Senior Security Engineer - REMOTE

Los Angeles, CA 90067-4164

Employment Type: Direct Hire Position Type: Tech Support Job Number: 24610 Rate DOE: $160,000 to $180,000

Job Description

Large law firm seeks a Senior Security Engineer with 5 years of experience to work alongside the Service Delivery team and IT vendors. Engineer will assist the Chief Information Security Officer and Director of Enterprise Architecture & Service Delivery  with installation and configuration of security related systems; assist the security posture of various platforms and applications (Zero Trust), Group Policy, and zero-day vulnerabilities and across all on premises and cloud related systems; provide first-line and on-call support for security incident escalation and remediation 24x7, 365; train junior team members in security tools, security report preparation, and resolution of security issues; cross train engineers (Desktop Analysts, 2nd tier, SD Team); report unresolved network security exposures, misuse of resources or noncompliance situations using defined escalation processes; develop and maintain documentation for security systems and procedures; and create and maintain security related documentation as directed by management.  Responsible for AD, PIM/PAM, LAPs, and associated technologies for privilege management; drive Zero Trust design with CISO and Director of EA&SD; perform normal and exceptional processing of user access and change requests, escalating requests and following Incident Management and Change Management guidelines; participate in and lead preparing, planning, and testing Disaster Recovery initiatives; partner with CISO and Director of EA&SD on the continuous improvement of all DR/BC systems, given the results from testing these systems and recalibrate and document MTD, RPO, and RTP.
Engineer will respond, resolve, or escalate reported security incidents; monitor system logs, SIEM tools, and network traffic for unusual or suspicious activity, interpret activity, and make recommendations for resolution; investigate and resolve security violations, provide postmortem analysis and lead post incident review determining necessary changes to process or systems that would prevent such incidents from reoccurring; feed Known Problem and Incident Response Management policies and procedures; manage and monitor external Security Operation Centers to ensure appropriate configurations are maintained and incidents remediated; partner in Service Delivery projects to develop, plan, and implement security configuration items; lead 3rd party review of firewalls and partner with Senior Network Engineer; partner with SD teams, installing and testing new security software and technologies; and support data encryption deployments.

Additional duties include supporting the Manager of Governance, Risk and Compliance, gathering security audit related artifacts for Configuration Item identification; maintaining compliance related central repository to store artifacts in a central location; eliminating the need for repeat requests tied to audits; coordinating remediation required by audits and document exceptions; leading vulnerability management scanning, reporting and remediation, partnering with the Service Delivery (SD) team and associated IT vendors; leading penetration testing for all platforms partnering with the vendor and SD team to complete posture remediation; responsible for endpoint vulnerability clients; utilizing Microsoft Defender for Endpoint policies, Endpoint control, Microsoft E5 continuous improvement, vulnerability endpoint clients, DNS and Secure Web Gateway; researching threats and vulnerabilities, mitigating threats and coordinating remediation across Service Delivery associated platforms; collating security incident and event data to produce monthly exception and management reports; and working with the Supervisor of Help Desk and Process to contribute to monthly IT operational reporting.

Hours are 9:00 a.m. to 5:30 p.m.

Position is remote with ability to attend infrequent onsite meetings

Job Requirements

A bachelors degree in Computer Science is preferred.  Senior Security Engineer must have strong knowledge of on premises and Cloud (primarily Azure/MS E5 related platforms); proven experience developing, operating, and maintaining security systems; and extensive knowledge of Azure, Microsoft 365 E5, Sentinel, Microsoft Defender for Endpoint, Tenable, Varonis, FortiGate, and Cisco Firewall, including operating system, database security. Will have proficiency in networking technologies, network security, and network monitoring solutions; and knowledge of security systems, including anti-virus applications, content filtering, firewalls, authentication systems, and intrusion detection and notification systems. Candidate will have security certifications, such as CISSP, CISM, CCNA-S, CISA, GIAC. Experience with scripting automation using Python, Bash & PowerShell is required. Proven experience building security reference architecture for on premises, all-in-cloud deployments, and hybrid scenarios; implementation experience with enterprise security solutions such as Endpoint Protection (DLP/Allow listing/HIPS), WAF, IPS, Anti-DDoS, and SIEM/FIM; and in-depth knowledge of security protocols and principles are needed. Exceptional communication and critical thinking skills and ability to solve complex issues are a must. 

Additional Information

Kent Daniels and Associates is a legal staffing service specializing in the placement of temporary, temp-to-hire and full-time regular employees in law firms and corporate legal departments in Los Angeles, San Francisco, San Diego, and nationwide. We staff all positions in law firms and all three shifts - day, swing and graveyard. Kent Daniels was established in 1986, giving us 37 years of experience finding candidates legal jobs in law firms nationwide. Applicants will be considered in a manner consistent with federal, state, and local requirements as applicable. Salary ranges are provided in good faith at the time of posting and represent the compensation KDA/our clients are willing to pay for the advertised position. Exact compensation will be determined by a wide range of factors including but not limited to experience level, education/training, relevant skills and location.
Apply Online
Apply with LinkedIn Apply with Facebook Apply with Twitter

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.