Hybrid role in Philadelphia The Information Security Engineer is a hands-on technical security professional responsible for protecting the Firms information assets through the design implementation and administration of enterprise security solutions. This role partners closely with IT and business stakeholders to strengthen the Firms security posture across infrastructure cloud identity networks and data while supporting security operations risk management and incident response. The ideal candidate is technically curious collaborative and passionate about cybersecurity with a strong desire to continuously learn and improve security processes.
Key Responsibilities
Engineer implement administer and optimize security technologies across endpoints networks cloud platforms identity email and data protection environments.
Manage and support key security platforms including next-generation firewalls EDR SIEM IAM/PAM vulnerability management DLP Zero Trust and threat detection solutions.
Monitor investigate and respond to security events and incidents participating in forensic investigations root cause analysis and remediation efforts.
Lead vulnerability management activities including scanning risk analysis remediation planning reporting and validation.
Conduct security risk assessments architecture reviews and evaluate new technologies to ensure security requirements are incorporated into system design and implementation.
Develop and maintain security standards procedures documentation and technical baselines while supporting audits client security assessments and regulatory compliance initiatives.
Automate repetitive security tasks and improve operational efficiency through scripting and process enhancements.
Lead or participate in security projects and contribute to security awareness and continuous improvement initiatives.
Qualifications
Bachelors degree or equivalent experience with 4 years of hands-on experience in security engineering security operations SOC or digital forensics.
Strong technical expertise in multiple security domains including network security IAM cloud security EDR SIEM Zero Trust vulnerability management encryption enterprise authentication DLP and incident response.
Experience with Microsoft security technologies such as Defender Sentinel Entra ID Purview and Intune is highly desirable.
Knowledge of security frameworks including NIST CSF ISO 27001 SOC 2 CIS Controls and OWASP.
Experience with networking protocols including TCP/IP SSL SSH HTTP and IPSec.
Scripting or automation experience using PowerShell Python or similar languages preferred.
Strong communication analytical and problem-solving skills with the ability to translate technical risks into business impact.
Security certifications such as CISSP GSEC GCIH CISA Security or Microsoft Security certifications are preferred.
Experience within a law firm professional services or consulting environment is a plus.
send resume to
Required Experience:
IC
Job DescriptionHybrid role in PhiladelphiaThe Information Security Engineer is a hands-on technical security professional responsible for protecting the Firms information assets through the design implementation and administration of enterprise security solutions. This role partners closely with IT ...
Job Description
Hybrid role in Philadelphia The Information Security Engineer is a hands-on technical security professional responsible for protecting the Firms information assets through the design implementation and administration of enterprise security solutions. This role partners closely with IT and business stakeholders to strengthen the Firms security posture across infrastructure cloud identity networks and data while supporting security operations risk management and incident response. The ideal candidate is technically curious collaborative and passionate about cybersecurity with a strong desire to continuously learn and improve security processes.
Key Responsibilities
Engineer implement administer and optimize security technologies across endpoints networks cloud platforms identity email and data protection environments.
Manage and support key security platforms including next-generation firewalls EDR SIEM IAM/PAM vulnerability management DLP Zero Trust and threat detection solutions.
Monitor investigate and respond to security events and incidents participating in forensic investigations root cause analysis and remediation efforts.
Lead vulnerability management activities including scanning risk analysis remediation planning reporting and validation.
Conduct security risk assessments architecture reviews and evaluate new technologies to ensure security requirements are incorporated into system design and implementation.
Develop and maintain security standards procedures documentation and technical baselines while supporting audits client security assessments and regulatory compliance initiatives.
Automate repetitive security tasks and improve operational efficiency through scripting and process enhancements.
Lead or participate in security projects and contribute to security awareness and continuous improvement initiatives.
Qualifications
Bachelors degree or equivalent experience with 4 years of hands-on experience in security engineering security operations SOC or digital forensics.
Strong technical expertise in multiple security domains including network security IAM cloud security EDR SIEM Zero Trust vulnerability management encryption enterprise authentication DLP and incident response.
Experience with Microsoft security technologies such as Defender Sentinel Entra ID Purview and Intune is highly desirable.
Knowledge of security frameworks including NIST CSF ISO 27001 SOC 2 CIS Controls and OWASP.
Experience with networking protocols including TCP/IP SSL SSH HTTP and IPSec.
Scripting or automation experience using PowerShell Python or similar languages preferred.
Strong communication analytical and problem-solving skills with the ability to translate technical risks into business impact.
Security certifications such as CISSP GSEC GCIH CISA Security or Microsoft Security certifications are preferred.
Experience within a law firm professional services or consulting environment is a plus.