Security Administrator

About the Company:

Headquartered in Santa Ana California, Veros (www.veros.com) is a leading technology company that develops, operates, and maintains custom software and business analytic solutions for the financial services industry. We are looking for a self-motivated, independent person to play a critical role, supporting the company’s end user technology needs.

Recognized as a Great Place to Work, Veros offers a unique opportunity that encourages creativity and professional growth along with a competitive salary and benefits package including medical, dental, vision, life, 401(k), vacation, sick, holidays, and more. This position offers a base plus bonus opportunities. 

Position Overview:

We are seeking a Security Administrator to be a key player in safeguarding Veros’ technology ecosystem. This role requires a strong foundation and acumen in risk management, IT security concepts, compliance, networking, systems, and security tools/technologies. The ideal candidate should also possess technical skills in these areas, with a basic understanding of programming and scripting to support security automation and remediation efforts.

You will proactively identify threats, mitigate risks, ensure compliance, and enhance security operations, working closely with IT, development, and business stakeholders to uphold Veros’ security posture. 

Key Responsibilities:

• Cybersecurity Strategy & Implementation
  • Design, implement, and maintain cybersecurity frameworks and best practices.
  • Deploy and manage security tools such EDR, MDR, IPS/IDS, and cloud security solutions.
  • Proven experience implementing secure identity and access solutions using Azure AD, Microsoft Entra, RBAC, and Zero Trust principles. 
  • Skilled in deploying Azure Policies, Blueprints, and automation tools (PowerShell, Azure CLI) to standardize and enforce security configurations.
  • Strengthening MFA and DLP policies.
  • Help provide security guidance to IAM teams in maintaining proper access controls to critical business systems.
  • 
    
• Threat Management & Incident Response
  • Hands-on experience with Defender for Cloud and other Azure-native tools for threat detection, response, and posture management.
  • Strong background in network security, incident response workflows, and leveraging logs and alerts to investigate and contain threats.
  • Monitor, analyze, and respond to security events using SIEM, threat intelligence, and advance security analytics.
  • Perform proactive threat hunting, vulnerability assessments, and penetration testing.
  • Investigate security incidents, conduct, root cause analysis, and implement remediation measures.
  • Help establish and maintain policies and procedures for Company’s Incident Response Plan and ensure it is tested on an annual basis.
  • 
    
• Compliance and Risk Management
  • Work closely with software development teams to implement secure coding practices and protect against OWASP Top 10 vulnerabilities.
  • Develop, document and enforce security policies, standards, and procedures for both cloud and on-prem environments.
  • Help coordinate security awareness training for end users to strengthen the security-first culture within the organization.
  • Perform quarterly and yearly security controls assessment that encompass physical and logical access.
  • Assist stakeholders in engaging outside parties (customers, integration partners, etc) in completing IT Security Assessments on an ongoing basis.
  • Adept at conducting risk assessments, applying least-privilege access (RBAC), and maintaining audit readiness in cloud environments.
  • 
    
• Disaster Recovery & Business Continuity.
  • Maintain and test disaster recovery (DR) and business continuity (BC) plans. Ensure secure backup and recovery mechanisms are in place to mitigate potential cyber threats.

Required Qualifications & Experience:

• Bachelor’s degree or higher in Computer Science or related discipline (or equivalent career experience).
• 5+ years of progressive hands-on security administration experience in an enterprise environment.
• Hands-on experience in securing Microsoft Azure environments and a strong understanding of cloud security architecture and best practices is highly valued. In addition, experience in two or more of the following areas is a strong plus:
  • Cloud Security (AWS, Azure, or GCP)
  • Network security (firewalls, IDS/IPS, VPNs, ZTNA)
  • Application Security (secure SDLC, DevSecOps practices)
  • Endpoint Detection and Threat Detection (EDR, XDR, MDR, NDR)
  • Email Security & Anti-Phishing Solutions
  • Identity & Access Management (IAM, SSO, MFA)
  • Data Protection & Data Loss PreventionStrategies (DLP)
  • Security information and event management (SIEM) platforms
• Strong problem-solving, analytical, and incident response skills. Familiarity with regulatory requirements such as SOC II, GDPR, CCPA, NIST 800-53, and CIS benchmarks.
• Industry certifications (CISSP, GIAC, Security+, AWS/Azure Security) are a plus. Project management experience is a plus.

Why Join Veros?

• Be part of a high-impact security team that protects mission-critical financial data.
• Work on cutting-edge cloud security and DevSecOps initiatives.
• Collaborate with seasoned cybersecurity professionals in an innovative environment.
• Enjoy a company culture that values security, innovation, and work-life balance.

Veros is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.