Security Administrator

Mô tả Công việc

Position Overview

We are seeking a highly skilled and proactive Security Administrator to join our technology team. This is a critical, hands-on role responsible for securing our entire digital footprint, from internal corporate systems to client-facing applications, including our proprietary solutions.

The ideal candidate is a versatile, technology-agnostic problem solver. You must be able to analyze complex environments, design robust security solutions, and execute the necessary configurations. A key part of this role is the ability to propose the right solution for the business, whether it is a proprietary, commercial product (like Microsoft's) or an open-source alternative.

You will be responsible for monitoring our security posture, responding to threats, and proactively hardening our systems. This position requires technical knowledge of both Microsoft environments and common open-source security platforms, along with a good understanding of application security. You will work hand-in-hand with our engineering team to integrate security into all aspects of our technology and will provide supervisory guidance on security-related tasks, reporting directly to the Head of Technology.

Key Responsibilities

1. Analysis & Monitoring:

• Proactively monitor and analyze security alerts from our security tools to detect, investigate, and respond to potential threats.

• Conduct regular vulnerability assessments and risk analyses across all corporate and client-front systems.

• Analyze the security of our applications, identifying potential vulnerabilities in architecture and configuration, and working with engineering to prioritize remediation.

2. Solution Design & Proposal:

• Evaluate the current security posture and propose practical, effective solutions and configuration changes to mitigate risks.

• Evaluate and recommend new security technologies, comparing commercial and open-source solutions to determine the most effective and cost-efficient way to meet security objectives.

• Design secure configurations for new and existing systems and applications.

3. Execution & Configuration:

• Lead the hands-on configuration, implementation, and hardening of our Microsoft ecosystem (Microsoft 365, Entra ID, Azure, Defender Suite, Intune).

• Install, configure, and manage a diverse range of security tools, including selected open-source platforms (SIEMs, log management, vulnerability scanners...).

• Execute remediation plans for identified vulnerabilities, including patch management and system reconfiguration.

4. Supervision & Collaboration:

• Provide technical supervision and guidance to engineering and IT team members on the correct implementation of security controls and best practices.

• Act as the primary technical point of contact for security incidents, coordinating the response between the technology team and management.

• Work closely with the Head of Technology to develop, document, and maintain security policies, standards, and procedures.

• Liaise with the engineering team to ensure security is a core component of all new product development and system rollouts.

Yêu Cầu Công Việc

Required Qualifications & Skills

Experience: 5+ years of proven experience in a hands-on technical security role such as Security Administrator, Senior Systems Engineer, Security Specialist.

Microsoft Expertise: Expert-level knowledge of the Microsoft security ecosystem, including:

• Microsoft 365 & Entra ID (Azure AD) administration and security.
• Defender Suite (for Endpoint, for Cloud, for 365).

Open-Source Security Knowledge:

• Demonstrable experience with and a strong understanding of open-source security solution.
• The ability to propose, implement, and manage these tools where they are the best fit is essential.
• Relevant experience in toolsets such as: Log Management/SIEM, Vulnerability Management, or Network/Endpoint Security.

Application Security: Strong understanding of application security principles (OWASP Top 10) and experience securing proprietary applications. Must be able to analyze applications for security flaws and recommend configuration-based solutions.

Network Security: Good understanding of network security fundamentals (TCP/IP, DNS, DHCP, VPNs) and network protocols.

Technical Skills:

• Proven experience in security analysis, solution design, and hands-on system configuration across diverse (proprietary and open-source) environments.

Soft Skills:

• Strong analytical and problem-solving skills with meticulous attention to detail.
• Excellent communication skills, with the ability to explain complex security concepts to technical and non-technical stakeholders.
• Demonstrated ability to manage multiple priorities, work independently, and collaborate effectively with a team.

Preferred Qualifications

• Relevant professional certifications (e.g., Microsoft SC-200/SC-300, CISSP, CompTIA Security+).
• Scripting experience (PowerShell, Python, or Bash) for security automation.
• Experience with cloud security in Azure.
• Familiarity with compliance frameworks such as ISO 27001, SOC 2, or NIST.

Benefits

• Allowances
• Work from home 4 days/month
• Full salary insurance
• Premium health insurance
• Flexible check-in/check-out
• Tet, performance bonus
• Up to 19 days of leaves
• Enjoy free coffee and tea
• Laptop provided