IT Security Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

ZwillGen · 5 hours ago

IT Security Engineer

positionWashington, DC
timeFull-time
remoteHybrid
senioritySenior Level
money$130K/yr - $170K/yr
date5+ years exp

ZwillGen is a boutique law firm that represents major technology companies on various Internet-related legal issues. They are seeking an IT Security Engineer to implement and maintain security measures to protect sensitive data, conduct security assessments, and ensure compliance with legal requirements.

Legal

Responsibilities

Conduct regular security assessments, vulnerability testing, and risk analysis to identify potential threats to the firm’s IT systems. Recommend and implement appropriate risk mitigation strategies
Primary contact for third party audits of the Firm’s security practices in connection with potential certifications (ISO Certification)
Develop and maintain firm incident response plans and corporate security policies and procedures. Lead investigations of security incidents and respond promptly to security incidents, minimizing the impact on the firm’s operations. Conduct regular IRP testing
Ensure compliance with relevant legal and regulatory requirements (e.g., CCPA, GDPR, HIPAA). Develop, update, and enforce security policies and procedures tailored to the law firm environment
Work with external teams (SOC, EDR vendors) to continuously monitor network traffic, security logs, and alerts for suspicious activity. Generate and present regular reports on the security status to senior management
Manage and deliver security awareness training for staff, promoting best practices and reducing the risk of human error
Administer and maintain user end point security measures and provide expertise in all security related applications and software
Review, complete and submit third party security questionnaires from clients and review outside counsel guidelines
Work closely with legal teams, IT staff, and external vendors to ensure that security measures are integrated into all aspects of the firm’s operations, including new projects and technologies
Manage the regular updates and patching of security agents to systems and software to protect against vulnerabilities
Assist in the design, implementation and management of the firm’s security solutions, including firewalls, intrusion detection/prevention systems (IDS/IPS), antivirus software, encryption protocols, and secure access controls
Collaborate with the IT team and other administrative personnel in review of new or existing systems and software to ensure security requirements are satisfied, (including risk assessment)
Manage the firm’s vendor management program including the evaluation and audit of security practices of third-party vendors
Other duties may be assigned

Qualification

Cybersecurity principlesSecurity infrastructureIncident response planningSecurity technologiesCompliance requirementsSecurity certificationsCloud platformsAnalytical skillsProblem-solving skillsCommunication skillsAttention to detail

Required

Bachelor's degree in Computer Science, Information Security, or a related field. Equivalent experience may be considered
Minimum of 5+ years of similar level role in cybersecurity, with a focus on security engineering
Proficiency in security technologies, including firewalls, VPNs, SIEMs, IDS/IPS, and endpoint protection
Strong understanding of encryption technologies, secure coding practices, and network security protocols
Familiarity with compliance requirements such as CCPA, GDPR, HIPAA, and other relevant regulations
General knowledge of security certifications (e.g, ISO, SOC)
Strong problem-solving and analytical skills, with the ability to identify and mitigate risks effectively
Excellent written and verbal communication skills, with the ability to convey complex security concepts to non-technical staff
High level of attention to detail and the ability to manage multiple tasks in a fast-paced environment
Experience with cloud platforms such as Microsoft Azure, MFA and Identity components within Entra (Enterprise Applications/App Registrations, etc.)

Preferred

Experience in the legal or financial sector is a plus
Industry certifications such as CISSP, CISM, or equivalent are highly desirable

Benefits

Medical, dental and vision insurance
401(k) retirement plan
Paid time off
Short-term and long-term disability

Company

ZwillGen

twittertwittertwitter
company-logo
ZwillGen is a boutique law firm specializing in technology and privacy law.
dateFounded in 2010
location
Washington, District of Columbia, USA
people-size51-200 employees
web-link
http://zwillgen.com/

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Marc Zwillinger
Founder
linkedin
Company data provided by crunchbase