Information Security Engineer

Profile

The Information Security Engineer will be responsible for working with the Information Security Director on the continuous improvement and development of the firm’s security program, operations, and systems security maintenance. The ideal candidate will have a strong proficiency in IT and experienced in investigating and utilizing new technologies and processes to enhance the firm’s cybersecurity capabilities. The Information Security Engineer will be responsible for security monitoring, security and data/logs analysis, responding to security incidents, performing forensic analysis, and leading incident response. Finally, this candidate will provide key contribution into thoughts and ideas for protecting the overall enterprise security of the firm.

Job Functions:

Manages systems and processes to protect client, employee and Firm information.

Investigates and remediates threats and escalated alerts.

Performs monitoring and maintenance of various security systems and technologies.

Implements changes to multi-site firewall and IPS implementations.

Assists with the management and operation of information security tools and processes including security information and event management (SIEM), anti-virus and malware defense (EDR), and the firm’s privileged access management (PAM) platform.

Assists with compliance activities including audits, vendor reviews, access reviews, cloud application inventories, and risk management.

Provides escalation support to end users.

Supports various security projects and initiatives.

Assists in developing and implementing security standards, procedures and protocols.

Completes weekly system audits, anti-virus management, configuration management, and identity management oversight.

Performs vulnerability scans, conducts risk assessments, and oversees the vulnerability management remediation process.

Develops analysis techniques to support common and unique use-case monitoring against security indicators including device logs, network intrusion sensors, host intrusion indicators, and web filters/proxy.

Monitors, collects, and analyzes cybersecurity data (e.g. intrusion attempts, mail protection statistics, data loss protection statistics, etc.) generated from security systems and develops KPI and metrics reports.

Partners with the SISM and other stakeholders to improve security procedures, training, IT processes, and the security of existing systems.

Communicates with other departments to report and resolve IT security issues.

Effectively communicates with stakeholders at all levels of the organization.

Provides 24x7 on-call support for IT security issues and systems.

Qualifications:

Bachelor’s degree in Information Systems Security or related field, or relevant working experience.

5-7 years of relevant security experience.

Certifications a plus, not required.

Experience using, administrating, and deploying a variety of operating systems (Windows, Linux or other UNIX variants), virtualization platforms, and cloud solutions.

Knowledge of and experience in information security and monitoring systems.

Familiarity/comfort level working with IT Security software and hardware.

Strong writing / documentation skills.

Highly organized.

Strong communication skills.

Self-starter with the ability to work independently, while having good judgment as to when consultation is required.

Ability to work on multiple projects and perform well under deadlines.

Enthusiastic, flexible, willing to pitch in where needed.

Strong drive to learn and grow in the cyber security field.

Physical Requirements:

Must have minimal physical mobility. Position may occasionally require standing, walking, reaching, and lifting up to 15 pounds.

Must have the ability to operate equipment such as a computer and copy machine.

Must have the ability to communicate clearly and to read and follow detailed instructions.

Must have the ability to prepare assorted documents and other related materials.

Must have the ability to work in stressful conditions under time deadlines.

To apply, please click here

Company info

Choate Hall & Stewart LLP.
Phone : 1-(617)-248-5000
Website : https://www.choate.com/