CybersecurityJobs.io
← Back to all jobs

Job Description

Dona Ana County is seeking a Cybersecurity Administrator for an onsite, full-time role in Las Cruces, NM. The position offers a salary range of USD 65,457 to 106,808 per year and the opportunity to help safeguard county data and systems. You will collaborate with IT staff, county departments, vendors, and the Information Security Engineer to enforce policies, manage vulnerabilities, secure email, respond to incidents, and produce actionable reporting. This role supports a security focused culture and provides the chance to contribute to ongoing protection and improvement of county technology.

Responsibilities

  • Maintain operational runbooks, knowledge-base articles, configuration notes, and administrative documentation for assigned security tools and recurring tasks.
  • Provide technical information and documentation to support risk, compliance, and audit remediation activities.
  • Offer technical input to updates of security procedures, baselines, and standards when requested.
  • Monitor industry security updates, technologies, threats, and best practices for continuous improvement.
  • Identify and track operational security metrics for tools, controls, alerts, email activity, vulnerabilities, and remediation efforts.
  • Assist with assessing computer systems and security risks by researching potential threats and vulnerabilities.
  • Support preventive measures, control techniques, patch prioritization, and remediation tracking.
  • Stay current on email security threats and adapt configurations accordingly.
  • Assist with security education, training, and awareness activities using approved materials.
  • Configure and maintain approved email encryption solutions and email authentication controls to protect sensitive information (SPF, DKIM, DMARC, S/MIME, PGP).
  • Implement and uphold IT security and privacy policies, standards, guidelines, baselines, processes, and procedures.
  • Implement and maintain security controls such as firewalls, IDS/IPS, access controls, endpoint protection, web filtering, and related technologies.
  • Support security methodologies including VPN, Wireless Authentication, and enterprise antivirus software.
  • Assist IT managers and staff with the technical implementation of approved security and compliance requirements within projects and operations.
  • Promote a security culture by encouraging employees to report suspicious emails and concerns.
  • Administer, configure, monitor, and maintain security software, hardware, and cloud tools to ensure reliable protection.
  • Monitor security logs, network traffic, endpoint alerts, authentication logs, and email systems for anomalies and incidents.
  • Administer email security gateways and filtering solutions to block spam, phishing, malware, and other threats.
  • Run periodic vulnerability scans and security checks using approved tools and procedures; validate findings and coordinate remediation with IT teams.
  • Perform initial triage, collect logs and evidence, document actions, and escalate incidents per approved procedures.
  • Assist with containment, remediation, and recovery during security incidents within assigned systems and tools.
  • Coordinate technically with law enforcement, external auditors, vendors, or MSPs as directed.
  • Investigate phishing and suspicious email activity; document findings and escalate trends or risks.
  • Support internal investigations by reviewing security logs, email traces, and related activity to identify sources and indicators of compromise.
  • Monitor networks, systems, and applications for conformance with security baselines and policies.
  • Respond to security incidents, including after-hours availability as needed, and participate in the IT department's Security Incident Response Team.
  • Other duties as assigned.

Requirements

  • Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
  • Four years of experience administering, configuring, monitoring, or supporting security technologies in an enterprise environment.
  • One year of project management experience.
  • CompTIA Security+ certification required or must be obtained within two months of hire.
  • PenTest+ and Cloud+ certifications are preferred; other security certifications such as CISSP, SANS GSEC/GCIA/GCIH, or equivalent are desirable.
  • Project management certification is desirable (PMP, CAPM, PPM, Project+).
  • Must pass NCIC background and driving record checks.
  • Experience with incident response, threat modeling, and mitigation.
  • Windows and Linux server management including OS hardening techniques.
  • Knowledge of common internet protocols (DNS, SMTP, LDAP) and network theory including layer 2 through 7.
  • Experience with email security solutions (Mimecast), gateways, filtering, quarantine management, archiving/eDiscovery, and encryption solutions.
  • Familiarity with Microsoft 365 security tools (Defender, Purview, Entra ID, Exchange Online) and related auditing capabilities.
  • Experience with Endpoint Detection and Response tools (eg, SentinelOne) and firewall/network-security management (eg, Palo Alto Panorama).
  • Security log review, alert triage, and event correlation using SIEM or centralized logging tools.
  • Knowledge of email authentication and protection technologies (SPF, DKIM, DMARC, TLS, URL protection, sandboxing, impersonation protection).
  • Experience with IPRA, eDiscovery, and records retention related to security systems and email platforms.
  • Strong time management, independence, and the ability to work in a fast-paced environment.
  • Effective written and verbal communication with staff, users, and vendors; strong customer service skills.
  • Ability to implement and administer security technologies such as firewalls, VPNs, Cisco ISE, endpoint protection, and enterprise antivirus.
  • Ability to document risks, incidents, and operational issues and escalate appropriately.
  • Maintain confidential handling and chain of custody for sensitive security data and investigations.
  • Translate technical findings into clear summaries for leadership and stakeholders.
  • Prioritize alerts and requests by severity and impact; support project planning and management.
  • Proficiency in security tooling administration, monitoring, configuration management, and basic scripting or automation (PowerShell or similar).
  • Experience conducting email investigations involving phishing, spoofing, impersonation, or malicious attachments and URLs.
  • Experience with ticketing, change management, and documenting security-related work; support vulnerability scanning, patch validation, and remediation.
  • Experience administering email security platforms, including policy reviews, quarantine management, message tracing, and eDiscovery support.
  • Ability to create clear technical notes, investigation summaries, screenshots, evidence packages, and operational reports.
  • Project planning and management capabilities.

Technologies

  • Mimecast, Microsoft Defender, Purview, Entra ID, Exchange Online
  • SentinelOne, Palo Alto Panorama, Cisco ISE
  • VPN, Wireless Authentication, IDS/IPS, Firewall, Endpoint protection, Web filtering
  • Email gateways, SPF, DKIM, DMARC, S/MIME, PGP
  • PowerShell, Windows, Linux, SIEM, eDiscovery

Notice to applicant: This position will close at 12:00 AM MST on the End Date.

Similar Jobs

Get Job Alerts

New jobs delivered to your inbox.