Lead/Senior Security Engineer

Location: New York City

Job Summary:

As a Senior Security Engineer, reporting to the Head of Information Security, you will be responsible for leading our security monitoring, incident response, threat detection and vulnerability management efforts. You will work closely with cross-functional teams within the Technology department to ensure that systems and networks protected against cybersecurity threats. You will also act as the primary liaison and relationship manager for our MDR service provider.

Key Responsibilities:

· Administers vulnerability management platform, including configurations, vulnerability scanning, remediation, and reporting

· Administers EDR platform, including event investigations, alert and report design, policy configurations, and endpoint agent updates

· Conducts regular audits to ensure EDR and vulnerability scanning applications are installed and functioning as expected

· Monitors SIEM and cloud environments for evidence of current or previous security events, as well as, performs improvements to Splunk alerts, reports, and dashboards

· Leads incident response in cases of confirmed security incidents, including minimization of business impact, communication of findings and mitigation, forensics collection, and hardening recommendations

· Monitors outside threat intelligence sources for both general industry and the legal industry and makes recommendations

· Works with technical operations teams to ensure security controls such as firewalls, MFA, and NAC functioning as expected

· Prepares reports of security performance metrics, events, incident findings, and other security related outputs

Qualifications:

· Bachelor’s degree in Computer Science, Information Technology, or related field.

· Relevant professional certifications, such as CISSP, CISM, CEH, or other security certifications.

· Minimum of 8-10 years of experience in system security engineering, network security, application security, cloud security or a related field.

· Strong knowledge of security principles, best practices, and industry standards, such as NIST, ISO 27001, and Cloud Security Alliance, CIS Critical Security Controls.

· Hands-on experience with security technologies, such as firewalls (e.g. Palo Alto, Cisco), IDS/IPS, SIEM (e.g., Sumo Logic, FortiSIEM, Splunk), EDR (e.g., Crowdstrike), CASB, IAM, and vulnerability scanning tools.

· Experience with risk assessment, penetration testing, and incident response methodologies.

· Strong understanding of networking concepts and protocols, such as TCP/IP, VLANs, VPNs, and routing/switching.

· Excellent analytical, problem-solving, and troubleshooting skills.

· Strong communication and interpersonal skills, with the ability to effectively communicate complex security concepts to technical and non-technical s