Must be fully bilingual in English and Spanish (Oral and Written).
The Senior Security Administrator is responsible for implementing, maintaining, and troubleshooting all security-related systems and policies across the IT infrastructure. This role works collaboratively with IT teams to ensure that security best practices, as determined by the vCISO, CIO, and MSSP, are embedded into all enterprise systems. The position will actively coordinate with the other Systems Administrators (Networking and Communication, Applications, Servers and Cloud) to enforce security standards and mitigate risks effectively.
Responsibilities :
Security Implementation & Maintenance :
- Deploy, configure, and maintain enterprise security tools, including endpoint protection, firewalls, intrusion detection / prevention systems (IDS / IPS), and SIEM solutions.
- Implement security policies and procedures across IT systems, ensuring compliance with industry's best practices and regulatory requirements.
- Work with IT teams to integrate security controls within networking, applications, cloud, and server environments.
- Support vulnerability management processes, including scanning, analysis, and remediation planning.
- Assist in the deployment of security patches and updates across systems to mitigate vulnerabilities.
Monitoring, Detection & Incident Response :
Continuously monitor security alerts and respond to security incidents in collaboration with the MSSP and IT teams.Investigate and remediate security breaches, unauthorized access attempts, or other security-related events.Utilize SIEM and other security tools to analyze logs and detect suspicious activity.Assist in forensic analysis and post-incident reviews to prevent future occurrences.Collaboration & Security Best Practices :
Work closely with vCISO, CIO, and MSSP to implement and refine security strategies.Collaborate with Networking, Applications, and Server / Cloud teams to ensure security is integrated into system design and operations.Ensure IAM (Identity and Access Management) policies align with the least privilege principles and enforce Multi-Factor Authentication (MFA).Support IT teams in implementing Zero Trust security models and segmentation policies.Provide security configuration management for cloud environments, including Azure, WPEngine, Sucuri, and Microsoft 365 security settings.Compliance & Risk Management :
Maintain compliance with regulatory frameworks such as NIST, GDPR, HIPAA, and PCI-DSS.Work with IT Security Team to assist in periodic security audits, access reviews, and risk assessments.Qualifications :
Fully bilingual (English and Spanish), oral and written.Bachelor's degree in Information Technology, Cybersecurity, or a related field.7+ years of experience in IT security administration, systems security, or related fields.Strong understanding of security frameworks, including NIST, CIS, and ISO 27001.Experience with SIEM platforms, IDS / IPS, firewalls, endpoint protection, and vulnerability management tools.Knowledge of cloud security best practices (Azure Security Center, AWS Security Hub, M365 Defender).Proficiency in IAM, MFA, encryption, and access control policies.Ability to assess and mitigate cyber threats, malware, and phishing attacks.Experience in incident response, digital forensics, and threat intelligence.Familiarity with IT networking, system administration, and application security.About Harvard Partners Trusted IT Advisors :
Harvard Partners is a management consulting firm focused on helping companies more effectively leverage their IT investment. We engage with the C-Suite and Technology Team to help them better understand their IT infrastructure and process in order to align the technology strategy and organization to reach the firm’s strategic business goals.Some of our practices include :
Program / Project Management and "PMO as a Service"IT AssessmentsBusiness Continuity / Disaster RecoveryOptimized InfrastructureConcierge Managed ServicesData Center Strategy, Transformation, and MigrationCloud Management ProgramsSecurity Assessments and RemediationStaffing, technical & tacticalWorking with the client’s staff, vendors, and consultants, we deliver supportive and collaborative engagements where direct dialog, simplified reporting, productive meetings, and clear responsibility and accountability encourage active participation resulting in consensus-based business outcomes.