEM, EDR/MDR, DLP, and vulnerability management platforms for proactive threat detection and response.
• Demonstrated ability to design, implement, and test Business Continuity and Disaster Recovery (BC/DR) strategies to ensure operational resilience.
• Proficient in network monitoring and diagnostics using SNMP, NetFlow, Wireshark, PRTG, SolarWinds, and Zabbix for performance optimization and incident troubleshooting.
• Exceptional analytical and problem-solving skills with the ability to remain composed and effective during critical outages or incident response.
• Excellent communication and documentation skills for presenting technical concepts to both technical and non-technical stakeholders.

 
Certification (Nice to have)

• Certified Information Systems Security Professional
• Offensive Security Certified Professional
• Certified Cloud Security Professional
• Certified Ethical Hacker (Must have)
• Palo Alto PCNSE / PCNSA