Security Engineer
Pilsbury Law

Job Info

---

Nashville, Tennessee

Job Description

We are seeking a Security Engineer to play a pivotal role in designing and implementing robust security architectures that adhere to regulatory requirements and safeguard our data assets. Collaborating closely with fellow engineers and our enterprise security operations team, you will contribute to the development of compliant security solutions aligned with our business security strategy. This position will play a vital role within IT, providing support and maintenance of the infrastructure environment, focusing on vulnerability management and security reporting.

Principal Responsibilities

Key responsibilities of this role include, but are not limited to:

• Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration based on industry-standard best practices.
• Plan and implement new processes and procedures.
• Deploy, manage, and maintain all security systems and their corresponding or associated software.
• Perform security assessments, identify gaps in existing security architecture, and recommend changes or improvements.
• Enhance security architecture elements to mitigate threats.
• Create solutions that align enterprise security architecture frameworks and standards (e.g. ISO27001 & NIST 800-171) with overall business and security strategy.
• Participate in risk assessments for new technologies and projects.
• Assist in developing a disaster recovery and business continuity plan. Identify and prioritize system functions required to promote continuity and availability of critical business processes such that in the circumstance of system failure critical business functions are restored or recovered promptly.
• Document security requirements and controls for protecting information, systems, and technology assets.
• Recommend, schedule, and perform security improvements, upgrades, and/or purchases.
• Conduct research on emerging products, services, protocols, and standards in support of security enhancement and development efforts.
• Provide input on security requirements to be included in request for proposals (RFPs), statements of work (SOWs), and other procurement documents.
• Perform system backups.
• Provide on-call security support to end-users.
• Stay current with emerging security alerts and issues.
• Performs other duties as assigned.

Qualifications and Education Requirements

• Minimum of 3 years of experience in Information Technology.
• Law industry experience preferred.
• CISSP, CISA, CISM, or other relevant security related designation(s) appreciated, but not required.
• Knowledge of computer networking concepts and protocols (e.g. TCP/IP, DNS) and network security methodologies.
• Knowledge of network access, identity, and access management (e.g. public key infrastructure, Oauth, OpenID, SAML, SPML).
• Knowledge of capabilities and applications of network equipment including routers, switches, servers, transmission media, and related hardware.
• Knowledge of remote access technology concepts.
• Knowledge of application firewall concepts and functions (e.g. single point of authentication enforcement, data anonymization, DLP scanning, SSL security).
• Work experience in cybersecurity designs for systems, networks, and multi-level security requirements or requirements for processing multiple classification levels of data.
• Knowledge of risk management processes and experience in conducting risk assessments.
• Knowledge of identity and access management methods.
• Knowledge of Varonis tools preferred.
• Experience with Windows, Unix, and Linux operating systems.
• Knowledge of business continuity and disaster recovery operation plans.
• Strong analytical and problem-solving skills capable of managing projects that drive business objectives.
• Exceptional written, oral, and interpersonal communication skills.
• Ability to work in team environments and to negotiate with multiple stakeholders.
• Ability to meet tight deadlines and to prioritize tasks.
• Innovative thinker who is self-directed and resourceful.

Pillsbury Winthrop Shaw Pittman LLP is an Equal Opportunity Employer.

If you require an accommodation in order to apply for a position, please contact us at PillsburyWorkday@pillsburylaw.com .

This job has expired.