Security Analyst
Job Description
Security Analyst position at Goodwin Procter LLP in Los Angeles, CA (onsite), offering USD 103,700 - 178,900 per year.
Responsibilities
- Identify emerging threats to IT systems and develop rules to detect, prevent, and remediate.
- Expand security auditing and ensure ongoing proper operation of security tooling.
- Provide internal information security consulting for business and IT initiatives, including identifying, documenting, and implementing secure configurations and architectures.
- Assist in creating and maintaining security policies, standards, guidelines, and other documentation for IT and business audiences.
- Maintain monthly security metrics to ensure service levels are met.
- Support the incident response lifecycle from identification through triage, remediation and communications during security incidents and malware infections.
- Monitor for new vulnerabilities, malware, breaches, and industry news with potential impact on the firm.
- Oversee vulnerability management, including identification, rating, remediation, and monitoring.
- Provide coverage for approvals and notifications to other IT groups for time sensitive operations such as firewall changes, password reset approvals, and application vetting.
- Assist in automating security processes, integrating security platforms, and building tools.
- Continuously review access controls by investigating improper access, revoking access, reporting violations, monitoring requests, and recommending improvements.
- Provide technical leadership for incident response capabilities, including malware analysis, breach investigations, and remediation efforts.
- Create internal training materials and resources to advance information security across the firm.
- Stay current with industry trends and recommend improvements to the firm’s technology landscape.
- Participate in or manage cross functional projects to implement new or updated technology.
- Cross-train IT staff in security best practices and the use or maintenance of security technologies.
- Manage small projects effectively.
- Demonstrate professionalism and high quality service to internal teams, clients, and vendors via multiple channels.
- Share information security knowledge with other IT staff and business units.
- Take on additional responsibilities as assigned.
Requirements
- Bachelor’s Degree or equivalent
- Minimum of three years of experience as an Information Security Analyst
- CISSP or equivalent preferred
- Strong expertise in IT security frameworks and solutions
- Active participation in IT security forums inside or outside of the legal industry
- Excellent technical communication skills and ability to convey complex information across the organization
- Operating knowledge of security configurations for one or more of the following products:
- SIEM: Splunk, Sentinel
- Firewalls: Cisco, Palo Alto Networks
- IDS/IPS: Cisco, Palo Alto Networks
- NAC: Cisco, Aruba
- Vulnerability Management: Tenable, Rapid7
- Programming Languages: Python, PowerShell, Node.js
- Security Automation: LogicApps, Power Automate, Splunk
- Cloud platforms: Azure, AWS
- Operating systems: Windows, Mac, Linux
- Browser security: Edge, Chrome
- Ability to learn new technologies and security features
- Excellent analytical, problem solving and troubleshooting skills
- Excellent organizational, interpersonal, communication and customer service skills
- Knowledge of ITIL Service Management principles
- Travel required: 1 week per quarter
Technologies
- Splunk
- Sentinel
- Cisco
- Palo Alto Networks
- Aruba
- Tenable
- Rapid7
- Python
- Powershell
- Node.js
- LogicApps
- Power Automate
- Azure
- AWS
- Windows
- Mac
- Linux
- Edge
- Chrome
Benefits
- Health, dental, and vision insurance
- Life and disability insurance
- Retirement and savings plan
- Emergency back-up child and adult care
- Paid vacation, sick time off, and holidays
- Professional development and career advancement opportunities
- Employee recognition and reward programs
- Employee wellness and assistance programs
- Employee discounts and perks