Global Security Analyst - DLP, ISO27002, CrowdStrike, Firewalls, CyberArk, Palo Alto, Rapid7
Our global law firm client are currently looking to strengthen their security team with a new Global Security Analyst (DLP, ISO27002, CrowdStrike, Firewalls, CyberArk, Palo Alto, Rapid7). This person will assist with the implementation and maintenance of various security platforms firmwide to ensure a stable and consistent security function.
The client are a well known and well established global leader in the legal market, known for having an extremely modern, flexible and agile environment with one of the highest staff retentions in the sector. We advocate this firm highly and are one of our best and most trusted clients.
To be considered for this Global Security Analyst (DLP, ISO27002, CrowdStrike, Firewalls, CyberArk, Palo Alto, Rapid7) role, It is ideal that you have the following:
- 5 + Years within IT Security
- Understanding of Security standards and practicies (ISO27002, 27001 etc.)
- Strong understanding of DLP procedures, handling, remediation and reporting
- In depth and on hands experience with Microsoft platforms such as: CrowdStrike CyberArk, Rapid7, Palo Alto, M365 and Authenticator
- Ideal but not require legal sector experience
Responsibilities:
- Serve as the initial point of contact for all issues escalated to the Global Security Team via ticketing system
- Ensure threat intelligence is blocked and remediated as soon as possible
- Remediate and block all Report Phish alerts on a daily basis
- Assist in securing the architecture and enhancing overall security infrastructures
- Assist in ensuring that Firm employees understand the benefits of security to the organisation, themselves and their working environment
- Assist in the enforcement of the Information Security Policy within the firm by ensuring that necessary security audits and tests are executed properly and on-schedule
- Assist in the preparation, approval, implementation and adherence of the Information Security Policies within the Firm
- Assist the team in ensuring the environment complies with legal and policy requirements.
- Assist in remediating DLP policies to protect firm and client assets
- Assist with incident response workflow for DLP positive hits
- Ensure that information is openly communicated and shared with other members of the team
- Ensure monitoring and alert notifications are implemented in accordance with the business needs
- Develop solutions to improve and automate existing processes and procedures
- Maintain and update existing team documentation and contribute to the development of new documentation as required
- Assist with ensuring the proper implementation and maintenance of Firm technology is performed to minimize security risks
- Respond and assist Legal Risk management as needed.
- Research and document vulnerabilities and risks to IT-related systems
- Regularly monitor the Firm's compliance with the security policies and report on progress to the Security leadership.
- Audit and monitor security policies to meet client and or Firm compliance requirements
- Participate in discussions and decision processes regarding security-related advancements in technology
- Control access to the Firm's Information Systems and related security configuration
- Detect and respond to all incidents of an information security nature within the environment
- Ensure that all security risks are tracked, managed and communicated clearly and effectively
- Ensure that objectives are achieved by working closely with all members of the IT organization
- Ensure whenever possible that undesirable use of IT facilities is prevented/minimized at all times
- Evaluate Security-related hardware and software solutions and make recommendations when required
- Ensure Security Awareness site on Global Net updated with current material
- Ensure that change controls are adhered to and communicated to the partners and staff
- Stay abreast of all specific security issues both in the environment and external sources
- Assist in the planning for Business Continuity and Disaster Recovery