MANATT, PHELPS & PHILLIPS LLP is one of the nation’s premier law and consulting firms known for quality and extraordinary commitment to clients & integrated, relationship-based services.
We are notably progressive and entrepreneurial and are deeply committed to diversity, public service, and excellence in all we do.
We currently have an opportunity for a Security Engineer to join our IT Security team.
Responsibilities Secures enterprise information by determining security requirements; planning, implementing, and testing security systems; preparing security standards (ie.
hardening guides), policies, and procedures.
Aligns standards, frameworks and security with overall business and technology strategy.
Establish security standards, policies and procedures for infrastructure, application, middleware, and data including development, QA and deployment best practices, for in-house and outsourced.
Design and deliver security landscape with a focus on thwarting malware, intrusions and denial of service attacks.
Develop penetration testing strategy and work with outside vendors to executive penetration testing.
Respond to client security assessments and Outside Counsel Guidelines; carry out planned and on-demand audits including ISO 27001 audit response.
Securely Provision: Conceptualize, architect, design and/or build secure IT systems and networks.
Design elements of security architecture to mitigate threats as they emerge.
Operate and Maintain: Provide support, administration, and maintenance necessary to ensure effective and efficient IT system performance and security.
Protect and Defend: Identify, analyze, and mitigate threats to internal IT systems and/or networks.
Perform threat hunting and log and log review to identify indicators of compromise.
Response: Investigate and respond to computer security incidents related to IT systems and networks.
Triage and remediate security incidents, and if necessary, assist external incident responders.
Qualifications BA/BS Degree or higher in an Information Systems discipline 3+ years in IT Security in a Microsoft environment Experience with enterprise anti-virus solutions, including next-gen anti-virus Experience with enterprise Security Incident and Event Management (SIEM) solutions Experience with enterprise network vulnerability scanners Experience with SAML/ADFS/MFA Knowledge of ISO 27001 family of standards Certified Information Systems Security Professional (CISSP) preferred Certified Information Security Manager considered Must be proficient with Microsoft Office Must have excellent oral and written communications skills Must be able to interface with all levels of firm management and staff Must be able to work with limited supervision Must have ability to work independently as well as thrive in a team oriented environment.
EEO/AA EMPLOYER/Veterans/Disabled