Information Security Administrator

About the Role

The Information Security Administrator will support and enhance FlexTecs’ security operations, access management, monitoring, and compliance activities. This role is ideal for someone with several years of hands‑on security experience who can independently manage day‑to‑day security tasks while collaborating closely with senior IT and security leadership.

You will help execute security controls, monitor environments, maintain secure configurations, and support SOC2 compliance activities—all while growing your capabilities in a security‑mature, cloud‑forward environment.

Key Responsibilities

Security Monitoring & Operations

• Monitor alerts, logs, and system activity for unusual or malicious behavior using internal monitoring tools and log management systems.
• Perform routine vulnerability scans and coordinate with infrastructure/application teams to ensure timely remediation.
• Maintain endpoint protection tooling, firewall rule documentation, and security system health checks.
• Assist in responding to and documenting security incidents, escalating as needed.
• A member of rotation 24/7 global support team.

Identity & Access Management

• Administer user provisioning, deprovisioning, and group policy maintenance in Active Directory and Azure AD, including enforcing MFA and 2FA configurations.
• Perform scheduled access reviews and ensure compliance with FlexTecs’ role‑based access control standards.
• Support audit requests by preparing access evidence and ensuring proper access approvals are maintained.

Network & Platform Security

• Support network security configurations, such as VPN management, firewall review, and enforcement of wireless security standards (e.g., WPA2/AES).
• Maintain secure configurations on servers, Office 365 services, SQL-related connections, and cloud resources according to internal security policies.
• Assist with encryption requirements and ensure adherence to TLS and data‑at‑rest controls.

Governance & Compliance Support

• Contribute to SOC2 evidence gathering, policy updates, and control documentation.
• Participate in annual risk assessment activities by identifying new threats and supporting mitigation activities.
• Contribute to implementation of AI policies, procedures, applications and execution.
• Help maintain up‑to‑date security policies, standards, procedures, and user‑facing guidance.

Security Awareness & Education

• Assist in tracking employee security awareness training compliance and supporting communication of best practices.
• Help investigate and validate reported phishing attempts and educate end users on proper security behaviors.

Required Qualifications

• 2–5 years of hands‑on experience in cybersecurity, security administration, system administration with security focus, or IT operations.
• Experience with:
• Active Directory & Azure AD administration
• MFA/2FA technologies
• Firewalls, VPNs, and general network security
• Vulnerability scanning and remediation workflows
• SIEM/logging or monitoring tools
• Linux OS, Applications and Processes
• Working understanding of SOC2, NIST, or other security/compliance frameworks.
• Ability to operate independently on defined tasks while knowing when to escalate issues.

Preferred Qualifications

• Industry certifications such as Security+, CySA+, SSCP, CISM/CISSP a plus but not required.
• Familiarity with Microsoft 365 security features, VMware environments, SQL security, or password vaulting systems.
• Experience contributing to audits, evidence gathering, or compliance initiatives.