IT Security Specialist I

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience).
• Basic understanding of cybersecurity principles, including authentication, authorization, encryption, and network security.
• Familiarity with cloud platforms (e.g., Microsoft Azure, AWS) and identity management concepts.
• Strong analytical and problem-solving skills.
• Excellent communication and documentation skills.
• Familiarity with scripting (PowerShell or Python) for basic automation.
• Ability to interpret basic log sources (Entra sign‑ins, security events, firewall logs).
• Understanding of Zero Trust principles (at a conceptual level).
• Experience using documentation tools (Azure DevOps Wiki Markdown, SharePoint, Visio).

Nice To Haves

• Exposure to security tools such as CSPM, CWPP, or IAM solutions.
• Knowledge of Microsoft security technologies (e.g., Conditional Access, Azure AD).
• Relevant certifications (e.g., CompTIA Security+, Microsoft SC-900, or similar).
• Familiarity with ticketing and ITSM workflows.
• Any exposure to identity analytics or risk scoring systems.

Responsibilities

• Security Architecture Support
• Assist in the implementation and maintenance of perimeter security controls, including, but not limited to: SSPM (SaaS Security Posture Management) CSPM (Cloud Security Posture Management) CWPP (Cloud Workload Protection Platform) CIEM (Cloud Infrastructure Entitlement Management) NSPM (Network Security Policy Management)
• Support the development and documentation of security architecture standards and patterns.
• Help review and validate security configurations for new and existing systems.
• Identity & Access Management (IAM)
• Assist in managing Microsoft Conditional Access Policies to enforce secure authentication and access control.
• Support Privileged Access Management (PAM) processes, including onboarding privileged accounts and monitoring usage.
• Participate in periodic access reviews and identity governance activities to ensure compliance with least privilege principles.
• Monitoring & Compliance
• Monitor alerts from security tools and escalate potential issues to senior team members.
• Assist with compliance checks against internal security policies and regulatory requirements.
• Help maintain documentation for audits and security assessments.
• Collaboration & Continuous Learning
• Work closely with senior architects, and engineers to understand security technologies and processes.
• Partnering with Infrastructure, Cloud, Compliance, and Service Desk teams.
• Stay informed about emerging cybersecurity threats, trends, and best practices.
• Participate in team meetings and contribute to discussions on improving security posture.
• Be active in H-ISAC Architecture and Engineering groups.
• Work toward a relevant, recognized certification within 12 to 18 months.

Benefits

• Health and wellness– We want our people to be and stay healthy, so we offer PPO, HDHP, and HMO health insurance options with Cigna and Kaiser (CA employees only).
• Financial incentives – Paradigm’s financial benefits help prepare you for the future: competitive salaries, 401(k) matching contributions, employer-paid life and disability insurance, flexible spending and commuter accounts, and employer-matched HSA contributions.
• Vacation - We believe strongly that work-life balance is good for you and for our company. Our paid time off and personal holiday programs give you the flexibility you need to live your life to the fullest.
• Volunteer time– We want our employees to engage with and give back to their communities in meaningful ways. Full and part-time employees receive one paid day per calendar year.
• Learning and development: One of Paradigm’s core values is expertise, so we encourage our employees to continually learn and grow. We support this in a variety of ways, including our new Learning Excellence at Paradigm (LEAP) program.