Security Specialist

• Develop, implement, and maintain security policies, procedures, and protocols to safeguard sensitive information. 
• Monitor and analyze network traffic for signs of potential security threats or breaches. 
• Perform regular vulnerability assessments and penetration tests to identify and address security weaknesses. 
• Manage and update antivirus, anti-malware, and other security software. 
• Respond to and investigate security incidents, including data breaches and cyber-attacks. 
• Provide recommendations for improving cybersecurity measures and disaster recovery plans. 
• Oversee the installation, maintenance, and operation of physical security systems, including surveillance cameras, access control systems, and alarm systems. 
• Regularly audit and ensure compliance with IT security policies and practices. 
• Conduct security awareness training and creative testing for employees to promote best practices and enhance overall security posture. 
• Stay updated on the latest security trends, threats, and technologies, and provide recommendations for integrating new solutions. 
• Ensure compliance with relevant regulations and industry standards, including GDPR, HIPAA, and other data protection laws. 
• Prepare and present security reports to management, highlighting key metrics, incidents, and areas for improvement. 

• Bachelor’s degree in Information Technology, Cybersecurity or a related field, or equivalent. 
• Proven experience (5+ years) hands-on Cybersecurity experience. 
• Strong understanding of network security principles, cybersecurity best practices, and risk management. 
• Familiarity with relevant security frameworks and standards, such as NIST, SOC2, ISO 27001, or equivalent. 
• Excellent analytical and problem-solving skills, with the ability to think critically under pressure. 
• Excellent verbal and written communication skills. 
• Relevant certifications such as CISSP, CISM, CEH, or similar 
• Strong customer service orientation with a patient and professional demeanor, and the ability to communicate using non-technical language. 

• Experience with security information and event management (SIEM) systems. 
• Knowledge of network troubleshooting tools and methodologies. 
• Proficiency in scripting or programming languages for automating security tasks. 
• Experience with cloud security and managing security in Azure. 
• Familiarity with incident response and forensic investigation techniques.
• We would prefer to have a candidate who can be in Richmond, but are open to remote talent as well

Based on experience, this role will pay between $85,000 - $115,000. Thank you for considering Natures Path!