Sr. Cybersecurity Admin - IT
Description:
Title: Sr. Cybersecurity Administrator
Division: IT
Summary: LJA Engineering is seeking a knowledgeable and experienced Sr. Cybersecurity Administrator to enhance our organization’s security posture across infrastructure, applications, and cloud platforms. This role will focus on hands-on implementation, and oversight of cybersecurity solutions that support scalability, threat defense, and compliance. The ideal candidate will bring expertise in system hardening, email and endpoint security, and incident response frameworks.
General Responsibilities:
Security Architecture & Design: Implement and maintain architectures for enterprise systems across on-premises and cloud environments (Azure, AWS).
Threat Detection & Response: Support efforts in EDR/NDR implementation, and incident response planning. Support proactive monitoring and resolution of cybersecurity threats and vulnerabilities.
Security Technologies & Controls: Configure, manage, and implement tools and solutions including email security platforms, endpoint protection, and enterprise security services.
Governance & Risk:. Assist in aligning security measures with business objectives and regulatory frameworks (NIST, CIS, and HIPAA).
Automation & Integration: Leverage scripting (e.g., PowerShell) and automation to standardize security controls and streamline security operations across hybrid environments.
Collaboration & Execution: Collaborate with business teams to implement security controls and best practices. Support knowledge-sharing and contribute to team-wide cybersecurity awareness and skill development.
Skills & Knowledge:
Hands-on experience implementing and managing Endpoint Detection and Response (EDR) solutions.
Strong understanding of email security tool management and implementation
Experience deploying and tuning Endpoint Data Loss Prevention (DLP) tools and policies.
Experience in hardening Windows and Linux systems based on CIS benchmarks.
Knowledge of SIEM tools, including rule tuning and incident correlation.
Familiarity with vulnerability management tools and remediation processes.
Experience creating and maintaining runbooks, playbooks, and technical documentation for security operations.
Implemented and managed Endpoint Detection and Response (EDR) platforms such as Microsoft Defender for Endpoint and CrowdStrike, including policy configuration, threat telemetry analysis, and response automation.
Configured and maintained email security solutions (e.g., Microsoft Defender for Office 365, Mimecast), focusing on anti-phishing, spoofing protection, domain impersonation rules, and quarantine policies.
Deployed and fine-tuned Endpoint Data Loss Prevention (DLP) solutions, creating policies to protect sensitive data and reduce insider risk across cloud and on-prem environments.
Hardened Windows and Linux systems in alignment with CIS benchmarks and NIST guidance, including baseline enforcement, privilege minimization, and secure configuration practices.
Conducted vulnerability management activities, including scanning, prioritizing findings based on CVSS/contextual risk, and coordinating remediation efforts.
Required Education:
Bachelor’s degree in Cybersecurity, Information Technology, or a related field, or equivalent professional experience.
Required Experience
Over 8 years of hands-on experience designing, configuring, and securing enterprise IT infrastructure across diverse environments.
Expertise managing cybersecurity operations across hybrid environments, cloud platforms, and automating security configurations to support compliance and incident response.
Certifications (Any combination preferred):
Microsoft Certified: Azure Security Engineer Associate: AZ-500
Microsoft Certified Professional (MCP)
(ISC) SSCP
CompTIA CYSA+
CompTIA S+
GIAC Certified Windows Security Administrator (GCWN)
GIAC Security Essentials (GSEC)