Essential Functions/Major Responsibilities:
1. Provide Business and IT management with guidance on IT risk management matters, particularly on application and infrastructure security.
2. Responsible for maintaining the IT Risk Assessment; including identifying areas where business groups should consider additional investment and areas IT internal audit should focus. These include:3. Triage and resolve alerts to identify malicious activity and identify Indicators of Compromise (IOCs)
4. Perform pre- and post-implementation reviews of IT system implementations or enhancements.
5. IT security audits (e.g. network, operating system, and data center), including evaluating if security vulnerabilities are properly identified and mitigated. Coordinate the scope and performance of these reviews as necessary with business units and external security experts.
6. Evaluate general computing controls and provide value-added feedback. Test compliance with those controls.
7. Perform various other reviews of IT management policies and procedures such as change management, business continuity planning/ disaster recovery, and information security to ensure that controls surrounding these processes are adequate.
- Assist in the administration of Microsoft 365 Defender for Cloud and various other security products.
- Responsible for assisting with audit efforts and ensuring compliance with corporate OT security standards.
- Assist in the administration of security platforms (Vulnerability Management, Endpoint Protection, etc..)
- Escalate problems / Identify risks (as appropriate) to IT Management.
- Evaluate existing business solution migration opportunities and work as part of a team to migrate to an appropriate cloud-based solution.
- Assist in the administration of Microsoft System Center Service Manager systems
- Contribute to cloud-based team projects centered around SharePoint Online, Exchange Online, PowerApps, and PowerBI.
- Record, track and document the service desk request problem-solving process, including all successful and unsuccessful decisions made, and actions taken, through to final resolution.
- Alert management to emerging trends in risks and incidents.
- Develop/Update support documents and FAQ sheets
- Reinforce project and service level agreements to manage end-user expectations.
- Provide end-user support when required.
- Provide management with metrics and SLA reports when required.
- Other duties as assigned.
Supervisory Responsibility: None.
Qualifications:
Education/Training: BS degree in IT or computer science or related field required; will consider candidates with AS degree and/or equivalent college coursework. Minimum of Security+ and/or Cloud+ certificate., and certified a Microsoft 365 service such as Microsoft SharePoint / Power Platform.
- Experience Required: 5+ years of experience in IT in a 500+ user environment with multiple locations. Experience in IT auditing.
- Technical Requirements:
- Security Information and Event Management Toolset knowledge
- Experience with Microsoft 365 and Azure
- Experience with Active Directory administration
- Experience with service desk ticketing software
- Experience with PowerShell Scripting a plus
- Experience with network infrastructure
- Experience with Lotus Notes
Skills Required:
- Outstanding interpersonal and communications skills; ability to communicate effectively with technical and non-technical audiences
- Knowledge of internal auditing, internal controls, and risk management
- Familiarity with finance and accounting practices and methods
- Comprehensive understanding of internal control environments within the IT function
- Experience with multiple technology domains including aspects of Windows, Unix and/or database administration, software development and networking
- Working understanding of Microsoft 365 services
- Ability to work in a team environment
- A proactive, hands-on, results-driven orientation is required.
- Ability to blend exceptional attention to detail with an ability to retain strategic direction within a rapidly evolving entrepreneurial business culture
- Ability to produce high-quality work products for both the IT groups and Senior Management.
-
-
- Job Conditions/Physical Demands:
- Office environment
- Available to travel if required
- Walking, standing, bending, stooping
- Ability to sit at a computer terminal, use of keyboard
- Ability to lift up to 25 pounds
Protective Devices Required: In required areas as posted.