Information Security Engineer

The Information Security Engineer will primarily be responsible for the day-to-day management and review of information security systems and applications. The Information Security Engineer works in collaboration with security management and IT teams to help design, develop, and implement security changes and enhancements to firm computing environments along with monitoring and response to significant security alerts and events for investigation and remediation purposes.

Essential Duties and Responsibilities:

• Configure, design, evaluate, and integrate information security technology solutions. Maintain the system and application health of the Firm’s security systems including, but not limited to web proxy, IPS, SIEM, NG Antivirus, vulnerability scanners, and other security capabilities.
• Maintain systems documentation of information security technology solutions.
• Develop technical solutions and new security tools to help mitigate security vulnerabilities and automate repeatable tasks.
• Builds strong relationships with our vendor partners to ensure good support for our security toolset.
• Review system logs to identify anomalies and non-compliance to the governing security policies and to identify abnormal activity including, and not limited to, traffic coming into/leaving the firm network, user logins, and using customer support technologies.
• Develop queries and processes for security analysts to use in investigating security events and employ event correlation and investigation skills to analyze activities and ensure proper actions are taken to continually improve on the security posture of firm systems.
• Analyze and implement security measures for Firm computing resources. This includes implementing Windows OS security baselines, management of complex antivirus configurations, and regular testing of new and existing system deployments.
• Administer security evaluation and vulnerability scans and compile results for distribution to concerned parties for remediation.
• Provide analysis and recommendations for user endpoint security.
• Works with IT counterparts, and user departments to enhance information security across all areas, and specifically with respect to vulnerability management
• Respond to security events and incidents.
• Strong communication skills needed to articulate and justify proposed policies or security changes to the environment.
• Develop detailed technical recommendations to solve security issues. Maintain and document configuration changes and follow departmental change processes and procedures.

Other duties and responsibilities:

• The ability to self-direct and work independently.
• Mentor, guide & advise other staff members on security matters and configurations.
• Participate in various instruction programs for both staff and wider Firm audiences regarding network, system, and applications security issues.
• Timely communications with information security management on all activities related to information security technologies and program processes.
• Makes recommendations to management on the specifications and selection of systems related to security.

Qualifications:

• Strong verbal and written communication skills
• Ability to adapt to a dynamic and fast paced environment
• Experience with security systems such as IPS, firewalls, SIEM, NG Antivirus, proxy servers, and vulnerability scanners
• Advanced knowledge of TCP/IP and network design
• Expert level understanding of Microsoft operating systems and Active Directory
• Experience with Microsoft operating system Firewalls and security configurations
• Experience with certificate-enabled applications, such as SSL/TLS, S/MIME, authentication, EFS, 802.1X, Code Signing, etc.
• Experience with Linux operating systems
• Relevant Industry certifications (MCSE, CISSP, CEH, etc.)
• Knowledge of cloud security challenges (SaaS, IaaS, PaaS, etc.)
• Knowledge of Microsoft enterprise-wide products (Azure Purview, Endpoint Configuration Manager, etc.)
• Current experience across a broad spectrum of Data Security disciplines
• Experience with PowerShell scripting

Extent of Public Contact:

This position requires contact with individuals within and outside the firm as follows:

• Daily contact with Firm’s IT Staff.
• Moderate contact with Firm vendors or potential vendors.
• Occasional contact with Firm’s attorneys, staff and client representatives.
• Occasional contact with the Firm’s clients or their third-party risk management vendors when responding to security assessments.

Physical Demands:

• Minimal physical effort required beyond occasional moving of equipment

Working Condition and Environment

• This is a full-time position that occasionally requires hours in excess of the standard workweek in order to complete the essential functions of the job for high priority alerts.
• Travel is minimal but may be needed for firm projects or other special circumstances.
• This is a remote position but requires attendance in the Firm office location for in-person meetings with the Security Team, IT Teams, and vendors on a scheduled basis.
• 24x7 communication access required.
• When working remotely, you must have secure and reliable internet service and a safe, private workspace from which to work.

Baker Botts is committed to cultivating a culture where our attorneys and staff thrive professionally and personally. We are proud to offer a comprehensive benefits program designed to support and enhance the overall wellbeing of our employees and their families.

Baker Botts L.L.P.  is an equal opportunity employer and considers all qualified applicants for employment without regard to race, color, gender, sex, age, religion, creed, national origin, citizenship, marital status, sexual orientation, disability, medical condition, military and veteran status, gender identity or expression, genetic information or any other basis protected by federal, state, or local law.