The Cyber Security Administrator will be responsible for designing and implementing and monitoring security solutions, intrusion prevention and detection, continuous diagnosis and mitigation (CDM), security training, malware defense, incident notification, and vulnerability testing and analysis. The administrator will work closely with other departments and functions to ensure that systems meet availability and security requirements
- Perform network security analysis and work with the IT Security team conducting incident response, event analysis and threat intelligence.
- Research, analyze data, and prepare reports that document vulnerabilities and recommend actions to prevent, repair or mitigate these vulnerabilities.
- Coordinate with System and Network Administrators to ensure security vulnerabilities are tracked and mitigated in a timely manner.
- Perform risk assessments using industry standard frameworks and methodologies.
- Identify risks and build relationships with internal and external stakeholders to support new initiatives.
- Perform and document security testing and validation of new systems and processes.
- Manage change control procedures and conduct audits to ensure the procedures are being followed.
- Create, manage, and maintain documentation to demonstrate compliance with industry, regulatory, and corporate policy requirements.
- Assist with the identification, response, investigation, and remediation of potential breaches and issues surrounding data security.
- Perform routine/scheduled audits of the systems, including all backups.
- Perform post-resolution follow-up to ensure reported security incidents have been successfully resolved.
- Independent and structured continuous learning to maintain a level of technical competency and business awareness to provide superior customer support services as new technologies are implemented.
- Maintain frequent communication with employees and IT teams to maintain awareness of issues or changing process/standards.
- Engage 3rd party support partners as required, as this person will be Rutter’s liaison to the outsourced vendors.
Preferred Education and Experience
- Bachelor's Degree (Cybersecurity, Computer Science or related field) or equivalent experience.
- 5+ years Information security administration experience in a corporate environment.
- Demonstrated experience supporting third party security tools to manage and audit information systems.
- 5+ years exposure to Payment Card Industry (PCI), and/or Information Technology General Controls.
- Possess a current ISA Certification or ability to achieve within 6 months.
- Ability to read/decipher firewall logs.
- Prior Experience with retail store operations and technologies preferred.
- Prior Experience with Nessus.
Rutter’s provides equal employment opportunities to all employees and applicants for employment without regard to race, color, ancestry, national origin, gender, sexual orientation, marital status, religion, age, disability, gender identity, results of genetic testing, service in the military, or any other protected status under Local, State or Federal Regulations.