IT Security Administrator

The Information Security Administrator will work as a member of the Information Security Team and interact closely with other areas of IT, such as, Application Development, Networking, and Systems, in addition to a variety of business units. This position will be responsible for planning and carrying out security measures and initiatives to protect the assets of R.D. Offutt Company. This role will require the identification and mitigation of risks by leveraging technology and security tools across the enterprise.

Specific Duties Include:

• Evaluate, implement, configure, and continuously monitor enterprise security products and technologies to ensure a robust defensive posture.
• Develop, maintain, and optimize security solutions including Privileged Access Management (PAM), Security Information and Event Management (SIEM), Endpoint Detection and Response (EDR), Data Loss Prevention (DLP), Security Awareness platforms, and Vulnerability Management tools.
• Contribute to security strategy for data protection, malware prevention, network defense, digital forensics, logging and monitoring, and other critical security domains.
• Monitor system and network logs, review security alerts, and identify suspicious activity; escalate incidents requiring advanced analysis or containment.
• Validate and maintain accuracy of security policies, configurations, and system definitions; investigate unauthorized access attempts; perform continuous testing to identify and remediate weaknesses.
• Analyze emailbased threats by reviewing message headers, routing, metadata, and platform behavior to detect malicious techniques, tactics, and procedures.
• Conduct security risk assessments and evaluate data processing systems for compliance, resilience, and exposure to vulnerabilities.
• Provide training and guidance to staff on cybersecurity best practices, policies, and safe use of technology.
• The selectee will be expected to perform additional job duties as needed to support the customer and our company.
• Follow all safety rules and regulations while performing work assignments and adhere to all policies and procedures as specified in company manuals and as directed in the employee handbook.
• Conduct self in the presence of customers and community so as to present a professional image of RDO Equipment Co.
• Proactively seek and participate in available company-sponsored training, in an effort to develop and advance knowledge base and skill set.
• Participate in all company/location driven communication efforts, including open book meetings, huddles, department meetings and other related efforts.
• Maintain a positive and professional working relationship with peers, management, and support resources, with a constant commitment to teamwork and exemplary customer service.
• Perform all other duties as assigned by management in a professional and efficient manner.

Job Requirements:

• Broad knowledge of security technologies, processes, and investigative skills.
• Self-motivated and able to meet deadlines.
• Ability to understand operational risks to business lines and take a holistic view when weighing security concerns against business needs; communicate and escalate concerns as appropriate.
• Cloud security experience with O365 products, Azure and/or AWS.
• 3-5 years of SIEM operational experience; must have experience with Sentinel, Google Chronicle, LogRhythm, Splunk, or a comparable SIEM/logging solution; must possess strong technical knowledge of SIEM related architecture, system rules, etc.
• 3-5 years EDR (Microsoft Defender preferred) operational experience including deployment, event analysis, maintenance, and upgrades.
• 3-5 years of operational experience with vulnerability management tools such as Nessus, Tenable.io, Tenable.sc, InsightVM, and others.
• Strong verbal and communication skills; must be able to effectively communicate technical details and thoughts in non-technical/general terminology to various levels of management.
• Ability to work in a variety of technical and business teams.
• Excellent organizational and time management skills.
• Maintains personal and management awareness of emerging industry security technologies, technology issues, regulatory issues and practices.
• Education: University or higher degree in computer science/engineering or related technical field - or related commensurate experience.
• Plus: Experience in Application Development Security, Network Security, or Operational Technology Security.
• Scripting experience preferred (bash, PowerShell, python, etc.).
• Candidates must have valid work authorization and be able to work in the U.S. without company sponsorship.

EOE/M/F/Disabled/Veteran