Senior Cybersecurity Administrator

The Illinois Attorney General's Office seeks a Senior Cybersecurity Administrator to lead the administration, security, and ongoing care of its on-premises and cloud hosted cybersecurity infrastructure. This onsite role in Chicago, IL reports to the Chief Information Security Officer and provides advanced technical leadership across enterprise services including server environments, identity and access management, endpoint detection and response, vulnerability management, and other security technologies. The position offers a salary range of USD 90,000 to 120,000 per year.

Responsibilities

• Administer, secure, and maintain the Office's on-premises and cloud cybersecurity infrastructure under the direction of the Chief Information Security Officer, providing advanced technical leadership for enterprise security services including server environments, identity and access management, endpoint detection and response, vulnerability management, and related security technologies.
• Design, build, configure, secure, and maintain virtual servers and related infrastructure to support cybersecurity operations and administration; assist with capacity planning, system hardening baselines, lifecycle management, backups, server decommissioning, and documentation of builds, configurations, and administrative procedures.
• Support enterprise vulnerability and patch management by evaluating, testing, deploying, tracking, and reporting on operating systems, applications, and security patches; coordinate remediation across servers, workstations, and related infrastructure.
• Manage and support information security tools and technologies; develop and standardize management reporting; lead the implementation, integration, customization, and administration of identity and access management tools such as Okta, Duo, CyberArk, Azure Active Directory, and related platforms; oversee role-based access to enforce least privilege access and collaborate with business and technology leaders to deploy network micro-segmentation.
• Deploy, update, maintain, and troubleshoot leading endpoint detection and response technologies; assist with vulnerability and threat management operations; prepare technical and executive-level metrics related to vulnerabilities, patch compliance, system health, and security risk; review privilege access requests, changes to Active Directory Group Policies and Directory Services; identify unusual patterns of activity.
• Perform additional responsibilities including periodic reviews of credential utilization and entitlements across the enterprise; maintaining digital certificates and domain registry services; responding to, investigating, and remediating security incidents as part of the incident response team; and recommending improvements to administrative and security processes.
• Assist with onboarding and offboarding processes to ensure least privilege access; train and develop junior and mid-level technical staff; develop and maintain technical documentation, standards, and procedures; and support continuous improvement of the Office’s cybersecurity program.

Requirements

• Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field from an accredited college or university.
• Minimum of seven years of hands-on experience configuring, supporting, securing, and administering enterprise servers and cybersecurity environments, or an equivalent combination of education and related experience.
• At least one certification such as Security+, Network+, CCNA, CCNP, PCNSE, CISSP, or a comparable cybersecurity, networking, systems administration, or cloud security certification is required.
• Ability to effectively coordinate, prioritize, troubleshoot, document, and collaborate across technical and non-technical teams.
• Outstanding written and verbal communication skills.
• Attendance and the ability to maintain satisfactory working relationships with Office of the Attorney General employees and the general public.

Technologies

• Okta
• Duo
• CyberArk
• Azure Active Directory
• Active Directory
• Directory Services
• Cylance
• Carbon Black
• CrowdStrike
• Mimecast
• Microsoft Defender for Office 365
• Proofpoint
• Rapid7
• Qualys
• Tenable
• Python
• PowerShell
• Group Policy

Example of Duties

• Requires a bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or a related field and at least seven years of hands-on experience configuring, supporting, securing, and administering enterprise servers and cybersecurity environments.
• Experience with endpoint detection and response tools such as Cylance, Carbon Black, CrowdStrike, or similar products.
• Experience with email security tools such as Mimecast, Microsoft Defender for Office 365, Proofpoint, or similar platforms.
• Experience with vulnerability management tools such as Rapid7, Qualys, Tenable, or similar solutions.
• Experience with IT scripting tools such as Python or PowerShell.
• Experience with Group Policy and IT automation or configuration tools is highly preferred.
• At least one certification such as Security+, Network+, CCNA, CCNP, PCNSE, CISSP, or a comparable certification is required.
• The role requires the ability to coordinate, prioritize, troubleshoot, document, and collaborate across technical and non-technical teams, with strong written and verbal communication skills.
• Attendance and the ability to maintain satisfactory working relationships with Office of the Attorney General staff and the general public are required.