IT Security Administrator at Phillips Consulting

Description

Our client in the Legal Industry is looking to recruit an IT Security Administrator responsible for protecting their information systems and data from unauthorized access, breaches, and other security threats while working with a team of IT professionals to deliver consistently high-quality service and support to end-users.

Main Duties and Responsibilities Strategic

Security Implementation and Maintenance

• Oversee the installation, configuration, and maintenance of security-related hardware and software tools, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, and other security technologies.
• Develop, implement, and enforce security policies, procedures, and standards to safeguard the organization's computer systems, networks, and data.
• Administer user access controls and permissions, including creating and managing user accounts, granting or revoking access privileges.
• Ensuring compliance with the organization's security policies and regulatory requirements.

Security Risk Management

• Continuously monitor the organization's systems and networks for potential security vulnerabilities or breaches.
• Conduct regular risk assessments and penetration testing to identify and mitigate potential threats.

Incident Response and Management

• Respond promptly to security incidents, including investigating, containing, and documenting any security breaches or unauthorized access attempts.
• Develop and execute incident response plans to minimize damage and ensure business continuity.
• Implement and manage data backup and disaster recovery strategies to ensure the availability and integrity of critical systems and data.
• Develop and test backup procedures and recovery plans regularly.
• Monitor backup systems and perform data restores when necessary.

Security Awareness, Compliance and Reporting

• Develop and deliver security awareness programs to educate employees about safe computing practices, potential threats, and the importance of data protection.
• Conduct security training sessions and workshops as needed.
• Collaborate with internal and external auditors to perform regular security audits and assessments to ensure compliance with industry standards, regulations, and best practices.
• Identify vulnerabilities and recommend corrective actions.
• Maintain accurate and up-to-date security documentation, including policies, procedures, incident reports, and system/network configurations.
• Prepare regular reports on security incidents, risks, and mitigation strategies for management and stakeholders.
• Keep abreast of the latest trends, threats, and technologies in IT security.
• Evaluate emerging security products and solutions and recommend their implementation as appropriate.

Requirements

Education, Qualifications & Experience

Education

• BSc in Computer Science, Information Technology, or a related field.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are desirable.

Expected Skills and Competencies

• Experience in working with SQL Servers, Active Directory domain environments, VOIP, IP addressing, teleconferencing, access control systems & IP surveillance systems.
• Minimum experience in IT security administration, network administration, or a related role.

Personal Attributes & Physical Demands

• In-depth knowledge of network protocols, operating systems, and security technologies (firewalls, IDS/IPS, antivirus, etc.).
• Familiarity with security frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR).
• Strong understanding of risk assessment methodologies and security best practices.
• Experience with security incident response and management.
• Excellent analytical and problem-solving skills.
• Effective communication and interpersonal skills to collaborate with cross-functional teams.
• Ability to work independently, prioritize tasks, and manage multiple projects.
• Excellent written, and verbal communication and presentation skills are essential.