Cyber Security Analyst

Rivkin Radler LLP•Uniondale, NY

1d•Hybrid

About The Position

Rivkin Radler is a law firm with approximately 250 lawyers and offices in Albany, N.Y.; Hackensack, N.J.; Jacksonville, F.L.; New York City; Poughkeepsie, N.Y.; and Uniondale, N.Y. The firm actively encourages equal opportunity through mentoring, training, professional development, and public service programs. Rivkin Radler LLP is seeking a hands-on Cybersecurity Analyst to design, implement, and operate key components of the Firm’s cybersecurity program. Reporting to the Director of Information Security, this role will involve deploying and maintaining controls, investigating alerts, analyzing risks, and supporting incident response to drive continuous improvement of the Firm’s security strategy and ISMS.

Requirements

BS/BA Degree in Cybersecurity / Information Technology or related field
Minimum of 2 years of experience in Information Security or a related technology field.
Hands-on experience with endpoint protection technologies, including anti-virus and intrusion detection systems.
Experience managing and supporting firewalls.
Proven experience maintaining secure network, system, and application architectures.
Strong experience with Microsoft 365 administration and security controls.
Working knowledge of vulnerability management platforms (e.g., Tenable, Qualys).
Experience administering email and web security gateways.
Experience with SIEM platforms for log review, monitoring, and security incident detection.
Excellent verbal and written communication skills, with the ability to convey security issues to both technical and non-technical audiences.
Demonstrated ability to manage vendor relationships and coordinate deliverables.
Ability to prioritize, respond to, and follow through on multiple requests in a fast-paced, dynamic environment.
Proven ability to work independently and lead projects through successful completion.
Proficiency in PowerShell scripting for automation and administrative tasks.

Nice To Haves

Industry professional certifications are a plus (Security+, SSCP, CISSP)
Familiarity with AWS cloud security concepts and controls (preferred)
Experience managing and supporting Palo Alto firewalls (preferred)

Responsibilities

Assist in the design, implementation, and ongoing monitoring of security systems and controls to protect the Firm’s systems, networks, and data.
Proactively identify and remediate vulnerabilities in hardware, software, applications, and configurations; interpret penetration test and vulnerability assessment results.
Respond to security incidents, coordinate investigations, perform root cause analysis, and report risks and recommendations to the Director of Information Security.
Collaborate with the cybersecurity team and SOC to ensure continuous protection.
Ensure security protocols and processes align with SOC 2 Type II and other compliance requirements.
Administer the cybersecurity awareness training program.
Develop and maintain SOPs and process improvement initiatives aligned to the security roadmap.
Design, deploy, and optimize endpoint management processes using SCCM and Intune, ensuring operating systems and applications remain current.
Automate routine security and administrative tasks using scripting tools; continuously evaluate and improve security technologies and processes.