Cybersecurity Administrator - IT
Listed on 2026-07-13
-
IT/Tech
Cybersecurity, Information Security, Network Security, Systems Administrator
NOTICE TO APPLICANT
This position will close at 12:00 AM MST on the End Date. You must ensure your application reflects the correct and current information for your work experience, hours worked per week per position, education, personal information, etc. Only the information provided on this application is evaluated when determining compensation.
End Date: July 18, 2026
Job Description Purpose SummaryResponsible for supporting the day-to-day administration, configuration, monitoring, and maintenance of the County's information security tools and controls. The position focuses on implementing approved security policies, procedures, baselines, and controls; monitoring security events; supporting vulnerability management; administering email security protections; assisting with security incident response; and providing operational reports and documentation. The Cybersecurity Administrator collaborates with IT staff, county departments, vendors, and the Information Security Engineer to help protect County data, systems, and technology assets from cyber threats.
EssentialDuties Strategic Planning
- Maintain operational runbooks, checklists, knowledge-base articles, configuration notes, and administrative documentation for assigned security tools and recurring security tasks.
- Provide technical information and supporting documentation for risk, compliance, and audit remediation activities.
- Provide technical input to support updates to security procedures, baselines, and standards when requested.
- Monitor industry security updates, changes, technologies, emerging threats and best practices for continuous improvement.
- Identify and track operational security metrics for assigned tools, controls, alerts, email security activity, vulnerabilities, and remediation efforts.
- Assist with assessment of computer systems and security risks by researching potential threats and vulnerabilities.
- Support preventive measures, control techniques, patch prioritization, and remediation tracking.
- Stay up-to-date on the latest email security threats and trends and adapt configurations accordingly.
- Assist with security education, training, and awareness activities using approved materials and guidance.
- Configure and maintain approved email encryption solutions and email authentication controls to ensure the confidentiality of sensitive information (e.g. SPF, DKIM, DMARC, S/MIME, PGP).
- Implement and follow approved IT security and privacy policies, standards, guidelines, baselines, processes, and procedures.
- Implement and maintain approved security controls such as firewalls, intrusion detection/prevention systems (IDS/IPS), access controls, endpoint protection, web filtering, and related security technologies.
- Implement and enforce security technologies and methodologies including: VPN, Wireless Authentication, and Enterprise anti-virus software.
- Assist IT managers and staff with technical implementation of approved security and compliance requirements within projects, initiatives, and operations.
- Promote a culture of security by encouraging employees to report suspicious emails and potential security concerns.
- Administer, configure, monitor, and maintain assigned security software, hardware, and cloud security tools to ensure reliable operation and appropriate protection.
- Monitor security logs, network traffic, endpoint alerts, authentication logs, and email systems for anomalies, suspicious activity, and potential security incidents.
- Administer and maintain email security gateways and filtering solutions to block spam, phishing attempts, malware, and other malicious content.
- Run periodic vulnerability scans and security checks using approved tools and procedures.
- Validate findings, document remediation status, and work with IT teams to address identified weaknesses.
- Perform initial triage, collect logs and technical evidence, document actions taken, and elevate incidents according to approved incident response procedures.
- Assist with containment, remediation, and recovery activities for security incidents within assigned systems and tools.
- Provide technical support and information for coordination with law enforcement, outside agencies, external auditors, vendors, or managed security service providers as directed.
- Investigate reported phishing messages and suspicious email activity; document findings and elevate significant trends, incidents, or risks.
- Assist with internal investigations by reviewing security logs, email (traces, quarantine records, archives), and related system activity to identify source and destination, content, attachments, URLs, policy actions, and indicators of suspicious or unauthorized activity.
- Monitor networks, systems, and applications for conformance with approved security requirements, baselines, and policies.
- Respond to security incidents, including availability to respond to system problems and security events after hours.
- Participate in the IT departments internal SIRT (Security Incident…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).