Senior Security Administrator (Hybrid - In Office 10 days/Month)

National Guardian Life Insurance Company•Madison, WI

11h•Hybrid

About The Position

We are adding Senior Security Administrator to our team! This is a hybrid position requiring to be In-Office 10 days per month. Who We Are: Since 1909, National Guardian Life Insurance Company (NGL) has been one of America’s most successful and highly rated independent life insurance companies. We specialize in a suite of innovative products for life’s journey, giving people the financial stability, careful guidance and peace of mind to lead a life filled with confidence, dignity and grace. NGL's Core Values – integrity, dependability, collaboration, compassion and growth are a foundation of our company and help to build on the interactions we have with our policyholders, partners, funeral homes and each other. We believe in creating an inclusive, welcoming environment for all where diversity is celebrated, and everyone is encouraged to live their best, most authentic self. We offer Employee Resource Groups for employees to get involved, learn, network, and offer professional and personal development opportunities. With over 100 years of experience, our passion is to serve people. Learn more . Work Environment: NGL offers a flexible work environment where employees can work fully remote, hybrid or onsite at our Madison, Wis. office. We support virtual working arrangements in certain states outside of WI. A Day in the Life: The Senior Security Administrator is essential to the Information Security team to help ensure the availability, security and integrity of NGL's brand, personnel, services, systems and data. This position is responsible for managing and tuning security technologies, including next-generation firewalls, intrusion detection/prevention systems (IDS/IPS), endpoint detection platforms (EDR), and cloud-native security tools, as well as monitoring for any suspicious activity while staying ahead of the latest threats and vulnerabilities. This role requires strong analytical and troubleshooting skills, keen attention to detail, and a commitment to continuous learning. Success in this role also requires the ability to collaborate effectively with both technical and non-technical teams across the organization to support the business and maintain a strong security posture.

Requirements

In-depth understanding of network security fundamentals, including secure network architecture, segmentation, firewall rule management, VPN technologies, and perimeter defense strategies
Strong understanding of enterprise-level detection and prevention technologies, such as intrusion detection/prevention systems (IDS/IPS), next-generation firewalls (NGFW), endpoint detection and response (EDR), and security information and event management (SIEM) systems
Proficient in security operations and incident handling processes, including security monitoring, data correlation, alert triage, root cause analysis, and threat containment and remediation
Solid knowledge of vulnerability management practices, including identification, prioritization, tracking, and remediation of vulnerabilities across network, system, and application layers
Strong background in system administration and networking, including TCP/IP fundamentals, OSI model, and operating system and network device hardening techniques based on CIS Benchmarks or equivalent
Demonstrated experience collaborating with software and hardware vendors to design, integrate, and implement security solutions
Ability to work both independently and collaboratively, with excellent verbal and written communication skills for interacting with cross-functional teams, technical staff, and non-technical stakeholders
Understanding of cybersecurity frameworks and standards, such as NIST Cybersecurity Framework, NIST SP 800-171, CIS Controls, ISO/IEC 27001 and CMMC 2.0
Exceptional attention to detail and ability to work under pressure
Excellent critical thinking and problem-solving skills
Genuine passion for cybersecurity and emerging technologies, with a continuous improvement mindset and a commitment to staying current on evolving threats, tools, and security trends
Minimum: Two Year / Associate degree in related field.
A minimum of eight years of experience in Information Security / IT industry, focusing on successful security enterprises with a strong networking background and information security principles required.
Direct experience working with technology systems and components, including cloud technologies and operating systems required.

Nice To Haves

Familiarity with cloud security principles, including cloud-native firewall services and Infrastructure as Code (IaC) security practices in platforms like AWS and Azure is a plus
Preferred: industry recognized certifications (CISSP, CEH, Cisco, Security+, Etc)

Responsibilities

Manage, and maintain enterprise-grade network security systems, with a primary focus on next-generation firewalls, intrusion prevention/detection systems (IPS/IDS), data loss prevention (DLP), web content filtering, and endpoint protection solutions.
Monitor, analyze, and respond to network security events and alerts, including those from firewalls, SIEM, and intrusion detection systems.
Participate in threat hunting and incident response activities, helping to identify and remediate malicious activity across the network.
Continuously optimize security controls and configurations, especially firewall and network security policies, through tuning and validation of alerts and rule sets in collaboration with IT and security teams.
Support troubleshooting and resolution of issues related to firewall configurations, VPNs, secure remote access, and other network security controls, ensuring the availability, integrity, and confidentiality of network services.
Contribute to continual assessment of internal security controls, including their design and mitigations and assist in resolving monitor gaps and misconfigurations.
Provide mentorship, guidance and support to developing team members.
Lead and contribute to the training and onboarding of new and existing team members.
Stay current of technology advancements and security trends.
Maintain awareness of current and emerging threats, vulnerabilities, and exploits affecting network infrastructure, including timely documentation, tracking, and mitigation of relevant vulnerabilities using intelligence-driven cybersecurity practices.
Promote a culture of security awareness by educating employees on secure practices, phishing threats, and general cybersecurity hygiene during engagements or when opportunities arise.
Execute tasks and projects ensuring all are completed by assigned deadlines.
Perform other duties as assigned, particularly those related improving security posture and aligning with the organization’s cybersecurity objectives.

Benefits

20 days of Paid Time Off growing to 25 days after 5 years
11 Paid Holidays (10 company holidays and 1 personal holiday of your choice)
Health care, dental and vision plans
Up to $1,500 (Family) or $1,000 (Single) annually towards a Health Savings Account
Annual bonus based on company performance
Paid Parental Leave
401(k) match up to 9%
Paid Sabbatical after 8 years
Paid Volunteer Time
Education Assistance Program
Employee Recognition Program