Mayer Brown LLP is a leading global law firm with offices in 26 key business centers across the Americas, Asia, Europe and the Middle East. We are a collegial, collaborative and diverse firm where highly motivated individuals with an unwavering commitment to excellence receive the opportunity, support and development they need to grow, thrive and realize their greatest potential.
If you enjoy working with team members whose defining characteristics are achievement, initiative, professionalism, responsiveness and adaptability, you may be the person we are seeking to join our Information Technology department, in Chicago, as a Global Security Engineer.
The Global Security Engineer will implement and maintain various technologies to ensure the security of the Firm’s systems. Will be responsible for providing technical leadership for strategic projects and initiatives on the security roadmap, as well as participating in more general network security and architectural efforts. Will also collaborate with other engineers and departments to apply and support best practices for security, server building, change management, account management, documentation, data loss prevention and user experience management.
Ensure that Mayer Brown, LLP has a secure architecture for authorization and authentication internally, as well as business to business
Ensure that all security risks are managed and communicated clearly and effectively
Develop and maintain all documentation related to Global Security Team operations and functions
Ensure that information is openly communicated and shared with other members of the team
Ensure that change controls are adhered to and communicated to the partners and staff
Analysis of data collected from established Data Loss Prevention system(s) and methods to ensure compliance with Firm policies
Manage DLP systems and processes as required
Assist in defining DLP policies to protect firm and client assets
Define incident response workflow for DLP positive hits
Develop metrics for measuring effectiveness of the DLP solution
Maintain and coordinate incident response planning, assisting in execution of the incident response plan as needed
Identify and communicate to management the cause of all information security incidents, making recommendations as to how the specific incidents can be mitigated in the future
Control access to the Firm’s Information Systems and related security configuration
Develop, implement, operate and maintain in-house security tools
Participate fully in all efforts to develop security policies to meet client or other compliance requirements
Ensure monitoring and alert notifications are implemented in accordance with the business needs
Assist in the development and authorization process of all new IT policies introduced, ensuring that the necessary security audits and tests are carried out prior to being introduced into production
Manage the review of the security program by an approved independent party and ensure any gaps are addressed
Monitor methods of physical data security, such as the storage of backup media, and propose/implement any changes where necessary
Educate Mayer Brown’s employees in the benefits of security to the organization, themselves and their working environment
Collaborate with other staff in IT to ensure that security standards are developed and enforced in implementing or upgrading firm technology
Perform investigations as requested by Human Resources, Information Technology or General Counsel executing searches and producing output as required by the Firm
Bachelor’s degree or an equivalent combination of education and/or experience may be considered in lieu of the degree when the experience is closely related to the functions of the job
CISSP or CEH certification a plus
3+ years of experience in an Information Security department
Excellent working knowledge of CISSP required
Working knowledge of networking and security standards required
Good documentation skills and authentication methods experience required
Working knowledge of the ISO 27002 standard preferred
Working knowledge of a Microsoft Exchange email environment preferred
DLP/Information Security operational analysis experience using GTB, or equivalent enterprise solutions ( Digital Guardian, Symantec, Forcepoint, McAfee, etc) a plus
Familiarity with DLP incident handling, remediation, and reporting is helpful
Ability to weigh business needs against security concerns and articulate issues to customers and management
We offer competitive compensation and comprehensive benefits, including medical/dental/vision/life/and AD&D insurance, 401(k) savings plan, back-up childcare and eldercare, generous paid time off (PTO), as well as opportunities for professional development and growth. EOE m/f/d/v/so
About Mayer Brown LLP
Mayer Brown LLP is a leading global law firm with offices in key business centers across the Americas, Asia, Europe and the Middle East. The firm takes a cross-practice, cross-border approach to solving the needs of its clients through the seamless integration of its lawyers across the globe.
Mayer Brown is noted for its commitment to client service and its ability to solve the most complex and demanding legal and business challenges worldwide.