Senior Information Security Engineer

LEWIS & ASSOCIATES  is a leader in providing Legal and Administrative staffing services.  We are a sole source staffing firm giving you convenient ways of working with us. We make every effort to ensure the highest degree of professionalism and integrity in the staffing process. We understand the demanding role of recruiting to source the highest level of legal professionals while incorporating proven, innovative, and successful recruiting techniques.

An international law firm headquartered in New York is seeking a Senior Information Security Engineer to become an integral part of an Information Services department within an Amlaw 20 firm. Reporting to the Manager of Information Security, the Senior Information Security Engineer plays a vital role in protecting the global information enterprise. As part of the Information Security Group, the Senior Information Security Engineer collaborates with a multi-disciplinary team of technology professionals to secure the firm’s internal and external information infrastructure. This includes the on-going maintenance and management of hardware and software that secures the firm's networks and systems, analyzing and troubleshooting problems and monitoring for potential security problems or incidents.

Under the supervision and guidance of the Manager of Information Security, the successful candidate shall;

• Defend the information enterprise in accordance with established policies, procedures, guidelines, and good practices.
• Implement, manage, and maintain network firewalls, intrusion prevention systems, messaging security gateways, and Internet security proxies.
• Manage endpoint security platforms, including Host Intrusion Prevention and Anti-virus.
• Manage projects as required.
• Generate documentation relevant to information security solutions.
• Actively participate in information security reviews and audits.
• Work collaboratively with other Information Security and Information Services team members.
• Synthesize information generated from logs, SIEM, and other sources to effectively respond to emerging threats.
• Participate as a member of the firm’s Incident Response Team.
• Work directly with end-users.
• Other duties as assigned by the Manager of Information Security

REQUIREMENTS:

• Minimum 8 years of total information technology experience, consisting of the following:
• 3-5 years of general information technology experience in one or more of the following areas – Systems Administration, Network Administration, Systems Engineering, Network Engineering.
• 5+ years of dedicated information security experience, where responsibilities include managing and maintaining firewalls, Internet proxies, intrusion prevention systems and messaging security systems.
• Demonstrated expertise with the following technologies:
• Windows Server, Workstation, and Linux operating environments
• Network IPS platforms
• Enterprise firewall products
• Web security gateways
• Security information and event management technologies
• Ability to translate security policies and procedures into technical architecture and/or configurations.
• Strong organizational, problem-solving, written and communication skills.
• Ability to quickly learn new technologies and concepts and apply that knowledge effectively.
• Ability to work independently with minimal supervision.

PREFERRED QUALIFICATIONS:

• • One or more of the following information security certifications are preferred: CISSP; SSCP; GCED; GCFW
  • One or more of the following certifications are preferred: CCSP (Cisco Certified Security Professional); CCSA (Checkpoint Certified Security Administrator); Websense Certified WSGA Professional
  • Bachelor of Science or a Technical Degree from an accredited institution is preferred but not required provided minimum experience requirements are met.
  • Experience managing endpoint security desirable, but not required.