Security Engineer

About The Position

Requirements

• Strong understanding of Network architecture (LAN/WAN, VPNs, firewalls, segmentation).
• Strong understanding of Cloud security (Azure, AWS, M365).
• Strong understanding of Identity and Access Management (Okta, Azure AD, MFA, SSO).
• Strong understanding of Security monitoring and incident response (SIEM, SOAR).
• Strong understanding of Vulnerability management, patch management, and secure system hardening.
• Familiarity with DevSecOps, automation, and container security concepts.
• Knowledge of ISO 27001, ISO 27701, ISO 27017, NIST CSF, OWASP, and CIS Controls.
• Strategic thinker with strong technical depth and attention to detail.
• Excellent written and verbal communication skills.
• Proven ability to translate complex security issues into practical business impacts.
• Collaborative team player who can influence and drive secure design decisions across departments.
• Commitment to continuous learning and keeping current with threat and technology trends.
• Bachelor’s degree in Information Security, Computer Science, or a related discipline (Master’s preferred).
• 5–10 years of progressive experience in IT security, network engineering, or systems architecture.
• Experience designing and implementing secure enterprise environments in the legal, financial, or professional services industry preferred.
• Experience supporting compliance programs and certifications.

Nice To Haves

• Master’s degree
• Security / Networking: Comptia A+, Net+, Sec+, CySA+, CCNA, CISSP.
• Penetration Testing: PJPT.
• Cloud Security: CCSK.

Responsibilities

• Develop and maintain a security architecture roadmap that supports the Firm’s ISO initiatives as well as, future objectives.
• Evaluate and recommend technical solutions for endpoint protection, identity and access management (IAM), data loss prevention (DLP), encryption, AI and LLM security, and SIEM.
• Conduct threat modeling and risk assessments on new technologies, applications, and system changes.
• Define and document security reference architectures, patterns, and standards.
• Implement and manage security technologies, EDR, SIEM, PAM, and encryption systems.
• Automate security configurations and compliance checks using scripting, DevSecOps, and AI based tools.
• Support secure configuration baselines across systems and applications.
• Lead or support remediation efforts following vulnerability assessments, pen tests, or audit findings.
• Develop and lead Blue, Red, and Purple team exercises for the teams that support the office of the CIO.
• Ensure architectural designs meet ISO 27001, ISO 27701, ISO 27017 and NIST CSF standards.
• Collaborate with GRC team to map technical controls to compliance requirements and audit evidence.
• Participate in risk assessment and mitigation activities, ensuring that technical risks are documented and tracked.
• Contribute to the firm’s incident response plan design and annual testing.
• Evaluate new threats, vulnerabilities, and emerging technologies relevant to the legal sector.
• Continuously improve detection, prevention, and response capabilities through technology enhancement and automation.
• Monitor key industry and government security advisories for threat actors targeting legal or professional services firms.
• Partner with IT, Legal, and Compliance teams to embed security into system development and vendor processes.
• Provide technical mentorship and architectural guidance to Information Security Analysts and GRC personnel.
• Present complex security concepts to non-technical stakeholders and leadership in clear, business-oriented terms.