Cybersecurity Operations Lead

CYBERSECURITY OPERATIONS LEAD

At Fisher Phillips, we know exceptional talent is the key to our success, to providing the best service to our internal and external clients. Being a part of the Fisher Phillips team means you will work with cutting edge technology in a professional and fun environment under leadership ready to invest in your professional development. If you have a growth mindset, are eager to challenge yourself, and desire to work with a team of professionals instituting change on an ongoing basis, keep reading.

The Opportunity:

Fisher Phillips is an international labor and employment law firm, and we are hiring for an experienced Cybersecurity Operations Lead to join a talented team of Technology, Security, and Information Governance professionals. With 600 attorneys in 40 offices, located in the United States and Mexico, our range of experience and expertise enables us to bring efficient and practical solutions to today's labor and employment law problems. This position will work a hybrid/remote work schedule during standard business hours and is based out of our Atlanta office. For more information about the firm, please visit our website at www.fisherphillips.com.

In this role, the Cybersecurity Operations Lead will work as part of the Firms Information Security Team to protect the confidentiality, integrity, and availability of Fisher Phillips cloud and on-premise network, systems, and data. This position will oversee the deployment and administration of security projects and initiatives in addition to coordinating day-to-day security operations activities including analyzing security events, threat hunting, enriching event data through contextual and threat analysis, and responding to, re-mediating, and coordinating incident response actions with other stakeholders. This individual will proactively lead security operations activities to ensure adherence to policies and processes that support the overall mission of the firms Information Security Management System. The successful candidate must be able to learn about existing processes and systems, evaluate them for weaknesses, and make improvement recommendations that will make security operations more effective and efficient.

Responsibilities

What you'll do:

• Monitor, interpret, and assess the information provided by Firm security applications and respond to incidents as appropriate

• Perform ongoing internal vulnerability scanning and create remediation requests and status reports

• Review current state of information security and performs regular audits of access permissions

• Conduct ongoing risk assessments of current and potential third party vendors

• Ensure authorized access by investigating improper access, revoking access, and reporting violations

• Manage Data Loss Prevention (DLP) policies and investigate related events

• Identify and investigate relevant security alerts originating from anti-virus, firewall, and file monitoring systems

• Respond to email related security alerts including phishing and malware remediation actions

• Assist in developing security awareness globally by providing orientation, educational programs, and on-going communications

• Update job knowledge by participating in educational opportunities, reading professional publications, maintaining personal networks, and participating in professional organizations.

• Assist in providing requested security control evidence and completion of client data security audits.

Qualifications

Why you are qualified:

• Bachelors degree in information security and/or (5) years of information security experience in complex technology environment.

• Relevant Cybersecurity certifications preferred (CISSP, CISA, CISM, etc.).

• Knowledge of common information security management frameworks (HIPAA, ISO/IEC 27001, ITIL, NIST, COBIT, ITL, etc.).

• Experience with the management of endpoint protection, intrusion detection, security event monitors, email security, firewalls, and other security devices/tools.

• Proven ability to manage the deployment of technology projects from initial procurement to testing, implementation, and administration/monitoring.

• Knowledge of Data Loss Prevention (DLP) principles and administration of DLP tools and policies.

• Knowledge of incident response methodologies.

• Knowledge of common hardware and operating systems.

• Experience with large-scale server virtualization administration.

• Knowledge of cyber threats, vulnerabilities, and threat hunting processes.

• Knowledge of adversarial tactics and techniques.

• Understanding of security awareness training, educational programs, and on-going communication of information security threats.

• Experience with conducting information security investigations and responding to alerts from email security, endpoint protection, and SIEM tools.

• Knowledge of vulnerability threat management and remediation actions.

• Knowledge of cybersecurity, ethics and privacy principles, along with related regulatory requirements.

• Knowledge of encryption algorithms, cryptography, and key management.

• Ability to collect and analyze data to guide decision making.

• Ability to interpret the information collected by network tools, such as Traceroute, Ping, packet captures, etc.

• Ability to analyze and categorize vulnerabilities in information systems.

• Ability to organize, standardize, and manage detailed information.

• Ability to work collaboratively and effectively in and between teams.

• Ability to prioritize, managing multiple competing work efforts.

• Strong interpersonal, collaboration, and conflict resolution skills. Ability to exercise strong judgment in analyzing, appraising, evaluating, and solving problems of a difficult procedural, organizational, administrative, or technical nature.

• Strong self-motivation.

What we provide:

Fisher Phillips offers a comprehensive benefits package for eligible staff that includes medical, dental, and vision benefits, paid time off, paid holidays, 401(k) and profit sharing, life insurance, long-term disability, and an employee assistance program. We also offer optional benefits such as critical care, accident and hospital indemnity insurance, a student loan refinancing program, life insurance for dependents, and pet insurance.

No relocation costs. Principals only; no calls please.

We are committed to providing equal employment opportunities to all employees and applicants without regard to race, ethnicity, religion, color, sex (including childbirth, breast feeding and related medical conditions), gender, gender identity or expression, sexual orientation, national origin, ancestry, citizenship status, uniform service member and veteran status, marital status, pregnancy, age, protected medical condition, genetic information, disability or any other protected status in accordance with all applicable federal, state and local laws.