IT Security Specialist focusing on cyber defense within a family - owned company. Responsibilities include managing firewalls, monitoring threats, and implementing security solutions.
About the role
- Senior Enterprise Security and Monitoring Engineer at Greenberg Traurig, addressing security threats and managing monitoring systems. Collaborating within a technology team in a law firm context.
Responsibilities
- Implements, manages, and optimizes enterprise security and monitoring tools and systems, such as antivirus, endpoint detection and response (EDR), identity threat detection and response (ITDR), and file integrity monitoring platforms
- Implements, manages, and enhances privileged access management (PAM) systems
- Monitors, detects, and responds to security threats, leading incident response efforts, from detection to resolution and post-incident reviews
- Performs regular audits and assessments of server security and application, system, and data access controls, vulnerability management, and implements security best practices and recommendations, to ensure compliance with security policies and standards, and to protect the firm's data and assets
- Plans and implements server and application security updates and patches to remediate vulnerabilities in collaboration with IT, compliance, and vulnerability management teams
- Manages security measures, such as server, application, and unstructured file system access controls, to protect against unauthorized access, data loss, and other security threats against the firm’s on-prem infrastructure and cloud-based platforms
- Monitors, supports, and troubleshoots servers, appliances, and applications
- Provides Tier 3 technical support, root cause analysis, and guidance for IT infrastructure, application, and security operations tasks
- Secures and governs Microsoft Entra ID and Azure tenants, applying best practices for cloud security and governance
- Develops and maintains PowerShell scripts (or equivalent scripting languages) to automate administrative, security-related, and routine tasks
- Leverages APIs for integration, automation, and enhancements of monitoring and management across systems and tools
- Works cross-functionally with technology teams, including, but not limited to, information security, compliance, networking, and application teams
- Proactively identifies opportunities for automation to improve system reliability and reduce manual effort
- Researches and evaluates new security and monitoring technologies and solutions and recommends improvements and enhancements to the existing systems and processes
- Stays updated with emerging trends and best practices in security and monitoring solutions, server and endpoint protection, identity protection and governance, data security, cloud security, and AI model infrastructure security
Requirements
- Bachelor’s degree in Computer Science, Information Systems, or related field, or equivalent work experience
- 10+ years of professional experience managing medium to large enterprise Microsoft Windows environments, preferably in a law firm or similar environment
- Strong working knowledge of cloud platforms like Microsoft Azure.
- Strong knowledge and expertise in enterprise monitoring and security tooling, such as antivirus, EDR, ITDR, file integrity monitoring, SIEM, and data security platforms
- Strong background in security operations, endpoint security, and incident response
- Hands-on experience managing a Privileged Access Management system
- Strong knowledge of public key infrastructure (PKI) and cryptography
- Hands-on experience with Azure/Entra ID cloud security, including, but not limited to conditional access, Defender for Endpoint, Defender for Cloud, and Defender for Identity
- Proven expertise in Active Directory Domain Services and Entra ID management
- Advanced understanding of authentication and authorization flows
- Deep understanding of identity and access management and role-based access control concepts
- Good working knowledge of and experience troubleshooting Microsoft technologies, such as SQL, IIS, and SharePoint
- Strong working knowledge with basic networking concepts, including TCP/IP, DNS, DHCP
- Experience managing secure file transfer tools
- Strong knowledge of single sign-on and multifactor authentication management
- Experience working with WMI, Syslog and Performance Monitor.
- Good working knowledge of SQL and SSRS and ability to write and optimize queries and reports
- Solid understanding and familiarity with Linux and MacOS a huge plus
- Strong working knowledge of Microsoft Graph PowerShell and Microsoft Graph API
- Proficient in PowerShell scripting; experience with other scripting/programming languages (Python, Bash, etc.) is a plus
- Solid understanding and experience with API programming (REST, JSON, authentication mechanisms) and security
- Strong expertise with Microsoft operating systems (Windows Server 2012-2025 and Windows 11)
Benefits
- Competitive compensation
- Excellent benefits package
- Opportunity to work within an innovative and collaborative environment
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Junior Information Systems Security Engineer at AMERICAN SYSTEMS managing DoD cyber security. Collaborating on technical issues and supporting risk management framework compliance.
Information Systems Security Engineer assisting in cyber security requirements for DoD systems. Collaborating closely with customers and ensuring compliance with the DoD Risk Management Framework.
Staff Product Security Engineer driving security innovation while ensuring compliance with federal standards at DataRobot. Leading security engineering, automation, and customer engagement for federal customers.
Auszubildende(n) zur Fachkraft für Schutz und Sicherheit in Hamburg bei proSicherheit GmbH. Modernes Sicherheitsunternehmen mit Fokus auf Sicherheit und Vertrauensaufbau.
Security staff for proSicherheit performing access controls and ensuring compliance with safety standards. Involves reporting, patrolling, and handling emergencies in Hamburg area.
Cyber Security Engineer responsible for DevSecOps and security automation at a leading Swiss IT consulting firm. Engaging in security measures across industries with a focus on collaboration and technology.
Cloud Security Architect responsible for strategic growth and development of Cloud Security solutions. Work with national clients on architecture and security concepts in Switzerland.
Information Security Manager coordinates ISMS development and security measures for Megamaris GmbH. Responsible for risk analysis and security training across 12 subsidiaries.
Security GRC Manager managing audits and compliance programs at Salesforce. Overseeing cloud security compliance and collaborating across departments for risk management.