Information Technology - Security Administrator

Benefits

Additional Information

About Charles River Associates For over 50 years, Charles River Associates has been a premier consulting firm that offers employees a place to learn from a diverse group of consultants, industry experts, and academics. At CRA you will be exposed to leading minds who use economic, financial, and business analysis to solve complex world problems for an impressive roster of clients, including major law firms, Fortune 100 companies, and government agencies. Through a collegial environment, formal and informal training opportunities, and a broad array of professional development resources, your experience at CRA will open doors for you throughout your career. The Information Technology (ITS) department at Charles River Associates is currently a team of more than 40 professionals dedicated to enhancing, maintaining, and developing the firm's technology infrastructure and security. The team is comprised of four functions: Service Delivery & Telecom, Enterprise Application Solutions, Infrastructure, Networking and Cloud Solutions, Information Security. Information Technology staff are based in the Boston, Chicago, London, Munich, New York, Oakland, San Francisco, College Station and Washington, DC offices. Mainly a Microsoft house, CRA is looking to maximize the performance of our on-premise systems and hybrid infrastructure, meaning experience with cloud technologies is essential for this role. Position Overview The Security Administrator supports CRA's information security and compliance objectives by administering and monitoring identity and access controls, privileged access, security configuration standards, and recurring security tasks. This role partners closely with Infrastructure, Service Delivery, Enterprise Applications, and Information Security to ensure that access is provisioned appropriately, administrative privileges are controlled, security baselines are maintained, and evidence is available for audits and compliance reviews. The Security Administrator also helps reduce operational risk by improving repeatability (documentation, runbooks, automation where feasible) and by supporting incident response and remediation activities. Key Responsibilities include: Identity & Access Administration (AD/Entra and core access controls): Administer and support identity and access controls across core platforms (e.g., Active Directory and cloud identity services), including account lifecycle activities, group management, and delegated administrative models. Privileged Access & Administrative Account Controls: Support the administration and enforcement of privileged access standards, including separate admin accounts, least privilege, and controls around membership in privileged groups (e.g., Domain Admins, Enterprise Admins, Schema Admins, Administrators, SQL Admins, workstation/desktop support admin groups). Access Reviews & Evidence Collection (Audit Readiness): Execute recurring access reviews and produce audit-ready evidence (e.g., administrator account reviews, privileged group membership exports/screenshots with timestamps, approval tracking), coordinating required approvals and retaining records per process. Security Configuration Standards & Hardening: Implement and maintain security configuration standards for Windows/identity-related services, including baseline security settings, policy alignment, and ongoing verification activities. Vulnerability & Remediation Coordination: Partner with infrastructure and endpoint teams to support vulnerability management workflows (triage, prioritization, tracking, and validation of remediation), with focus on identity/security-related findings and configuration weaknesses. Server Patching Support (off-hours/weekends): Participate in off-hours and weekend server patching processes as required, including change coordination, access enablement, validation, and post-maintenance checks. Ticketing / Service Operations Support: Handle and triage security administration requests through the ticketing system (e.g., access changes, group/permissions adjustments, privileged access requests), ensuring proper approvals and adherence to standard processes. Security Monitoring Support (as assigned): Support investigation and response activities by gathering logs, access history, and system context when security events require identity/permissions analysis; coordinate escalation to Information Security / SOC as needed. Documentation & Process Improvement: Maintain and improve documentation (runbooks, procedures, approval flows) for security administration tasks; identify opportunities to streamline repetitive access tasks through standardization and automation. Cross-Team Collaboration: Work closely with Infrastructure, Service Delivery, Enterprise Applications, and Information Security stakeholders to ensure security administration work is prioritized effectively and executed consistently; communicate clearly with technical and non-technical audiences. Server Vuln