Named one of the 50 best nonprofits to work for by the Non-Profit Times, our employees enjoy rewarding careers in a fast-paced, results-driven environment. We offer a competitive compensation package, including incentives. Eligible employees also participate in a comprehensive benefits program that includes medical, dental, orthodontia, vision coverage, a student loan repayment program, a 403(b) retirement plan with substantial company match, discounted pet insurance, and generous paid-time-off benefits.
The successful applicant will have a hybrid or remote work arrangement, but must reside within a 125-mile radius of the AAA's office located in Downtown Manhattan. The starting salary range for the position is $93,000 - $99,000, plus an annual incentive opportunity targeting up to 10% of the base salary.
Assists with the implementation and management of the AAA's security initiatives, policies, and procedures. Collaborates with IS Security and Technical Services teams to protect internal and external facing systems, as well as cloud environments. Ensures organizational security needs are met, and performs tasks on the system/network. Provides guidance on infrastructure/network/cloud security configurations and vulnerability remediation.
Essential Functions
- Support technical administration and execution of AAA's Information Security program, which consists of components such as security architecture, information security policies/procedures, security awareness and education, cyber-incident response and remediation and security assessments and audits.
- Manage security tools (e.g., Splunk, Varonis, Solarwinds) to monitor and analyze security events, alerts, and threats. Investigates anomalies, make recommendations and take action where appropriate, and assist with analysis of vulnerability assessments reports.
- Manage patch deployment for end-user devices and servers using Baramundi. This includes deploying updates for all Windows workstation and server operating systems, Microsoft Office, third party applications including Chrome, Firefox, and Zoom.
- Support end-user security awareness through tracking and alerting of suspicious emails via KnowBe4, Proofpoint email gateway, and M365.
- Manage end-point security using SentinelOne and end-point devices (laptops and mobile devices) with Microsoft Intune. Investigate and respond to alerts.
- Manage and report on vulnerability scanning and detection using Qualys.
- Create and maintain technical and security policies and procedures.
- Stay informed on current and potential new cyber threats.
- Maintain Active Directory organization and security.
- Coordinate with external vendors for security-related functions and audits.
- Provide tier 2 support for helpdesk and resolve technical issues.
- Install, configure, and support enterprise server operating systems and applications.
- Attend on-site and in-person meetings and training sessions.
- Demonstrate regular, reliable and predictable job attendance.
Education and experience
Bachelor's degree in Computer Science, Computer Engineering, or related field with 4-6 years of experience working as a systems engineer and 1-3 years of experience in information security; or an equivalent combination of education and experience.
KNOWLEDGE, SKILLS, & ABILITIES
- Knowledge and/or certification in the following areas: Security+, CISSP, CCSP
- Expert knowledge of Windows OS, Web application technologies, and various communication technologies. Proficient understanding of networking concepts and security tools.
- Ability to troubleshoot complex security issues, analyze threats, and implement effective solutions.
- Excellent verbal and written communication abilities. Capacity to explain technical concepts to both technical and non-technical audiences.
- Thoroughness in implementing security measures, documenting procedures, and monitoring systems for potential threats.
- Willingness to stay updated on industry and product advances. Ability to quickly grasp new security concepts and apply them effectively.