Technology Cyber Security Operations Manager

Cooley is seeking a Technology Cyber Security Operations Manager to join the Information Services team.

Working hours: 1pm to 9pm

Position Summary: Cooley Technology embraces a culture of customer service excellence and all members of the department are expected to move this agenda forward. To that end the Technology Cyber Security Operations Manager is expected to recognize that the Cooley Technology department is a service organization first and foremost and will be evaluated on this requirement equal in importance to the technical or operational responsibilities outlined later in this document.

The Technology Cyber Security Operations Manager will work with and manage teams to maintain and monitor the security policies practices and systems implemented by the firm. The Technology Cyber Security Operations Manager will participate in developing security policies and procedures to protect the firm from threats and will manage the firms technological and cyber security to ensure proper security measures are in place those measures are monitored and threats are responded to and neutralized. Specific duties include but are not limited to the following:

Position Responsibilities:

• Manage and lead the Technology Cyber Security Team to maintain and monitor the security policies practices and systems implemented by the firm
• Review analyze and monitor security system reports and logs for suspicious activities trends and includes but is not limited to SIEM web filters mail gateways firewalls encryption systems anti-malware systems IDS/IPS
• Provide leadership guidance task prioritization mentoring and annual reviews to the Technology Cyber Security team members
• Develop and monitor Technology security metrics and present security status to Technology management
• Advise Technology management on selection and use of realistic enforcement mechanisms
• Identify and document threats and vulnerabilities that may impact the business and address them regularly with business units
• Develop access control models and roles
• Recommend controls for on-premise and cloud systems to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy
• Develop implement and lead Security Incident Response teams and troubleshooting efforts on all Technology security related problems
• Provide consultation on any internal investigation that may require forensic analysis
• Develop and execute a firmwide Technology security awareness program; provide on-going communications to staff regarding threats and mitigation steps; develop/execute technical training to Technology staff on security policies/products; track attendance and progress
• Respond to audit findings and present remediation steps to Technology management
• Lead testing of installed systems to ensure protection strategies are properly implemented and functioning as intended
• Provide security analysis on firmwide system changes to the Change Control Board and Architecture Review Board
• Evaluate and recommend commercial security vendors and products. Present the firm with outside vendors and recommend new products/technology to improve security and address business needs
• Work with vendors to put in place acceptable service and response agreements consistent with product and service SLA and response time during security incidents
• Build and maintain TAM relationships with key security providers
• Participate in security and legal forums and organizations to learn new ideas to solve problems
• Serve as direct supervisor and mentor to direct reports
• Provide day-to-day supervision of direct reports ensure compliance with assigned work hours and monitor for compliance with all firm and department policies. Manage staffing coverage review and process time logs/time off requests
• Support business professional development and continued educational opportunities
• In collaboration with immediate supervisor and CN HR participate in hiring performance appraisals counseling termination and other employee lifecycle events
• All other duties as assigned or required

Skills & Experience

Required:

• After orientation at Cooley LLP exhibit proficiency in the Microsoft Office suite iManage and other firm applications
• Ability to work extended and/or weekend hours as required
• Ability to travel as required
• 5 years of relevant work experience in information security
• CISSP or equivalent certifications and/or experience
• Proven practical experience in information security and well-rounded knowledge of IT
• Experience working with teams responsible for and working on:
• Cisco routing/switching equipment
• Active Directory and NTFS
• Firewalls
• Intrusion Detection and Prevention Systems
• Antivirus programs and management console
• Web filter/proxy technologies
• Encryption technologies whole disk e-mail and data at rest
• Patch management systems
• Vulnerability scanners
• Forensic tools
• Penetration testing tools
• Data loss prevention
• Email gateways and anti-spam services
• Mobile device management
• Privileged account management systems
• Security information and event management systems
• Two factor authentication systems
• M365 and Microsofts cloud security suite
• Demonstrated experience evaluating the security posture of vendors and system architecture
• Prior experience implementing and managing incident management programs and systems
• Prior experience managing vendor relationships
• Project management experience
• Participate in a 7x24 on-call rotation

Preferred:

• Prior law firm experience
• Bachelors degree in Information Technology or Computer Information Systems
• Experience working with the following products:
• Cisco routers and switches
• Palo Alto Networks firewalls and Remote Access
• Microsoft SCCM
• Tenable One Vulnerability Scanner
• BitLocker
• VMWare
• Data Loss Prevention
• Proofpoint Email Gateway and Anti-Spam
• Forensic Tools
• S/MIME email encryption
• InTune
• Delenia Secret Server
• Crowdstrike
• Log mgmt. systems
• Microsoft MFA
• AWS/Azure/GCP Security Configurations
• Experience implementing or managing ISO 27000
• Additional security certifications
• Supervisory experience

Competencies

• Exceptional Customer Service Skills
• Excellent analytical problem-solving customer service and project management skills
• Ability to balance security best practices with business objectives
• Proven track record of excellent decision-making integrity and working with IT management business users and staff
• Excellent oral and written communication skills including technical and user documentation.
• Strong organizational skills
• Ability to work independently and under high pressure with tight schedules and deadlines.
• Ability to interact well with all levels of staff
• Excellent active listening skills
• Ambitious and motivated team player
• Capable of grasping new concepts quickly and without prior experience
• Detail oriented
• Ability to multi-task and work in fast-paced environment
• Ability to interact and coordinate with several teams to achieve objectives
• Ability to solve problems independently and simultaneously effectively managing multiple tasks.
• Familiarity with budgeting financial analysis and asset management within the context of an IT operation
• Professional demeanor at all times

Reporting to this position:Cyber Security Engineers Cyber Security Architects Cyber Threat Hunters Vulnerability Management Engineers SOC.

Cooley offers an excellent benefits package and competitive compensation including:

• Enhanced family leave
• Health and dental insurance
• Group income protection
• Life assurance
• Pension
• Fertility benefits
• Wellness programs
• Employee discounts including a fitness and nutrition allowance
• And more!

A comprehensive benefits brochure will be provided to all candidates during the interview process.

Equal Opportunity Statement

We strive to create an inclusive and rewarding environment that allows our people to thrive both professionally and personally. The firm does not discriminate in employment opportunities or practices on the basis of age disability gender reassignment marriage and civil partnership pregnancy and maternity race religion or belief sex sexual orientation. This policy governs all aspects of employment including but not limited to recruitment selection job assignment compensation discipline promotion termination and access to benefits and training.

Cooley (UK) LLP is dedicated to making our recruitment practices and candidate interviews inclusive and accessible for everyone. If you have a medical condition disability or are neurodivergent and require reasonable accommodations adjustments or support during your interview process please contact . We assure you all requests will be treated with sensitivity and strict confidentiality and they will not affect your potential employment with Cooley (UK) LLP.