Venture Management Specialists, Inc.

Security Administrator

Job Description

Full-time, exempt

Office Location: West Sacramento, CA

Weekly Work Schedule: Monday-Friday, 7:00am – 3:30pm (Hybrid, in office twice a week)

Reports to: Senior Team Lead, Information Technology

Job Summary:

The Security Administrator possesses strong project management and organizational skills, plus the ability to manage multiple projects at once. The ideal Security Administrator must have organizational and leadership skills with strong emphasis on enterprise security education, project management, and team management focused on innovation and solutions.

Responsibilities:

Design and document the strategic security plan.

1. Architect and manage the security environment for the organization.

2. Contribute toward achieving compliance standards certification (NIST, ISO, FedRAMP, StateRAMP)

3. Implement and manage annual third-party security assessments.

4. Implement and manage third party risk assessment.

5. Arrange and report on third party Risk assessments.

6. Implement and manage MS Purview

7. Hands-on security systems management and support for MFA, MDM, email gateways, firewall administration, network access control, and other systems.

Report status to Venture Management Specialists management on regular basis

Document the tactical security plan and procedures which will include:

1. Manage the SIEM solution(s) (Intrusion Detection)

a. Implement log management.

b. Log Aggregation – to meet the needs of law enforcement.

c. Log Storage – to meet State and Federal compliance

2. Manage M365 security environment.

a. Implement M365 DLP

b. Implement case/subject tagging.

3. Manage the Azure security environment.

a. Conditional access

b. Defender

c. MS Entra ID, IAM

d. Azure network security

4. Manage MS Intune endpoint security.

5. Manage D365 security and compliance.

6. Oversee security aspects of all development efforts.

a. Participate in testing and test plan development.

b. Participate in SDLC and test.

c. Create and implement a security assessment plan for each development.

d. Static/Dynamic code analysis

7. Oversee end user security training.

8. Oversee security auditing.

9. Oversee patch management.

10. Oversee ransomware mitigation and data protection.

11. Implement file Integrity verification.

Other duties may be added from time to time.

Requirements:

Bachelor’s degree in computer science or related field preferred.

Must hold credential – CISSP or willingness to obtain within first

Azure skillset required.

Experience with Storage Accounts

Experience with authorization front-ends – Oauth 2.0, SAML

Experience with MS Purview or other compliance management system

Experience with Azure security best practices

Programming/Scripting languages and frameworks: PHP, JavaScript, jQuery, Yii, VB.NET, C#

Advanced experience with the Microsoft Office suite of projects

Strong interpersonal skills and ability to explain technical details to non-technical users

Regular attendance is required.

Strong interpersonal skills and ability to explain technical details to and educate non-technical users

Work Condition:

Sitting for extended periods, walking, standing, talking/listening, reaching with arms and hands

Keyboarding

Viewing computer monitor

Lifting up to 25 lbs.

Office environment has moderate noise

Job Type: Full-time

Pay: $115,000.00 - $140,000.00 per year

Benefits:

• 401(k)
• Dental insurance
• Health insurance
• Paid time off
• Vision insurance

Experience level:

• 5 years

Schedule:

• 8 hour shift

Work Location: Remote