Director, IT Security

RSA Conference•Boston, MA

12d•$180,000 - $200,000•Remote

About The Position

RSAC is the premier series of global events and year-round learning for the cybersecurity community. RSAC is where the security industry converges to discuss current and future concerns and have access to the experts, unbiased content and ideas that help enable individuals and companies advance their cybersecurity posture and build stronger and smarter teams. Both in-person and online, RSAC brings the cybersecurity industry together and empowers the collective “we” to stand against cyberthreats around the world. RSAC is the ultimate marketplace for the latest technologies and hands-on educational opportunities that help industry professionals discover how to make their companies more secure while showcasing the most enterprising, influential and thought-provoking thinkers and leaders in cybersecurity today. We are seeking a Director, IT Security to join our dynamic team. As a key member of the organization, you will bridge the gap between system administration and cybersecurity implementation. This position is pivotal in shaping and maintaining the organization’s security strategy and fostering a secure and resilient digital environment.

Requirements

Expert level knowledge of M365, Intune, and Microsoft Entra.
Proficiency in system administration across Windows and macOS
Familiarity with Azure & AWS administration
Strong knowledge of PowerShell scripting
Familiarity with Defender
Strong communication and collaboration abilities
Aptitude for translating technical concepts into business language
Adaptability to respond to fast-changing threat landscapes and regulatory shifts
Bachelor’s degree in computer science or information technology
7+ years in IT system administration and/or cybersecurity roles
Please be aware that although this is a remote position, to be considered for the vacancy, you must have residency in one of the following states. California, Colorado, Florida, Illinois, Kansas, Massachusetts, New Hampshire, New Jersey, New York, Pennsylvania, Texas, Utah, Washington

Responsibilities

Design, implement and maintain a comprehensive information security program.
Generate a set of standards and policies which reflect best practices from a security perspective.
Execute security policies, protocols, and projects.
Perform security reviews and evaluation of 3rd party tools and platforms
Implement tools and processes to ensure compliance with security standards.
Conduct risk assessments and vulnerability analyses, proactively address vulnerabilities and support audits.
Work alongside MSSP to investigate and respond to identified threats and alerts.
Maintain and update security documentation, including policies, procedures, and training materials.
Respond to cyber incidents.
Own the M365 tenant and serve as its primary administrator in support of IT work and business initiatives.
Serve as primary integrator and administrator for all SaaS applications in use at the company.
Support any cloud infrastructure in use, including AWS and Azure.
Administer, deploy, and configure company systems, including SaaS applications, Windows machines, Macs, and local tools.
Azure administration including cloud services, Entra ID, Outlook/Exchange, SharePoint.
Collaborate with MSP to maintain system uptime and security.
Perform regular maintenance and updates on IT infrastructure to ensure stability and security.
Assist in the evaluation and integration of new technologies to enhance IT operations.
Maintain and deploy new Single Sign-On (SSO) setups across SaaS applications.
Develop and automate scripts to streamline IT operations and reduce manual workloads.
Contribute to the development of an Identity and Access Management (IAM) plan, including Role-Based Access Control (RBAC).
Act as a liaison between IT and other departments.
Ensure seamless integration of IT tools with business operations.
Provide end-user training on new systems and security practices.
Document workflows and system configurations for transparency and knowledge sharing.
Lead small to medium-sized IT projects from initiation to completion.
Develop project plans, timelines, and resource allocation strategies.
Ensure alignment with business goals and effective communication throughout the project lifecycle.
Assist with the development and ongoing support of a User Access Review process
Assist in maintaining compliance with regulatory requirements and internal standards.
Support audits by providing necessary documentation and addressing findings.
Ensure all systems and processes adhere to RSAC’s security and operational policies.
Serve as a secondary escalation point for complex IT issues beyond the MSP’s scope.
Develop comprehensive troubleshooting guides for recurring technical issues.
Support onboarding and offboarding processes to ensure seamless transitions for employees.