Morgan, Lewis & Bockius LLP, one of the world's leading global law firms, with offices in strategic hubs of commerce, law, and government across North America, Asia, Europe, and the Middle East, is seeking an Information Security Engineer to be responsible for assisting other team members in the evaluation of information security changes and project strategy to ensure security controls are designed properly, implemented, and operate effectively, during and after the project is completed.
Reporting to the Manager of Information Security Compliance, the Information Security Engineer to assist with compliance of security and privacy controls across the firm. The ideal candidate will be responsible for implementing and maintaining our security systems, identifying vulnerabilities, and ensuring that our data and infrastructure are protected against cyber threats.
Want more jobs like this?
Get Software Engineering jobs in Philadelphia, PA delivered to your inbox every week.
This position will reside in our Philadelphia office and offers a hybrid in-office/remote working schedule.
Instructional/Support Activities Include:
- Design, implement, and maintain security measures to protect systems, networks, and data.
- Serves as an internal information security control subject matter expert to both the IT department and the larger Morgan Lewis community.
- Conduct regular security audits to identify vulnerabilities and perform risk assessments.
- Develop and enforce security policies and procedures.
- Collaborate with IT teams to integrate security measures into all IT operations and development.
- Develops technology requirements for proposed security changes and provides guidance for the delivery of suggested technologies and alternatives across the enterprise.
- Aid in automating security evidence gathering for audits.
- Proactively promotes industry best practices and current technologies to ensure security and privacy solutions appropriately mitigate risk and integrate into the overall business model.
- Monitors current and emerging cyber security trends and technology for possible future integration, especially cloud technologies.
- Assist team in monitoring alerts, tracking down reported events and resolving SOC escalations.
- Evaluates emerging vulnerabilities (zero-day/ out of band), threats and indicators of compromise, responding to service owners with proper recommendations for protection or implementation of mitigating controls.
- Provides on-call after hours support, reviews individual and team assigned helpdesk tickets and requests, responding, and escalating appropriately.
- Aids IT teams in disseminating penetration testing results and identifying remediation tasks or mitigating controls.
Experience/Qualifications:
- Bachelor's Degree and minimum 6 years of hands-on experience with information security technologies or minimum of 3-5 years of endpoint security solutions experience and, equivalent combination of education, experience, and certification in one of the following: CISA, CompTIA Security+, or CISSP
Qualified candidates must apply online by visiting our website at www.morganlewis.com and selecting "Careers."
#LI-Hybrid
#LI-DY1
Morgan, Lewis & Bockius LLP is committed to equal employment opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, veteran status, gender identity, genetic information, or any other characteristic protected by federal, state, or local law.
Pursuant to applicable state and municipal Fair Chance Laws and Ordinances, we will consider for employment qualified applicants with arrest and conviction records.
California Applicants: Pursuant to the California Consumer Privacy Act, the following link contains the Firm's California Consumer Privacy Act Privacy Notice for Candidates which explains the categories of personal information that we collect and the purposes for which we use such personal information. CCPA Privacy Notice for Candidates
Morgan Lewis & Bockius LLP is also an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.
If you are interested in applying for employment with Morgan Lewis and need special assistance or an accommodation to use our website or to apply for a position, please call or email the following contacts:
- Professional Staff positions - 1.888.534.5003 / talent.acquisition@morganlewis.com
Morgan, Lewis & Bockius, LLP reasonably accommodates applicants and employees who need them to perform the essential functions of the job because of disability, religious belief, or other reason protected by applicable law. If you believe you need a reasonable accommodation during the application process, please contact Talent Acquisition at talent.acquisition@morganlewis.com.