Goodwin Procter

Security Analyst

Goodwin Procter$111K — $167K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's Degree or equivalent.
  • Minimum of 3 years' experience as an Information Security Analyst.
  • CISSP or equivalent preferred.
  • Expert knowledge in IT Security frameworks and solutions.
  • Operating knowledge of security configurations for various security products.

Responsibilities

  • Identify new threats and create rules for IT systems.
  • Expand security auditing and ensure ongoing operations.
  • Provide internal security consulting for business and IT projects.
  • Assist in the creation of security policies and documentation.
  • Support incident response lifecycle for security breaches.

Benefits

  • Health, dental, and vision insurance.
  • Life and disability insurance.
  • Retirement & Savings Plan.
  • Emergency back-up child and adult care.
  • Paid vacation, sick time off, and holidays.
  • Professional development and career advancement opportunities.
  • Employee wellness and assistance programs.
Full Job Description
Working with the Director, Information Security, this position is responsible for the operation, implementation, management, auditing and reporting, and engineering support of Goodwin's network and information security systems infrastructure. Assists with security automation, threat detection engineering, risk assessments, vulnerability management, incident response, and disaster recovery testing. Provides internal consulting to project owners and technical resources to ensure the confidentiality, integrity and availability of firm data and systems. Reviews, tests and implements new security technology platforms. Advocates information security practices to all firm members.

What You Will Do:
  • Identify new threats to IT systems and create rules to identify, prevent and remediate.
  • Expand security auditing and ensuring the proper ongoing operations of security tools
  • Providing internal information security consulting for other business and IT projects. This includes identifying, documenting and implementing secure configurations and architectures.
  • Assist with the creation and maintenance of security policies, standards, guidelines and other documentation for IT and business audiences.
  • Responsible for security metrics on a monthly basis to ensure the proper service levels are maintained.
  • Support incident response lifecycle including identification, triage, remediation and communications for security breaches and malware infections.
  • Identify latest security vulnerabilities, malware, breaches, and industry news which could affect the firm
  • Maintains vulnerability management process including identification, rating, remediation and monitoring.
  • Provides additional coverage for approvals and notifications to other IT groups for critical time sensitive operations including firewall changes, password reset approvals, and application vetting.
  • Assist with automation of security processes, integration of security platforms, and creation of tools.
  • Ongoing reviews of access controls by investigating improper access; revoking access; reporting violations; monitoring requests; recommending improvements
  • Provides technical leadership for incident response capabilities including malware analysis, breach investigation, and remediation efforts.
  • Creation of internal training materials and other items to support the advancement of information security within the firm.
  • Maintains awareness of industry trends and their advantages with the ability to make recommendations for improving technology used by the firm.
  • Participates in and/or manages cross-functional team projects to implement new or updated technology.
  • Cross-trains other IT staff in security best practices, the use or maintenance of technology.
  • Effectively manages small projects.
  • Displays professionalism, quality service and a "can do" attitude to internal members/departments of the Firm as well as external clients and vendors via electronic and print correspondence, over the telephone and in-person.
  • Provides information security knowledge transfer to other IT staff and business
  • Assumes additional responsibilities as assigned.


Who You Are:
  • Bachelor's Degree or equivalent.
  • Minimum of 3 years' experience working in the capacity of an Information Security Analyst
  • CISSP or equivalent preferred
  • Expert knowledge in IT Security frameworks and solutions.
  • Active participation in IT Security Forums inside/outside of the Legal Industry.
  • Excellent technical communication skills with a strong desire to achieve customer satisfaction; must be able to communicate effectively across entire organizations.
  • Operating knowledge of security configurations with respect to one or more of the following security products
  • SIEM: Splunk, Sentinel
  • Firewalls: Cisco, Palo Alto Networks
  • IDS/IPS: Cisco, Palo Alto Networks
  • NAC: Cisco, Aruba
  • Vulnerability Management: Tenable, Rapid7
  • Programming Languages: Python, Powershell, Node.js
  • Security Automation: LogicApps, Power Automate, Splunk
  • Operating knowledge of security issues associated with one or more of the following cloud platforms: Azure, AWS
  • Strong security knowledge of O/S (desktop and server) Security - Windows, Mac, Linux.
  • Strong security knowledge of browser security issues (Edge, Chrome).
  • Ability to learn new technologies and security features.
  • Excellent analytical, problem solving and troubleshooting skills.
  • Excellent organizational, interpersonal, communication and customer service skills.
  • Knowledge of ITIL Service Management principles.
  • Travel 1 week per quarter

#LI - TD1

Benefits and More

At Goodwin, you will discover your next career opportunity with a rewarding compensation package and comprehensive benefits, including:
  • Health, dental, and vision insurance
  • Life and disability insurance
  • Retirement & Savings Plan
  • Emergency back-up child and adult care
  • Paid vacation, sick time off, and holidays
  • Professional development and career advancement opportunities
  • Employee recognition and reward programs
  • Employee wellness and assistance programs
  • Employee discounts and perks


This position is eligible for overtime: No

The target salary range for this position varies by location and is commensurate with relevant experience: Boston $103,700 - $155,600 | Los Angeles $111,500 - $167,300 | New York $111,500 - $167,300 | Orange County $111,500 - $167,300 | Philadelphia $101,600 - $152,500 | San Diego $111,500 - $167,300 | San Francisco $119,300 - $178,900 | Santa Monica $111,500 - $167,300

About Goodwin Procter

Goodwin Procter LLP is a global law firm with a history of working on groundbreaking matters, including many of the most significant transactions, landmark cases and precedent-setting regulatory and enforcement matters. Our approximately 1,200 lawyers across the United States, Europe and Asia excel at complex transactions, high-stakes litigation and world-class advisory services in the technology, life sciences, real estate, private equity, and financial industries. Our unique combination of deep experience serving both the innovators and investors in a rapidly-changing, technology-driven economy enables us to provide a distinct competitive advantage to our clients.
Learn more about Goodwin Procter
Size
1,200 employees
Industry

Similar Jobs

More Jobs at Goodwin Procter

More Information Technology Jobs

Find similar Security Analyst jobs: