Security Administrator - Senior

locationsLos Angeles, CA, USDenver, CO, UStime typeFull timeposted onPosted 30+ Days Agojob requisition idR-9245At Gensler, we design for people. We leverage our global perspective and local presence to innovate at every scale. We’re not just designers. We’re tinkerers, craftspeople, visionaries, innovators, and thought leaders. Fueled by passion and entrepreneurial spirit, our people bring new ideas to solve the world’s most challenging problems, like designing a more resilient, inclusive, and equitable future for our communities and cities.Our people-centered, “People First” culture and “One Firm-Firm” motto promotes integrated teams that unite to shape the future of cities.  Gensler’s vision is to “Create a Better World through the Power of Design,” and we do that by our deep commitment to our clients and by fostering a collaborative, diverse, and inclusive environment that enables our people to create impactful solutions together.­­­Your RoleGensler leverages the power of design to make a better world: as a Senior Security Administrator you will be the primary point of contact for a Cloud Access Security Broker, shaping a global CASB implementation to protect architectural and design data.  Collaborating with a Security Operations team, you will be on the forefront of designing and utilizing unique security solutions with a remarkably low signal-to-noise ratio, providing seamless security to the largest architecture and design firm in the world.  Machine learning Intrusion Detection and Prevention Systems would be designed, tested, rolled out into production and maintained over time.  You will work closely with teams of Linux and Windows administrators to strengthen enterprise cybersecurity across the globe.What You Will DoWork with a team of security experts to advance a nonconventional approach to security analysis and responseDevelop new and support existing security analytic systems such as automated log review and IDS/IPS deploymentsProvide support for Kerberos, SAML, Multifactor and ADFS authentication systemsIdentify and resolve cybersecurity threats to the global firm as well as strive to protect the firm from anticipated threatsCreate and apply machine learning algorithms to ensure a low signal/noise ratio, maximizing the impact of a small team.Not just a “ticket cruncher”, your work with Gensler’s trouble ticket system will be bidirectional as you review security processes and work with the support desk to design new, automated, efficient processes within an ITIL and ISO 27001 frameworkCollaborate with the server team to provision and decommission virtual and physical serversWork with the rest of Gensler’s systems administrative staff to shape Windows domain policy, workstation application policy and to ensure Windows and Linux servers are in line with enterprise goals.Participate in discussions to further review and refine existing RBAC structuresAdministration of Amazon AWS resources including EC2, RDS and Route53 instancesWrite scripts for both Windows and Linux that can parse through available data looking for security-related information and perform discovery of security-related events of interestAdditional tasks as requiredYour QualificationsAn employee-owned company, Gensler is social, collaborative and entrepreneurial - authority comes from the team, not a given individual. Our top candidate will have strong social and communication skills, a collaborative attitude and demonstrate strong technical acumen.Due to government contracts and facility work, US Citizenship is requiredAs this person will be managing sensitive information, successful completion of a background check is requiredDemonstrably strong written & verbal communication skills in the English languageAt least one IT certification (such as Certified Ethical Hacker ,  CompTIAA+, CompTIA CySA+, CCSP, SSCP) or equivalent foundational knowledge is preferredBachelor's degree and 3 years minimum experience in a global enterprise and at least 3 years experience in a security operations role are preferredExperience with low level details of authentication protocols such as Kerberos, SAML and OAuth2 is required.Demonstrable understanding of computing technologies such as LAN, WLAN, DMZ, inter-network firewalling, ID/PS and Active Directory just to name a fewDemonstrable understanding of Ubuntu / Debian-based Linux to the kernel object levelDemonstrable experience with LAMP / LEMP stacks and Windows IIS web servicesAbility to write scripts or programs using any two languages such as Python, BASH/Shell, Java, Perl, Go and/or PowershellDemonstrable ability to read a security assessment report, prioritize vulnerabilities and provide countermeasure recommendations in real timeComfortable performing systems administration in a social environment24/7/365 availability in order to collaborate with your team to remediate a security incidentAble to do light work, including the ability to lift 10 lbs with the majority of the day being sitting, standing or walking.**If the position is filled in Denver, CO; the compensation range is estimated at $125k - 135k plus bonuses and benefits and depending upon experience.**If the position is filled in Los Angeles, CA; the compensation range is estimated at $150k-165k plus bonuses and benefits and depending upon experience.Life at GenslerGensler is committed to Diversity, Equity and Inclusion. Through our Five Strategies to Fight Racism, we continue to create a just and equitable future for our colleagues and our communities with our clients. We are a solid voice for social change as we impact people’s lives and fight racism. At Gensler, we celebrate diversity and are committed to creating an inclusive workplace environment.At Gensler, we are as committed to enjoying life as we are to delivering best-in-class design. From curated art exhibits to internal design competitions to “Well-being Week,” our offices reflect our people’s diverse interests.We encourage every person at Gensler to lead a healthy and balanced life. Our comprehensive benefits include medical, dental, vision, disability, wellness programs, flex spending, paid holidays, and paid time off. We also offer a 401k, profit sharing, employee stock ownership, and twice annual bonus opportunities. Our annual base salary range has been established based on local markets.#LI-MR1