Cyber Security Administrator

at Monro
Published April 29, 2022
Location Rochester, NY
Category Default  
Job Type Full-time  

Description

Monro, Inc.

Monro, Inc. is one of the nation’s largest auto service companies and major tire retailer. We own and operate more than 1,200 stores in 32 states and our stock trades on the Nasdaq (MNRO). The Monro family of brands includes some the most recognizable names in the industry—Monro Auto Service and Tire Centers, Mr. Tire, Tire Choice, amongst many more regional chains. Our dominance is driven by teammates who strive to provide a five-star experience and deliver consistent value to our guests and shareholders. At Monro, we understand that a 5-star guest experience begins with a 5-star teammate experience. In fact, we’re currently investing more than $100 million in store improvements, new technology, and career development through our own Monro University training platform.

Destination Monro – Your Career is Here!

Do you have what it takes to shape a better future for yourself and the automotive service industry? Our vision is to be America’s leading auto and tire centers, trusted by consumers as the best place in our neighborhoods for quality automotive maintenance and repairs. We’re looking for motivated individuals at every stage in their career who share our vision. Positions are available in our retail locations across our many brands, in field management, and in store operations at our Store Support Center in Rochester, New York. If you like helping others, as much as you like working on cars; if you enjoy being part of a team, solving problems, and building guest relationships; if you value honesty and integrity - we have a Destination for you at Monro. Contact us to learn more.  Destination Monro! – Your career is here.

Job Description

This position will be responsible for supporting the introduction of modern technology and processes to improve security and countermeasures on enterprise endpoints. Specific deliverables will support implementation of endpoint intrusion prevention using Microsoft endpoint management and protection suites, antivirus, and endpoint vulnerability management administration, including but not limited to corrective actions. Candidates will need to understand patching methodologies, CVSS v3 ratings and scoring, risk ranking and cataloging and endpoint threat mitigation tactics and techniques.

RESPONSIBILITIES:

  • Monitor security systems and provide early response to potential threats.
  • Analyze technologies and establish highly effective processes and protocols to ensure comprehensive protection exists to prevent unauthorized entry into company networks and systems.
  • Support automation and orchestration to maximize team talent and reduce routine tasks.
  • Drive creation of countermeasures to protect company personnel and information assets.
  • Take ownership of a comprehensive logging and monitoring methodology for the enterprise.
  • Document, prioritize, and formally report incidents, root cause analyses, and after-action reviews.
  • Manage Security Administrators responsible for firewalls, network and host intrusion prevention/detection systems, virtual private networks, threat intelligence platforms, endpoint protection, email security, forensic tools, public/private/hybrid cloud infrastructure, identity and access management systems, and physical security systems.
  • Work closely with system owners to advise and support remediation efforts to close vulnerability exposure to new threats in the wild and verify the organization’s security posture against them.
  • Provide support to business groups launching modern applications and services to verify that new offerings are effectively logging and reporting activity.
  • Communicate incident activity in a manner understood by technical and non-technical business units, and gain support through influential messaging.
  • Defines key performance indicators and metrics that align with business initiatives and delivers them to non-technical individuals in an effective, understandable manner.
  • Periodically attend and participate in change management policy discussions and meetings.
  • Understand breach and attack simulation solutions to validate and improve the effectiveness of preventative controls and incident response.
  • Familiarity with cyber kill chain processes, using Mitre Attack framework to identify IoCs and drive next steps derived from that alignment.
  • Work as a team to consistently learn and share advanced skills and foster team excellence.
  • Perform other duties as assigned.

 #LI-CF1

Qualifications

  • Higher education with a technical focus such as Information Security, Computer Science, or equivalent industry experience.
  • 3+ years’ information security experience with at least 2+ years exposure to various security frameworks; CISSP, CRISC, CGEIT, GRCP, or PMP preferred
  • Preferably some experience with vulnerability management across cloud environments such as Microsoft Azure, Amazon Web Services, or Google Cloud Platform.
  • Have Microsoft server administration background (AD, Security, Azure, O365, etc.)
  • Microsoft Certified: Security, Compliance, and Identity Fundamentals
  • Microsoft Certified: Security Operations Analyst Associate
  • Microsoft Certified: Azure Security Engineer Associate
  • Experience with and understanding of various regulatory requirements, laws, and security frameworks, including but not limited to: NIST, PCI DSS, SOX, GDPR, CCPA, CIS, or SOC 2.
  • Strong knowledge and experience in the areas below:
  • SharePoint Online, Teams
  • Have configured Office 365 services including Azure AD Connect, Teams, Intune, Azure AIP and DLP
  • Intune (Conditional Access \ MDM \ MAM)
  • Clients (Outlook, Outlook for Mac, IMAP, POP3, Mobile Devices)
  • Permissions (Tenant \ Security & Compliance Center \ Exchange Online)
  • PowerShell, bash, vb scripting skills desired.
  • Detail oriented, organized, self-motivated, and self-sufficient.
  • Strong business writing and verbal communication skills.
  • Self-motivated, directed, and well-organized, with the vision to position controls in anticipation of threats.

Work Environment & Physical Requirements:

This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, scanners, and fax machines. Position requires prolonged periods of sitting/standing at a desk and working on a computer

Additional Information

Benefits 

  • Health Insurance 
  • Dental Insurance
  • 401K Retirement Plan with Company Match
  • Paid vacation
  • Paid Holidays
  • Career Development
  • Employee Discounts 

Your next Destination!

Growth Opportunity:

At Monro we’re committed to helping our teammates grow their career through the combination of coursework, demonstrating leadership skills and open opportunities. Our Service Managers receive on-the-job training, company sponsored certifications, as well as course curriculum in Monro University that empowers them to advance to the next level of Automotive Professional.
 

Monro, Inc. is an equal opportunity employer and affords equal opportunity to all applicants for all positions without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.