Senior Information Security Engineer

Back Click Here to Apply

Title :

Senior Information Security Engineer

Location :

Washington, D.C.

Job Summary

Gibson Dunn is a leading global law firm, advising clients on significant transactions and disputes. Our exceptional teams craft and deploy creative legal strategies that are meticulously tailored to every matter, however complex or high-stakes. The firm’s work is distinguished by a unique combination of precision and vision.

Based in any of our US offices, the Senior Information Security Engineer implements, manages and maintains the firm’s information security infrastructure and responds to and investigates information security incidents to closure or escalation.  The Senior Information Security Engineer is a hands-on technologist, serving as the technical lead and subject matter expert for the implementation, administration, maintenance and troubleshooting of all information security technologies used by the firm to assure the confidentiality, integrity and availability of firm data and information systems consistent with good practices, industry standards and applicable regulations.

The scope of this position is firm wide and requires a thorough understanding of all the IT systems the firm uses and how those systems are secured.

The Senior Information Security Engineer advises the Information Security Team on emerging vulnerabilities and newly introduced risks to firm systems, and takes a proactive approach in continually assessing the security of firm systems throughout their lifecycle, providing recommendations for enhancing security and adapting to new threats and vulnerabilities.

This role reports to the Manager of Information Security Operations.

Responsibilities include:

  • Excellent customer service skills and sense of urgency when resolving issues
  • Provide technical leadership for all information security platforms
  • Perform on-going threat analysis and research
  • Strong knowledge of information security principles and practices
  • Serve as the subject matter expert (SME) for information security platforms where assigned as the primary engineer
  • Play a significant role in responding to and containing information security related incidents
  • Actively participates in the vulnerability management program, including pre-deployment risk and compliance assessments
  • Understanding of advanced security concepts and their application
  • Experience with software and security architectures
  • Conduct regular technical risk assessments of systems and infrastructure
  • Oversee and directly participate in the installation, configuration, and management of information security technologies
  • Manages information security projects as assigned
  • Play a role in the selection and architecture of new information security technologies
  • Analyze and interpret network packet captures
  • Actively participate in the maintenance and development of the Information Security Management System
  • Assist in the development and knowledge transfer to all team members, as well as other IS or firm groups
  • Promote a culture of information security across all business units
  • Maintain current security certifications and attend industry seminars and relevant continuing education events

Qualifications

  • Ability to relate to non-technical users in user-friendly language
  • Ability to understand technical implications of security threats
  • Ability to manage multiple concurrent objectives or activities, and effectively make judgments in prioritizing and time allocation in a high-pressure environment
  • Ability to gauge one’s strengths and limitations
  • Ability to deal with changes and adapt to a changing environment
  • Must demonstrate the ability to maintain strict confidentiality of the firm’s internal and personnel affairs
  • Ability to work well with others, harness different skills and experience, and build a strong sense of team spirit
  • Highly self-motivated and directed
  • Ability to work in a multi-office environment and willingness to travel to other offices as required
  • Ability to work effectively in a culturally and educationally diverse environment
  • Strong written and oral communication skills
  • Organized, responsive and highly thorough problem solver
  • Flexible work schedule to troubleshoot escalated issues out of hours and apply production changes where needed

Experience

  • University degree in a technology related discipline or 3 years of relevant experience
  • 5 years of experience in dedicated information security roles
  • 3-5 years of experience in information technology in an area such as; networking, desktop engineering, programming or systems administration
  • Strong working knowledge of IDS/IPS, firewalls, web application firewalls and other network security technologies.
  • Strong working knowledge of host-based information security technologies
  • Strong working knowledge of Splunk and Splunk Enterprise Security is desirable
  • Strong knowledge of Incident Analysis and Response
  • Strong knowledge of security implications involving a variety of technologies including but not limited to; Microsoft, Cisco, Unix/Linux and other market leaders in technology solutions, including mobile devices.
  • Strong working knowledge of TCP/IP protocols
  • Ability to interpret network packet captures (PCAP)
  • One or more of the following certifications; CISSP, SSCP, CISSP, CSXP, GSEC

 

Gibson Dunn will consider for employment qualified Applicants with Criminal Histories in a manner consistent with the requirements of local law.

 

Compensation & Benefits:

The annual compensation range for this position is $130-210k. The salary offered within this range will depend upon qualifications and other operational considerations.

Benefits offered for this position include health care; retirement benefits; paid days off, including sick time, and vacation time; parental leave; basic life insurance; Flexible Spending Accounts; as well as discretionary, performance-based bonuses.

Click Here to Apply

GIBSON DUNN & CRUTCHER LLP IS COMMITTED TO THE PRINCIPLES OF EQUAL EMPLOYMENT OPPORTUNITY FOR ALL PARTNERS, EMPLOYEES AND APPLICANTS AND, IN ACCORDANCE WITH THE APPLICABLE FEDERAL AND STATE LAWS, DOES NOT DISCRIMINATE ON THE BASIS OF SEX, RACE, CREED, COLOR, RELIGION, MATRICULATION OR POLITICAL AFFILIATION, NATIONAL ORIGIN, ALIENAGE OR CITIZENSHIP STATUS, ANCESTRY, AGE, MARITAL STATUS OR PARTNERSHIP STATUS, FAMILY RESPONSIBILITIES, DISABILITY, MEDICAL CONDITION, PERSONAL APPEARANCE, GENETIC INFORMATION, PREDISPOSING GENETIC CHARACTERISTICS, SEXUAL ORIENTATION, MILITARY STATUS, STATUS AS A VICTIM OF DOMESTIC VIOLENCE, STALKING AND SEX OFFENSES, ARREST OR CONVICTION RECORD, OR ON ANY OTHER BASIS PROHIBITED BY LAW.