SYSTEM ADMINISTRATOR I (Cyber Security)

System Administrator (Cybersecurity)

Position Objective

Enhance our cybersecurity Infrastructure by using Zero Trust concepts with our technology stacks and responding to alerts from the SOC team. This includes finding vulnerabilities, handling incidents, and supporting disaster recovery and backups.

Protect our digital assets from new threats by following industry best practices and regulations. Provide technical cybersecurity knowledge and solutions to help users understand and address cybersecurity issues.

Major Areas of Accountability

1. Device and Application Identification: Utilize Microsoft Intune MDM tool to identify and manage devices in the network. Incorporate advanced threat detection tool for comprehensive application identification. Create accurate network topology maps and analyze data flow.
2. Network and Endpoint Protection: Implement and manage Pulse Secure VPN for secure network access. Use Cisco Meraki and Fortinet Fortigate for firewall protection, and deploy SentinelOne / CrowdStrike for Endpoint Detection and Response. Enforce MFA with conditional acess. Manage DLP solutions to safeguard sensitive information.
3. Security Monitoring and Threat Detection: Utilize Securonix / Google Chronicle for SIEM to monitor and respond to security events.
4. Incident Response and Recovery: Use Microsoft Azure Site Recovery to ensure effective disaster recovery and backup solutions. Manage and respond to security incidents using established protocols and tools, and conduct Red Team and Blue Team exercises.
5. Penetration Testing and Vulnerability Management: Conduct regular penetration testing and vulnerability scanning with Nessus Tenable to identify and address security weaknesses. Analyze findings to enhance security measures and reduce risk exposure.
6. Security Awareness and Training: Implement security awareness training programs using KnowBe4 and Curricula to educate users about cybersecurity best practices and threats.
7. Compliance and Best Practices: Adhere to guidelines from NIST CSF, CIS18, and the MITRE framework to ensure compliance with industry best practices and regulatory requirements. Regularly review and update security policies to address emerging threats and vulnerabilities.
8. Off-hours Duty: On-duty employee is required to be available and handle problem according to SOPs.
9. Technology Solutions and Support : Provide technical cybersecurity knowledge and solutions to help users understand and address cybersecurity issues.
10. Perform additional tasks assigned by the management

Qualifications

1. Previous cyber security related experience a plus.
   
2. Master higher level skills in the specific job area.
3. Experience or competence of accomplished project with significant contributions.
4. Professional skills required for the tasks described in INDIVIDUAL SPECIFIC JOB TASKS session.
5. Applicant should possess strong logical design as well as problem-solving, critical thinking, and communication skills.
6. Qualified candidate will also possess good knowledge of computer programming languages, computer system analysis, and network infrastructure.
7. Excellent oral/written communication skills (required in English and preferred in Mandarin)
   Computer literacy and proficiency in documentation skills
   
8. 4-year college degree required with Computer Science or MIS related majors, advanced degree preferred