Senior Security Administrator

POSITION TITLE: SENIOR SECURITY ADMINISTRATOR (SENIOR SYSTEMS ADMINISTRATOR #1895)

STARTING SALARY RANGE: $60,047 - $75,881

Reporting to a Supervisor, the Senior Software Security Administrator will be responsible for ensuring the security and integrity of the software systems, applications and data transmission used by our organization. This position will perform regular audits, assessments, and tests to identify and mitigate potential vulnerabilities and risks. They will also design, implement, and maintain security policies, standards, and best practices to protect our data and assets from unauthorized access, modification, or destruction. They will also provide guidance and support to other software developers and administrators on security-related issues and solutions.

Duties and Responsibilities:

• Oversees the development, maintenance and administration of ISBE’s security applications (Duende, Identity Server, and APIs) on a daily basis.
• Works closely with development teams to integrate security measures and to implement secure coding practices.
• Works with management to evaluate and address items related to periodic penetration testing.
• Assists teams in reproducing, triaging, and addressing application security vulnerabilities.
• Works with the API development team to develop APIs for secure data transmission.
• Monitors application logs to identify any critical security issues and overall performance of applications.
• Improves and maintains secure development guidance and policies/standards.
• Develops and presents security training promoting security awareness and knowledge sharing.
• Assists in monitoring and securing Azure Dev-Ops projects and users.
• Performs other duties as assigned.

Required Qualifications:

• Bachelor's degree in Information Technology (IT) or Computer Science plus two years of IT experience or coursework in the last five years, or, a Bachelor's degree in any field plus three years of IT experience or coursework in the last five years, or, an Associate's degree in any field plus four years of IT experience or coursework in the last seven years. (COPY OF TRANSCRIPTS REQUIRED AT TIME OF APPLICATION)
• At least ten years of experience in, and solid understanding of, software development, coding for large scale web or client-server applications, and design and development of application service layers.
• At least one year of experience in software security administration or a similar role, and formal Duende training.
• Knowledge of both LAN and web-based application formats.
• Strong knowledge and skills in various security tools, frameworks, and methodologies, such as encryption, authentication, authorization, firewalls, antivirus, penetration testing, etc.
• Strong knowledge of software development life cycle, security standards and best practices, and risk management.
• Proficient in various software security tools, frameworks, standards, and best practices.
• Working knowledge of Microsoft products which include Azure DevOps (team foundation server), Visual Studio, SQL, SSRS, Teams, Word, and Excel along with Crystal Reports.
• Working knowledge of VB, C#, ASP.net, VB.net, MVC, JavaScript and JavaScript Libraries, OAuth2.0.
• Ability to manage multiple projects and prioritize tasks.
• Excellent communication, collaboration, problem-solving, and analytical skills.

Preferred Qualifications:

• Experience designing and implementing cloud infrastructure, platforms, and applications.
• Certifications such as CISSP, CISM, or CEH.