System Administrator - Security

Job Posting

The Baselining and Controls on Networked Systems project will address several fundamental cybersecurity efforts that align with the company's Cybersecurity Strategic Plan. The company is currently allowing outdated protocols and configurations that were necessary to support legacy systems and business processes, which have since been removed or changed. Additionally, new controls and tools have been released that allow the company to mature prevention, detection, and response to unwanted cyber events through automation and integration with advanced cloud technologies.

The project will apply updated protocols to enhance the security of authentication events and data transfer between users and systems; enable additional logging capabilities for increased visibility; modernize system configurations; and make new features available in security tools responsible for detecting and responding to cyber events.

Protocol Enhancements :

SMBv1 - Remove

NTLM - Remove

Kerberos Update

LDAP Restrict (LDAPS instead)

Logging Enhancements :

PS Logging - Reconfigure existing and enable new sources

Sysmon Reconfigure existing and enable new sources

Baseline Configuration Enhancements :

USB - Block

Boot Manager New configuration

Tool Enhancements :

Defender New install on servers