At Seyfarth, we understand that great people are the key to our success, and we provide the opportunities to match. If you join us, you’ll work with state-of-the-art technology in a friendly and professional environment, and we will continue to invest in your professional development. If you want the freedom to grow at a firm that is invested in your future, keep reading.
As the IT Security and Risk Manager you will be responsible for managing and securing the firm's technology and information by designing, implementing, and enforcing security controls, safeguards, policies and procedures. You will also be responsible for the assessment of risks, implementing security, educating the firm through training and education, while coordinating closely with other members of the IT management team and staff on security issues, compliance and preparing and enforcing policies.
On any given day, you will interface with clients, both internal and external as well as assist with the security questionnaires and audit letters. You will also:
Manage the firm’s security team (GRC and TDM)
Manage the resources to support IT security goals and objectives to identify risk, recommend strategies to reduce overall firm risk.
Reviewing, implementing, updating and documenting framework for firm wide information technology security policies and procedures, standards and operating guidelines.
Manage the firm’s security incident, detections and response systems, processes and procedures; manage the investigation and response to security incidents.
Continuously validate the firm against policies, guidelines, procedures, regulations, laws to ensure risk mitigation and compliance where applicable.
Oversee the security training and awareness program.
Ensure that security audits, tests, and reviews are reviewed coordinated, conducted and on a scheduled basis.
Ensure that security technology and practice requirements are integrated into the continuity planning.
Manage regular internal and third-party security audits; manage regular penetration tests, vulnerability scans, etc.
Work with the Director of IT, maintain budgets for security operations and monitor associated expenses.
Bachelor’s degree in Information Systems, Information Technology, or related field or experience; 5+ years managing the security environment in a team
Proven experience and expert knowledge of Cisco firewalls and other Cisco systems and applications.
Proven Experience with MSSP’s (e.g., Dell Secureworks).
Experience implementing security technologies, controls, processes and procedures in both technical and leadership capacities, which includes a minimum of 8 years’ experience administering the security technologies in a medium to large size multisite organization.
Experience analyzing information systems using packet analysis tools, intrusion prevention software, forensics tools, and vulnerability assessment software.
Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and exploit development.
Experience coordinating the security and compliance aspect of Audit and RFP letters and requests.
Experience with implementing the NIST Cyber Security Framework.
Experience and understanding with international legal and regulatory requirements (e.g., GDPR).
WHAT WE PROVIDE:
Seyfarth provides competitive salary and benefits at all levels, and our culture embraces the entrepreneurial spirit of its professionals like no other firm. Our allied professionals are a collaborative team, helping to define the unique client experience offered by the firm. We understand that it takes more than attorneys to build a successful legal practice; everyone participates in our commitment to excellence.
MORE ABOUT SEYFARTH:
With more than 900 lawyers across 17 offices, Seyfarth Shaw LLP provides advisory, litigation, and transactional legal services to clients worldwide. Learn more about The Seyfarth Experience at www.seyfarth.com/careers/.
Seyfarth Shaw is committed to equal employment opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, military and veteran status, gender identity or expression, genetic information, change of sex or transgender status, genetic information or any other basis protected by federal, state or local law.
To achieve our goal of equal opportunity, Seyfarth Shaw maintains an affirmative action plan through which it makes good faith efforts to recruit, hire and advance in employment qualified minorities, females, individuals with disabilities and protected veterans. If you would like more information about your EEO rights as an applicant under the law, please click EEO is the LAW and the Supplement poster through the followinglink:https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf
Seyfarth is an EO Employer –M/F/Veteran/Disability/Sexual Orientation/Gender Identity.