Cyber Security Administrator at Sabenza IT & Recruitment

About the position

We are seeking a Cyber Security Administrator to play a key role in managing our security infrastructure — supporting both Cyber Operations and Cyber Engineering teams. This role will work across a variety of technologies, helping ensure the security, stability, and compliance of our digital ecosystem. From managing SIEM and EDR platforms to deploying security solutions and participating in threat hunting, you’ll help design and run the systems that keep cyber threats at bay.



Strategy & Planning:

• Participate in the planning and lead execution of strategic security technology rollouts. 
  
• Engage vendors and partners while contributing to proof of value (POV) cyber exercises. 
  
• Support the creation of enterprise security documents (policies, standards, guidelines, baselines, and procedures) under the direction of the Information Security Manager.
  

Acquisition & Deployment:

• Maintain up-to-date knowledge of cybersecurity industry trends, emerging threats, and attack vectors.
  
• Recommend new security solutions or enhancements to improve overall enterprise security posture. 
  
• Deploy, integrate, and configure new security technologies, ensuring alignment with enterprise security best practices.
  
• Maintain integration catalog documenting all log sources, connectors and parsers in the SIEM, including custom ingestion pipelines.
  

Operational Management:

• Maintain secure baselines for cybersecurity solutions, ensuring continuous compliance with security policies. 
  
• Monitor and optimize the Next-Gen SIEM, supporting event analysis and response. 
  
• Review logs and reports from security devices (EDR, IPS, SIEM, vulnerability scanners) and interpret threat intelligence for proactive risk mitigation.
  
• Participate in incident investigations, supporting threat hunting and response efforts.
  
• Engage with vendors for technical support and security enhancement discussions. 
  
• Implement security changes in accordance with Organization’s Change Advisory Board (CAB) processes.
  
• Contribute to vulnerability assessments, penetration testing, and security audits, ensuring risk identification and remediation. 
  
• Provide on-call security support for enterprise security operations.
  
• Run regular SIEM health checks — data volume, parsing success rates, retention compliance — and remediate gaps proactively.
  
• Curate and update detection content (rules, analytics stories) in your SIEM based on MITRE ATT&CK, ransomware TTPs and threat intel feeds.
  
• Perform root-cause analysis on repeat security incidents and drive action items with system owners.
  

Requirements

• Diploma or degree in Computer Science, Cybersecurity, or related fields. 
  
• Minimum of 3 years of cybersecurity experience. 
  
• One or more of the following certifications:
  
• CompTIA Security+
  
• Microsoft Security, Compliance, and Identity Fundamentals (SC-900)
  
• Microsoft Identity and Access Administrator (SC-300)
  
• Microsoft Information Protection Administrator (SC-400)
  
• Associate of (ISC)² 
  
• Experience with Microsoft ATP and Azure Security solutions. 
  
• Familiarity with Fortinet and Cisco security technologies. 
  
• Proven experience in endpoint, network, and email security implementation. 
  
• Strong understanding of IP, TCP/IP, network administration, and cybersecurity protocols. 
  
• Knowledge of Incident Response processes, threat hunting, and cyber event analysis.
  

Desired Skills:

• CompTIA Security+
• network administration
• Azure Security solutions

Desired Qualification Level:

• Degree

About The Employer: