Cybersecurity & Compliance Administrator

{
  "content_hash": "a74794b4bc711fedefd5161ae6bc9eb4df0f2ca238e3509b2d8fae99908b9722",
  "source_hash": "4cdb55451c900c8398db70cbe221fe6d1a7198c725f01b19f5be0ba445d9fade",
  "last_changed_at": "2026-06-03T12:24:48.555Z",
  "active_status": "active"
}

{
  "language": "en",
  "location": {
    "raw": "Denver, CO",
    "city": "Denver",
    "region": "CO",
    "country": "United States",
    "is_remote": false,
    "confidence": 0.9
  },
  "salary_max": 175000,
  "salary_min": 140000,
  "inferred_at": "2026-06-06T19:52:20.316Z",
  "launch_scope": {
    "reason": "english_us_canada",
    "included": true,
    "language": "en",
    "location": {
      "raw": "Denver, CO",
      "city": "Denver",
      "region": "CO",
      "country": "United States",
      "is_remote": false,
      "confidence": 0.9
    },
    "countries": [
      "United States"
    ]
  },
  "remote_policy": null,
  "salary_period": "year",
  "workplace_type": "on_site",
  "salary_currency": "USD"
}

{}

{
  "lists": [
    {
      "text": "Responsibilities",
      "content": "<div>\n<p><u>Microsoft Purview Administration (Compliance &amp; Data Governance)</u></p>\n\n<li>Configure and manage Purview capabilities to support compliance objectives, including data classification and labeling, data loss prevention (DLP), retention and deletion policies, eDiscovery workflows, and compliance reporting.</li>\n<li>Develop and maintain Purview‑derived compliance artifacts and evidence outputs to support assessments, audits, due diligence, and continuous monitoring aligned to CMMC 2.0 Level 2 and NIST SP 800‑171.</li>\n<li>Define and operate data retention and deletion procedures, integrating with Purview retention controls where appropriate</li>\n\n<p><u>Microsoft Defender Administration (Threat Protection &amp; Security Operations)</u></p>\n\n<li>Configure, tune, and operate Microsoft Defender security controls across identity, endpoints, email/collaboration, and cloud applications, consistent with licensing and compliance scope.</li>\n<li>Monitor alerts, investigate suspicious activity, and drive remediation actions; reducing noise through continuous tuning and improvements.</li>\n<li>Establish and maintain detection and response playbooks, including alert triage, escalation paths, documentation requirements, and post-incident follow-up.</li>\n\n<p><u>Incident Response &amp; Threat Prevention</u></p>\n\n<li>Own and maintain the Security Incident Response Plan, including severity definitions, roles and responsibilities, evidence handling, escalation paths, and internal/external communication procedures.</li>\n<li>Lead security incident response from identification through containment, eradication, recovery, and lessons learned.</li>\n<li>Perform root-cause analysis and coordinate corrective actions with IT administrative staff and relevant stakeholders.</li>\n<li>Proactively implement threat prevention measures: hardening, secure configuration baselines, conditional access/MFA enforcement support, and policy-driven risk reduction.</li>\n<li>Maintain an incident register covering actual, attempted, and suspected security incidents (including phishing attempts), investigations performed, and outcomes.</li>\n\n<p><u>Compliance Enablement (CMMC L2 / NIST Controls)</u></p>\n\n<li>Maintain the System Security Plan (SSP) and Plan of Actions &amp; Milestones (POA&amp;M) for in‑scope systems, ensuring clear implementation statements, ownership, and evidence references.</li>\n<li>Support definition and maintenance of the CUI boundary, including systems, users, endpoints, networks, and data flows.</li>\n<li>Translate CMMC and NIST control requirements into concrete configurations, procedures, and ongoing monitoring activities across Microsoft 365, on‑prem infrastructure, and restricted or air‑gapped environments.</li>\n<li>Collect, organize, and maintain audit‑ready evidence to support internal assessments, customer diligence, and third‑party assessments.</li>\n<li>Define and&nbsp;maintain&nbsp;a centralized logging strategy (SIEM) spanning cloud and&nbsp;on‑prem&nbsp;environments, including ingestion of logs from identity systems, endpoints, email, servers, firewalls, VPNs, and IDS/IPS platforms.</li>\n\n<p><u>On‑Prem &amp; Air‑Gapped Security</u></p>\n\n<li>Establish and operate secure data transfer procedures for air‑gapped and restricted environments, including removable media governance, integrity validation, malware scanning, and chain‑of‑custody documentation.</li>\n<li>Partner with Network Architecture to design and maintain secure monitoring architectures for restricted and air‑gapped environments, including TAP/SPAN placement, IDS deployment, and segmentation alignment with OT/ICS security best practices</li>\n\n<p><u>Security Engineering &amp; Integrations</u></p>\n\n<li>Support integrations between cloud-based services and the Microsoft security/compliance ecosystem (e.g., log sources, alerting, ticketing workflows, SSO/identity integrations).</li>\n<li>Contribute to automation where appropriate (e.g., scheduled scripts, workflows, or playbook-style response actions).</li>\n\n<p><u>Cross-Functional Collaboration &amp; Communication</u></p>\n\n<li>Work closely with IT and engineering teams to ensure smooth operations and secure-by-default practices.</li>\n<li>Document, categorize, and prioritize security issues to ensure efficient escalation and resolution.</li>\n<li>Enforce approved security, compliance, and privacy policies and contribute to ongoing policy development and improvement.</li>\n<li>Collaborate with Network Architecture on secure network design, segmentation strategy, and enforcement controls including firewall policy, IDS/IPS, and Zero Trust network principles.</li>\n<li>Collaborate with Network Architecture on secure network design, segmentation strategy, and enforcement controls including firewall policy, IDS/IPS, and Zero Trust network principles</li>\n<li>Implement privacy impact assessments (PIAs) for new systems or processes involving personal data.</li>\n<li>Partner with Legal and HR to document the company’s GDPR and CCPA applicability position, including the basis where such laws do not apply.&nbsp;</li>\n<li>Support inclusion of appropriate data privacy and security terms in third‑party contracts and service agreements.</li>\n\n</div>"
    },
    {
      "text": "Qualifications",
      "content": "<div>\n\n<li><strong>Education: </strong>Bachelor’s degree (or equivalent practical experience) in information technology, cybersecurity, information systems, or&nbsp;a related&nbsp;field.&nbsp;</li>\n<li><strong>Experienece: </strong>7+ years of experience in security administration, security operations, compliance operations, or adjacent IT roles with direct security responsibility.</li>\n<li>Demonstrated&nbsp;hands‑on&nbsp;experience administering Microsoft 365 security and compliance services, including Microsoft Purview and Microsoft Defender in an enterprise environment.&nbsp;</li>\n<li>Proven background in security incident response, investigation, and documentation in regulated or&nbsp;high‑risk&nbsp;environments.&nbsp;</li>\n<li>Working knowledge of system security best practices, access control, secure configuration, and audit logging.&nbsp;</li>\n<li>Strong written and verbal communication skills; able to translate technical security risk into clear, actionable steps and documentation.&nbsp;</li>\n<li>Comfortable operating as a&nbsp;self‑directed&nbsp;individual contributor in a&nbsp;fast‑paced&nbsp;and evolving environment.</li>\n<li>Excellent technical and interpersonal communication skills; able to translate security risk into actionable steps.</li>\n<li>Comfortable in a fast-paced, dynamic, and ambiguous environment.</li>\n<li>Positive attitude, strong ownership mindset, strong professional judgement and ability to earn trust and maintain professional relationships.</li>\n<li>Must be a U.S. citizen or national, U.S. permanent resident (current Green Card holder), or lawfully admitted into the U.S. as a refugee of granted asylum&nbsp;</li>\n\n</div>"
    },
    {
      "text": "Desired",
      "content": "<div>\n\n<li>Direct experience implementing or operating CMMC Level 2 and/or NIST SP 800‑171 controls, including evidence collection and assessment preparation.&nbsp;</li>\n<li>Experience with centralized logging or SIEM platforms and&nbsp;detection&nbsp;playbook development.&nbsp;</li>\n<li>Experience with cloud-based service integrations (webhooks/REST APIs) and security-relevant automation.</li>\n<li>Experience with security-related scripting/automation practices and languages (Python, JavaScript, Ansible, SOAR‑style&nbsp;workflows etc.).</li>\n<li>Familiarity with hybrid cloud and&nbsp;on‑prem&nbsp;infrastructure in regulated environments, including&nbsp;air‑gapped&nbsp;networks.</li>\n\n</div>"
    }
  ],
  "country": "US",
  "createdAt": 1779233532622,
  "updatedAt": null,
  "categories": {
    "team": "IT",
    "location": "Denver, CO",
    "commitment": "Full-Time",
    "department": "Operations",
    "allLocations": [
      "Denver, CO"
    ]
  },
  "salaryRange": {
    "max": 175000,
    "min": 140000,
    "currency": "USD",
    "interval": "per-year-salary"
  },
  "workplaceType": "onsite"
}