Information Security Engineer - Detection and Response
About The Position
Join our Information Security team as an Information Security Engineer – Detection & Response, where you’ll play a critical role in safeguarding the firm by monitoring and responding to security threats, managing and enhancing advanced security technologies, investigating incidents and phishing attempts, and partnering with technical and non‑technical stakeholders to strengthen our overall security posture in a dynamic, fast‑paced legal environment. Alston & Bird is seeking a qualified and dynamic individual for the position of Information Security Engineer who will perform a variety of duties supporting information security including: management and maintenance of security systems, investigate security alerts and reported phishing emails, assisting users with problems related to security systems, participate in threat intelligence organizations, recommend configuration changes for security systems and assist with the selection and implementation of new solutions.
Requirements
- Ability to communicate effectively with technical and non-technical individuals regarding security concerns, problems, and questions
- Solid and broad technical foundation
- Awareness of relevant compliance requirements (ISO 27001, HIPAA, state privacy laws, etc.)
- Ability to multitask and switch focus among multiple different efforts quickly
- Ability to quickly learn new applications and adjust to upgrades to existing applications
- Excellent organizational and self-management skills
- Experience with administration of security systems (vulnerability scanner, endpoint detection and response, SIEM etc.), networking protocols, Microsoft and Linux systems, cloud and mobile technologies
- Minimum of 3 years prior experience in a role focused on operational support is required
Nice To Haves
- Associate or bachelor’s degree is not required but strongly preferred
- Applicable certifications (ISSEP/CISSP, GIAC) strongly preferred
- Previous experience in the legal field is desired
Responsibilities
- Support security operations of the firm
- Administer and maintain the firm’s security systems, such as SIEM, malware analysis, XDR, anomaly detection, vulnerability scanners, anti-virus etc.
- Make recommendations and assist with configuration changes to existing systems to address newly identified vulnerabilities
- Provide security education to users through phishing exercises
- Proactively review security systems for indicators of compromise, violations of policy, and anomalous behaviors
- Assist in investigations of security incidents as needed
- Prepare and maintain documentation of systems managed by the Information Security team.
- Recommend, evaluate, and support security enhancements to management
- Provide evidence for various compliance initiatives when required
- Maintain current knowledge of industry recognized risks and possible security vulnerabilities as well as current security solutions.
- Provide backup support for other members of the Information Security team.
- Support initiatives and special projects of other Information Systems teams as required
- Provide system hardening recommendations
- Assist in troubleshooting of problems of various types
- Support users
- Respond to reports of incidents of compromise and malicious emails
- Support initiatives of the Information Security team
- Maintain current knowledge of industry recognized risks and possible security vulnerabilities as well as current security solutions
- Provide guidance regarding secure application and system configuration
- Resolve security-related calls referred by the Help Center when the calls are beyond the scope of the Help Desk
- Assist with execution of security assessments by third parties
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
Number of Employees
501-1,000 employees
