Job DescriptionSecurity AdministratorThe Security Administrator is responsible for supporting day-to-day security operations across on-premises and cloud-based environments. This role focuses on monitoring, incident response, platform administration, and ensuring compliance with organizational security policies.
The Security Administrator works closely with senior team members to maintain a secure, stable, and compliant environment in support of patient care systems.
RESPONSIBILITIESResponsibilities for the Security Administrator can vary, but should include:
- Monitor security tools and platforms for alerts and anomalies.
- Investigate and respond to security incidents under senior guidance.
- Support administration and maintenance of security platforms (including SIEM).
- Assist with log analysis, threat detection, and vulnerability remediation.
- Participate in incidents, problems, and change management processes.
- Document procedures, runbooks, and operational processes.
- Assist with compliance evidence gathering and audit support.
- Support patching, vulnerability remediation, and system hardening efforts.
- Collaborate with infrastructure and engineering teams to secure assets.
- Maintain inventory of security-relevant infrastructure components.
QUALIFICATIONS- 2-4 years of experience in Security Operations, Systems Administration, or related field.
- Experience supporting production IT environments.
- Bachelor's degree in Information Technology, Computer Science, or related (equivalent experience considered).
- Strong experience with Enterprise SIEM (Splunk or similar).
- Basic understanding of events and incident handling.
- Experience in regulated industries (HIPAA, HiTrust, PCI, SOX) preferred.
- Experience in healthcare environments a plus.
- Exposure to Agile environments preferred.
BUSINESS ACUMEN- Strong written and verbal interpersonal skills.
- Strong attention to detail.
- Ability to follow documented processes and escalate appropriately.
- Strong problem-solving skills.
- Customer-focused mindset and accountability.
TECHNICAL SKILLS- Windows/Linux security/administration knowledge.
- Basic SIEM monitoring and log analysis.
- Network/Server security attack mitigation.
- Load balancer knowledge (NetScaler, F5).
- Understanding of vulnerability management concepts.
- Exposure to privileged access management tools (e.g., CyberArk or similar).
- Basic understanding of automation and monitoring tools.
EDUCATION / CERTIFICATION / TRAINING- Bachelor degree in Computer Science, Cybersecurity, Engineering, Math or related (equivalent experience considered).
- Candidates with relevant certifications are preferred, including but not limited to the following:
- Security analysis (eg. Security+, GSEC, GCIH, GCIA, etc)
- Security management\architecture (eg. CASP+, CISSP, NCSF, etc)
- Security engineering (eg. Azure SAE, GCWIN, GCUX, PCCSA\CCNA, etc)
- Information security auditing (eg. CISA, CIA, GSNA, ISO, etc)
- Certifications in Splunk
- Certifications related to ITIL\ITSM
This position does not provide sponsorship. All applicants should have the right to work in the US without immigration sponsorship.
