Information Security Administrator

About The Position

Requirements

• Bachelor's degree in Information Security, Computer Science, or a related field, or equivalent work experience.
• 5+ years of hands-on experience in an information security role.
• Proven experience administering a variety of security tools, including firewalls, IPS/IDS, SIEM, EDR, and vulnerability management platforms.
• Proficiency with Security Information and Event Management (SIEM) platforms.
• Deep understanding of incident response methodologies.
• Experience in performing vulnerability assessments using a variety of tools and techniques and prioritizing remediation efforts based on risk and availability of resources
• Hands-on experience with Endpoint Detection and Response (EDR) solutions.
• Experience with security configuration standards such as DISA STIG, CIS Benchmarks, etc
• Familiarity with NIST Risk Management Framework (RMF) and similar compliance frameworks requirements.
• Certified Information Security Systems Professional (CISSP), Global Information Assurance Certification (GIAC) Security Essentials (GSEC), or equivalent information security certification.
• Strong knowledge of networking protocols (TCP/IP), security architecture, and cloud security principles (AWS, Azure, GCP).
• Experience with scripting languages (e.g., Python, PowerShell) for automation and orchestration.
• In-depth understanding of security frameworks such as NIST, ISO 27001, and CIS Controls.
• Excellent analytical, problem-solving, and communication skills.
• Demonstrated ability to lead technical teams and manage projects effectively.

Responsibilities

• Oversee and provide guidance for the implementation of products and services required to maintain compliance with existing, new or changing regulations and audit recommendations.
• Monitor security tools and communicate discoveries to mitigate threats and reduce risks to organizational systems.
• Assist system owners in the maintenance of enterprise vulnerability management standards across all operating systems, software applications and hardware configurations.
• Monitor security tools and perform review of system and security logs to identify indicators of compromise. Sources will include, but are not limited to, firewalls, network and host intrusion prevention/detection systems (IPS/IDS), virtual private networks (VPNs), SIEM systems, threat intelligence platforms, endpoint protection platforms, email security, forensic tools, public/private/hybrid cloud infrastructure and IDAM systems.
• Recommend improvements in efficiencies using automation and orchestration solutions to reduce manual work that can be done programmatically.
• Serve as a team lead and point of contact for incident response analysis and continuous monitoring activities.
• Lead the creation and maintenance of security documentation including, but not limited to, policies and standard operating procedures.
• Protect the enterprise by reviewing and recommending changes to access privileges, control structures and resources.
• Attend and engage in all change control board meetings.
• Liaison with auditors, both internal and external, to maintain and implement controls for compliance and privacy laws.
• Research and recommend best practices and required configuration standards for compliance and privacy law obligations.
• Remain current with new security threats and assessing systems to ensure they can defend the business.
• Perform other duties as assigned.

Benefits

• The base salary for this position ranges from $120,000- $150,000 annually, depending on your location, experience, and qualifications. Additional compensation offerings include a company profit-sharing bonus program, communication stipends, and referral bonuses.
• Comprehensive medical, dental, and company paid vision insurance, 401(k) retirement plan with employer match, voluntary life and AD&D insurance options, voluntary supplemental insurances for accident, critical illness, and legal services, paid time off (PTO) and paid holidays, employee assistance and wellness programs, company paid short term disability coverage, company contributions to health saving funds (with participation in the high deductible health plan. We offer company-paid access to Galileo for virtual primary care and Rula for virtual mental health resources.
• Through our Anniversary Program, we celebrate the meaningful milestones and long tenure that reflect how much we value your contributions and commitment to our team.
• Career and skill development resources to help advance your career and personal growth.
• A mission-driven environment where your work makes a measurable impact on the real estate industry.