The Security Engineer, under the direction of the Director of Security Engineering and Operations, is responsible for managing the firm’s information security systems and processes, assuring enforcement of security policies, managing the information security threat lifecycle, analyzing and responding to security events escalated by the Security Operations Center (SOC) and coordinating actions to limit risks identified through our automated systems. The position is also accountable for providing expertise and support in the areas of security engineering, incident response and risk management. The candidate is expected to understand the information security lifecycle and how to apply a disciplined approach to security that takes the business needs of the firm into account.
Provide subject matter expertise in information security as it relates to networks and systems
Manage the Wilson Sonsini Goodrich & Rosati security technology including but not limited to: anti-virus, vulnerability scanning, intrusion detection, content filtering, and insider threat systems
Review security events from all monitoring environments not integrated with the firm SIEM, and those events escalated by the SOC, on a daily basis, and follow defined incident response processes in their analysis and reporting
Coordinate with appropriate parties to ensure the timely deployment of operating system and application security patches, deployment of security applications and currency of security application patch levels
Monitor appropriate venues for threats to the security of the Wilson Sonsini Goodrich & Rosati environment. Provide notification to all impacted parties related to the actions needed to mitigate threats and manage the threat lifecycle in totality
Manage and lead evaluations of the firm’s environment by external 3rd parties. Produce recommendations that integrate any findings with the business needs of the firm
Maintain knowledge of the information security needs of firm clients and implement measures to satisfy those requirements in the most efficient manner
Keep abreast of emerging security technologies and discipline developments. Make appropriate recommendations that meet the firms needs
Design and build operational environments that scale to meet the needs of our security products and assure appropriate reliability
Support general troubleshooting related to information security tasks and provide support to end users as needed
Provide other teams with security consulting services, including responding to requests for additional information and assisting with specific projects
Must be able to communicate clearly and effectively with people from both technical and non-technical backgrounds
Knowledge and experience with varying information security processes and tools
Ability to identify security technology risks
Ability to visualize, plan and execute any areas of process improvement that increase the efficiency and delivery of our security capabilities Extensive knowledge of TCP/IP networking
Extensive understanding of the cyber kill-chain
Experience managing information security platforms
One or more of the following certifications: GIAC, CISSP, CISM, CEH, CIPP
College degree required, with at least 5 years of experience in Information Security
Experience working in a law firm or professional services firm environment is a plus
SPECIFIC SKILLS REQUIRED
Expertise in the following technologies: Splunk, Sophos AV, Palo Alto Firewalls, Carbon Black Defense, SourceFire, zScaler
Experience with wireless security, network monitoring, network design, windows desktop/server security, database security, routing protocols and incident management
About Wilson Sonsini Goodrich & Rosati, PC
Wilson Sonsini Goodrich & Rosati is the premier legal advisor to technology, life sciences, and growth enterprises worldwide, as well as the venture firms, private equity firms, and investment banks that finance them. We represent companies from entrepreneurial start-ups to multibillion-dollar global corporations at every stage of development. The firm's attorneys collaborate across a comprehensive range of practice areas and industry groups to help the management, boards of directors, shareholders, and in-house counsel of our clients address their most pressing challenges and pursue their most promising opportunities.
The firm is nationally recognized for providing high-quality services to address the legal solutions required by its enterprise and financial institution clients. Our services include corporate law and governance, public and private offerings of equity and debt securities, mergers and acquisitions, securities class action litigation, intellectual property litigation, antitrust counseling and litigation, joint ventures and strategic alliances, technology licensing and other intellectual property transactions, tax, and employee benefits and employment law, among oth...er areas.
Our clients are companies and other entities that compete in rapidly developing and innovative industries, including the biotech, communications, digital media, energy, financial services, medical devices, software and other sectors.
Wilson Sonsini Goodrich & Rosati has offices in Austin; Beijing; Boston; Brussels; Hong Kong; London; Los Angeles; New York; Palo Alto; San Diego; San Francisco; Seattle; Shanghai; Washington, D.C.; and Wilmington, DE.