At GrayMatter, we transform operations and empower people. Our consulting, implementation and technology curation services help industrial companies modernize their production environments and support operators working on the plant floor. Clients collaborate with GrayMatter to achieve their manufacturing efficiency goals, create intuitive data visualizations, reduce cybersecurity threats and guide successful digital transformation initiatives.

AND THAT’S WHERE YOU COME IN.

GrayMatter is dedicated to creating a team of unmatched talent in industrial technology. Our organizational culture encourages opportunities to learn and collaborate. Five core values woven into our DNA make Team GrayMatter stand above the rest: Accountability, Integrity, Respect, Innovation and Teamwork.

We are seeking a Cyber Security Administrator who will support multiple security initiatives involving design and implementation of different cyber security initiatives. This position will frequently collaborate with the City’s Cybersecurity Management and provide guidance and direction for the City’s Cybersecurity program. Monitor, evaluate, and maintain systems and procedures to safeguard internal information systems, network, databases and Web-based security. Assess potential systems and process vulnerabilities to determine security infrastructure requirements. Identify security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives. Performs other job-related duties as required.

General Job Duties:

• Monitor and manage cloud security posture across Azure and Ofce 365, ensuring compliance with security policies and best practices
• Monitor security events in real-time using advanced threat detection tools, conducting forensic analysis when necessary
• Manage Identity and Access Management solutions, including privileged access management and enforce least privilege policies
• Analyze technologies and establish highly effective processes and protocols to ensure comprehensive protection exists to prevent unauthorized entry into networks and systems
• Implement Data Loss Prevention solutions to safeguard sensitive data and prevent unauthorized exfiltration
• Drive creation of countermeasures to protect personnel and information assets
• Support automation and orchestration to maximize team talent and reduce routine tasks
• Update and maintain Security Information and Event Management systems for centralized logging, threat detection and analysis
• Document, prioritize, and formally report incidents, root cause analysis and after-action reports
• Update and maintain the incident response plan and business continuity plan, ensuring rapid detection, containment and resolution of security events
• Conduct security awareness training sessions to educate employees and enforce best practices

KNOWLEDGE, SKILLS AND EXPERIENCE NEEDED:

• Bachelor’s Degree in an applicable field (EE, EET, ME, MET, ChemE or comparable). An equivalent combination of experience and training may also be considered
• Basic to intermediate understanding of Azure security services (e.g., Microsoft Defender, Azure Security Center, Sentinel).
• Familiarity with Azure IAM, RBAC, and security best practices. Basic knowledge of network security (rewalls, NSGs, VPNs, segmentation).
• Hands-on experience with security monitoring tools, SIEM, or endpoint security.
• Understanding of cloud security principles, Zero Trust, and compliance frameworks.
• Basic scripting knowledge (PowerShell, Python, or Bash) is a plus.
• Relevant certifications (AZ-900, AZ-500, Security+, or equivalent) are preferred but not required.

• Monitor and manage cloud security posture across Azure and Ofce 365, ensuring compliance with security policies and best practices
• Monitor security events in real-time using advanced threat detection tools, conducting forensic analysis when necessary
• Manage Identity and Access Management solutions, including privileged access management and enforce least privilege policies
• Analyze technologies and establish highly effective processes and protocols to ensure comprehensive protection exists to prevent unauthorized entry into networks and systems
• Implement Data Loss Prevention solutions to safeguard sensitive data and prevent unauthorized exfiltration
• Drive creation of countermeasures to protect personnel and information assets
• Support automation and orchestration to maximize team talent and reduce routine tasks
• Update and maintain Security Information and Event Management systems for centralized logging, threat detection and analysis
• Document, prioritize, and formally report incidents, root cause analysis and after-action reports
• Update and maintain the incident response plan and business continuity plan, ensuring rapid detection, containment and resolution of security events
• Conduct security awareness training sessions to educate employees and enforce best practice