Cyber Security Administrator

Job Title: Cyber Security Administrator

Job Summary:  The Cyber Security Administrator will support both the Cyber Engineering and Cyber Operations functions. The ideal candidate will assist in managing a range of cybersecurity technologies, ensuring operational efficiency, security resilience, and compliance with enterprise security standards. This role will be instrumental in supporting SIEM, Endpoint EDR, Vulnerability Management, Email Security, Web Security, and Network Security while contributing to threat hunting and cyber event analysis. The candidate should also possess expertise in Microsoft Azure Security technologies for securing cloud and hybrid environments.

Critical Outputs:

Strategy & Planning 

•         Participate in the planning and lead execution of strategic security technology rollouts. 

•         Engage vendors and partners while contributing to proof of value (POV) cyber exercises. 

•         Support the creation of enterprise security documents (policies, standards, guidelines, baselines, and procedures) under the direction of the Information Security Manager.

Acquisition & Deployment 

•         Maintain up-to-date knowledge of cybersecurity industry trends, emerging threats, and attack vectors.

•         Recommend new security solutions or enhancements to improve overall enterprise security posture. 

•         Deploy, integrate, and configure new security technologies, ensuring alignment with enterprise security best practices.

•         Maintain integration catalog documenting all log sources, connectors and parsers in the SIEM, including custom ingestion pipelines.

Operational Management 

•         Maintain secure baselines for cybersecurity solutions, ensuring continuous compliance with security policies. 

•         Monitor and optimize the Next-Gen SIEM, supporting event analysis and response. 

•         Review logs and reports from security devices (EDR, IPS, SIEM, vulnerability scanners) and interpret threat intelligence for proactive risk mitigation.

•         Participate in incident investigations, supporting threat hunting and response efforts.

•         Engage with vendors for technical support and security enhancement discussions. 

•         Implement security changes in accordance with Organization’s Change Advisory Board (CAB) processes.

•         Contribute to vulnerability assessments, penetration testing, and security audits, ensuring risk identification and remediation. 

•         Provide on-call security support for enterprise security operations.

•         Run regular SIEM health checks — data volume, parsing success rates, retention compliance — and remediate gaps proactively.

•         Curate and update detection content (rules, analytics stories) in your SIEM based on MITRE ATT&CK, ransomware TTPs and threat intel feeds.

•         Perform root-cause analysis on repeat security incidents and drive action items with system owners.

Requirements

         Diploma or degree in Computer Science, Cybersecurity, or related fields. 

•         Minimum of 3 years of cybersecurity experience. 

•         One or more of the following certifications:

•         CompTIA Security+

•         Microsoft Security, Compliance, and Identity Fundamentals (SC-900)

•         Microsoft Identity and Access Administrator (SC-300)

•         Microsoft Information Protection Administrator (SC-400)

•         Associate of (ISC)² 

•         Experience with Microsoft ATP and Azure Security solutions. 

•         Familiarity with Fortinet and Cisco security technologies. 

•         Proven experience in endpoint, network, and email security implementation. 

•         Strong understanding of IP, TCP/IP, network administration, and cybersecurity protocols. 

•         Knowledge of Incident Response processes, threat hunting, and cyber event analysis.

Competencies:

•         Strategic thinking and planning        

•         Deadline-driven and ability to manage highpressure environments 

•         Problem-solving and innovative mindset

•         Excellent relationship-building skills 

•         Attention to detail and resilience 

•         Creative and adaptable approach to cybersecurity challenges