IT Security Engineer, Governance Risk & Compliance, Data Protection and Privacy Support

About The Position

Requirements

• 1–2 years of experience working with network security tools or in an information security support role.
• Foundational knowledge of cybersecurity, data protection, and privacy concepts.
• Basic understanding of Access Control Management and encryption concepts.
• Demonstrated project management skills: ability to coordinate tasks, track deliverables, and assist with multiple, simultaneous projects under supervision.
• Associate’s degree or Bachelor’s degree in computer science, cybersecurity, or a related field (or equivalent experience).
• Willingness to learn from senior team members and adapt to new challenges.
• Good teamwork and communication skills; ability to explain technical details to non-technical audiences with guidance.
• Ability to handle shifting priorities in a dynamic environment with supervision.
• Strong organizational skills with the ability to assist in managing project timelines, deliverables, and project documentation.
• Ability to work flexible hours if needed and respond to basic security-related issues under supervision.
• May occasionally be asked to assist with multiple projects or work with vendors under direction.

Nice To Haves

• Experience assisting with audits or assessments preferred but not required.
• Interest in legal, financial, or business services industries is a plus.
• Entry-level certifications such as CompTIA Security+ or Microsoft Certifications preferred but not required.

Responsibilities

• Assist in maintaining enterprise security documents (policies, standards, baselines, guidelines, and procedures) as directed by senior staff.
• Help in testing and updating the firm's Incident Response Plan.
• Support the firm's ISO 27001 Certification program through documentation and evidence collection.
• Participate in client audits and third-party supplier security assessments by gathering information and preparing initial responses.
• Provide administrative and technical support for GRC compliance projects.
• Assist in implementing data protection and privacy strategies as directed by senior engineers.
• Collaborate with legal, compliance, and privacy teams to support privacy policy alignment with regulations.
• Monitor data protection measures under supervision and recommend minor improvements as identified.
• Help create training materials and support team members in delivering data protection best practices.
• Maintain awareness of trends in cybersecurity, security solutions, and threat vectors.
• Assist in the deployment and configuration of security solutions, following established procedures.
• Monitor security solutions for proper operation and report issues to senior staff.
• Perform initial reviews of security logs, escalating findings as appropriate.
• Ensure devices are configured per established security baselines under supervision.
• Support monitoring of security solutions for efficient operations.
• Participate in routine vulnerability assessments and security audits as directed.
• Provide basic support for end users and IT staff on security-related issues.

Benefits

• medical
• dental
• vision
• life
• mental well-being programs
• child, family, elder, and pet care benefits
• short- and long-term disability
• industry leading parental leave benefits
• health savings account contributions (w/applicable medical plan)
• flexible spending accounts
• 401K program
• Paid Time Off program
• paid holidays