Security Engineer (DLP)

Benesch Law•Chicago, IL

1d•$119,000 - $142,000•Hybrid

About The Position

At Benesch, we pride ourselves on exceeding expectations and building trust not only with our clients but with our employees - Benesch's #1 asset. Committed to providing not only the highest level of legal service to our clients, Benesch also aspires to create a positive work environment for our employees. Our Firm continues to earn placement on Chicago and Cleveland's Top Workplaces list, along with Cleveland's NorthCoast 99 Top Workplaces rankings. We also continue to advance on the AmLaw 150 list, placing us among the top 150 law firms in the country. Benesch is proud to be recognized for being a Firm that attracts and retains top talent - making Benesch a great place to work. We offer a hybrid schedule, career development and growth, transparent and visible leadership teams, and a place where diversity, equity and inclusion is celebrated. In addition, the Firm offers a full array of benefits which can be viewed at www.mybeneschbenefits.com. We are one of the fastest growing firms in the nation, and have offices in Chicago, Columbus, San Francisco, New York City, and Wilmington. Benesch is proud to announce the opening for a Security Engineer (DLP) in our Chicago office! This position is hybrid and has work from home flexibility. The Security Engineer (DLP) will have a passion for security engineering and thrive on enhancing cybersecurity postures of a company with a strong emphasis on endpoint security, security engineering support and project participation and guidance. This role involves building secure, resilient systems from the ground up and configuring firewalls, intrusion detection systems, and security tools. The ideal candidate will bring technical expertise, risk-based prioritization and experience with building and improving security disciplines across the organization, strategic thinking, and a collaborative spirit to drive security innovation and resilience.

Requirements

Bachelor's degree in Computer Science, Cybersecurity, or related field.
5+ years of experience in security engineering across multiple disciplines including incident response, red, purple and blue team activities, endpoint controls.
Hands-on experience with DLP, CASB, and cloud-native security tools including Netskope DLP.
Solid understanding of cloud platforms (AWS, Azure, GCP) and associated security services.
Understanding and practical experience with incident response activities.
Familiarity with frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001 and CIS Benchmarks and aligning the security program with the framework.

Nice To Haves

Master's preferred
Relevant certifications (e.g., CISSP, CCSP, AWS Security Specialty, GIAC) are a plus.
Experience with EDR, SIEM integration and DLP.
Strong analytical, communication, and project management skills.
Ability to mentor junior analysts and support cross-functional initiatives.

Responsibilities

Support end-to-end execution of diverse security projects including: Endpoint Detection & Response (EDR) deployments.
Ongoing vulnerability assessment and penetration testing activities.
Security automation and orchestration initiatives.
Hardening and baseline creation, implementation and auditing.
Identity & Access Management (IAM) enhancements.
Recommend, evaluate and implement new security technologies and tools.
Monitor and analyze security events using SIEM and other detection platforms.
Lead investigations and coordinate response efforts for security incidents.
Develop and maintain incident response runbooks and tabletop exercises.
Recommend, implement, and support SIEM and threat intelligence enhancements.
Lead deployment and tuning of DLP and CASB solutions to safeguard sensitive data across endpoints, cloud services, and email platforms.
Monitor and respond to data exfiltration attempts and policy violations.
Conduct regular reviews of data access and usage patterns to identify anomalies.
Assist with implementing and supporting secure cloud architectures across AWS, Azure, and/or GCP, identify risks and provide recommendations.
Enforce and audit cloud security policies, standards, and best practices.
Evaluating existing posture and providing risk-based recommendations for improvement.
Support internal and external audits, risk assessments, and compliance initiatives (e.g., NIST, ISO 27001, SOC 2).
Maintain documentation and key metrics for security controls and processes.
Collaborate with governance and risk teams to align technical controls with policy requirements.