Information Security Administrator

Bpmcpa is looking for an Information Security Administrator to develop and maintain security policies and procedures, ensuring compliance with industry standards.

### Key Responsibilities: - Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user access based on industry-standard best practices. - Experience with data management and governance using Microsoft Purview, including data classification, sensitivity labels, and compliance-related controls. - Experience with the Microsoft Defender security suite, including Endpoint, Identity, Email, and Cloud App protection. - Design and implement incident investigation and security alert response. - Design and implement disaster recovery plans for operating systems, databases, networks, servers, and software applications. - Assess need for any security reconfigurations (minor or significant) and execute them if required. - Keep current with emerging security alerts and issues. - Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts. - Interact and negotiate with vendors, outsourcers, and contractors to obtain protection services and products. - Recommend, schedule, and perform security improvements, upgrades, and/or purchases. - Experience supporting and delivering information security projects across endpoint protection, data security, access controls, monitoring, incident response, and compliance initiatives. - Deploy, manage, and maintain IT security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software. - Administer and maintain end user accounts, permissions, and access rights. - Manage connection security for local area networks, company web sites, and remote access. - Manage and ensure the security of databases and data transferred both internally and externally. - Design, perform, and/or oversee penetration testing of all systems to identify system weaknesses. - Design, implement, and report on security system and end user activity audits. - Monitor user, system, firewall logs, intrusion detections, and network traffic for unusual activity or violation of company security policy. - Monitor servers, interpret capacity and regulation checks for resolution. - Recommend scheduled (where appropriate) and ad-hoc fixes, security patches, disaster recovery procedures, and any other measures required in the event of a security breach. - Download and test new security software and/or other security technologies. - Perform systems backups. - Provide on-call security support to end-users. - Manage and/or provide guidance to junior members of the team.

### Knowledge & Experience: - Broad hands-on knowledge of Microsoft security suites (Purview, Defender, etc.), firewalls, intrusion detection systems, anti-virus software, data encryption, and other industry-standard technologies and practices. - In-depth technical knowledge of network, applications, cloud app integrations, PC, and platform operating systems. - Working technical knowledge of current systems software, protocols, and standards. - Strong knowledge of TCP/IP and network administration/protocols. - Hands-on experience with device such as switches, routers, and firewalls. - Knowledge of applicable practices and solutions related to data privacy and protection. - Knowledge of law enforcement practices and procedures, such as 1L. ### Personal Attributes: - Intuition and keen instincts to pre-empt attacks. - High level of analytical and problem-solving abilities. - Ability to conduct research into security issues and products as required. - Strong understanding of the organization’s goals and objectives. - Strong interpersonal and oral communication skills. - Strong investigative skills. - Excellent attention to detail. - Ability to effectively prioritize and execute tasks in a high-pressure environment. - Able to work in a team-oriented, collaborative environment.

### Qualification: - College university degree in the field of computer science and/or any engineering stream. ( e.g. B.Sc., B.Tech) - Certification in Security areas is a value-add.

BPM (BPM LLP or BPM CPA) is a public accounting, tax, and advisory firm providing services such as audit, assurance, business tax, valuation, consulting, and outsourced accounting to mid-cap businesses, high-net-worth individuals, and industries including technology, real estate, and life sciences. Ranked among the top 50 largest U.S. accounting firms and top 10 in the West, it serves clients globally with offices in the U.S. and Bengaluru.