Level 1 Security Analyst
About the position
A&O Shearman is a global industry-leading law firm with nearly 50 offices in 29 countries, specializing in English law, US law, and the laws of dynamic markets. The firm is dedicated to providing exceptional opportunities for its employees, allowing them to work on significant deals and disputes that can shape the future. The Information Security Analyst will play a crucial role in the firm's Information Security team, responding to daily security alerts and performing active threat monitoring and hunting for advanced threats. This position involves collaboration with various teams to secure and maintain the firm's information infrastructure, contributing to overall information security and compliance initiatives. The Analyst will be an integral part of the cyber threat hunt initiative, proactively mining security data to identify potential threats such as system compromises and data exfiltration. Additionally, the Analyst will assist in security alert research and development, ensuring the firm stays current with the evolving threat landscape. Responsibilities include participating in the firm's vulnerability management program, which involves maintaining and managing hardware and software that secures the firm's networks and systems, as well as analyzing and troubleshooting security issues. The role requires a strong foundational understanding of computing and networking, experience in security incident response, and a deep interest in security. The Analyst will also be responsible for monitoring cloud infrastructure for cyber threats and potential misconfigurations, implementing automation technologies to optimize security operations, and coordinating with the Security Operations Center (SOC) to investigate security events and incidents. This position includes being part of an after-hours on-call rotation and may require travel to New York City as business needs arise.
Responsibilities
? Identify, review, and respond to security events in conjunction with the rest of the information security team.
,
? Serve as the first line of response to security events and alerts and stay abreast of current threats.
,
? Participate in the design, development, and management of security logging and SIEM programs for the firm's computing systems.
,
? In conjunction with the SOC, continually augment a successful security monitoring program as the threat landscape continues to evolve.
,
? Monitor cloud infrastructure for cyber threats and potential misconfigurations.
,
? Assist in implementing and utilizing automation technologies to optimize security operations and response.
,
? Coordinate with the SOC and various teams to investigate security events/incidents.
,
? Act as a key member of the Information Security incident response team.
,
? Work with cross-functional teams to ensure any necessary fixes are implemented and provide input into the incident write-up and postmortem process.
,
? Perform daily operations of information technology security operations, including responding to alerts and events.
,
? Perform research and analysis on an ongoing basis to ensure the Information Security team remains up to date regarding the latest threats, and all other forms of Information Security events.
,
? Provide concise summaries of issues that can be conveyed to the business, as appropriate.
,
? Other duties and responsibilities as assigned.
Requirements
? Associates' degree in Computer Science or above or equivalent experience.
,
? 1+ years of hands-on technical experience with information security and technology.
,
? Strong foundational skills in basic computing and networking.
,
? Experience in security incident response and triaging security events.
,
? A deep interest in security and a desire to grow technically.
,
? Strong problem-solving skills.
,
? Excellent time management skills and an ability to manage multiple tasks concurrently.
Nice-to-haves
Benefits
? Competitive salary range of $80,000 - $109,000 per year.
,
? Opportunities for professional development and training.
,
? Commitment to diversity, equity, and inclusion in the workplace.
Apply Now
A&O Shearman is a global industry-leading law firm with nearly 50 offices in 29 countries, specializing in English law, US law, and the laws of dynamic markets. The firm is dedicated to providing exceptional opportunities for its employees, allowing them to work on significant deals and disputes that can shape the future. The Information Security Analyst will play a crucial role in the firm's Information Security team, responding to daily security alerts and performing active threat monitoring and hunting for advanced threats. This position involves collaboration with various teams to secure and maintain the firm's information infrastructure, contributing to overall information security and compliance initiatives. The Analyst will be an integral part of the cyber threat hunt initiative, proactively mining security data to identify potential threats such as system compromises and data exfiltration. Additionally, the Analyst will assist in security alert research and development, ensuring the firm stays current with the evolving threat landscape. Responsibilities include participating in the firm's vulnerability management program, which involves maintaining and managing hardware and software that secures the firm's networks and systems, as well as analyzing and troubleshooting security issues. The role requires a strong foundational understanding of computing and networking, experience in security incident response, and a deep interest in security. The Analyst will also be responsible for monitoring cloud infrastructure for cyber threats and potential misconfigurations, implementing automation technologies to optimize security operations, and coordinating with the Security Operations Center (SOC) to investigate security events and incidents. This position includes being part of an after-hours on-call rotation and may require travel to New York City as business needs arise.
Responsibilities
? Identify, review, and respond to security events in conjunction with the rest of the information security team.
,
? Serve as the first line of response to security events and alerts and stay abreast of current threats.
,
? Participate in the design, development, and management of security logging and SIEM programs for the firm's computing systems.
,
? In conjunction with the SOC, continually augment a successful security monitoring program as the threat landscape continues to evolve.
,
? Monitor cloud infrastructure for cyber threats and potential misconfigurations.
,
? Assist in implementing and utilizing automation technologies to optimize security operations and response.
,
? Coordinate with the SOC and various teams to investigate security events/incidents.
,
? Act as a key member of the Information Security incident response team.
,
? Work with cross-functional teams to ensure any necessary fixes are implemented and provide input into the incident write-up and postmortem process.
,
? Perform daily operations of information technology security operations, including responding to alerts and events.
,
? Perform research and analysis on an ongoing basis to ensure the Information Security team remains up to date regarding the latest threats, and all other forms of Information Security events.
,
? Provide concise summaries of issues that can be conveyed to the business, as appropriate.
,
? Other duties and responsibilities as assigned.
Requirements
? Associates' degree in Computer Science or above or equivalent experience.
,
? 1+ years of hands-on technical experience with information security and technology.
,
? Strong foundational skills in basic computing and networking.
,
? Experience in security incident response and triaging security events.
,
? A deep interest in security and a desire to grow technically.
,
? Strong problem-solving skills.
,
? Excellent time management skills and an ability to manage multiple tasks concurrently.
Nice-to-haves
Benefits
? Competitive salary range of $80,000 - $109,000 per year.
,
? Opportunities for professional development and training.
,
? Commitment to diversity, equity, and inclusion in the workplace.
Apply Now