THE FIRM
As a leading international law firm, we are dedicated to excellence through impactful communication, collaboration, and community involvement. Our company culture has earned us one of the "100 Best Companies to Work For" for 26 consecutive years. This honor, along with many others, highlights our commitment to innovation and professional development. At Alston & Bird LLP, our foundation is made of trust, reliability, and compassion.
JOB DESCRIPTION
Join our Information Security team as an Information Security Engineer – Detection & Response, where you’ll play a critical role in safeguarding the firm by monitoring and responding to security threats, managing and enhancing advanced security technologies, investigating incidents and phishing attempts, and partnering with technical and non‑technical stakeholders to strengthen our overall security posture in a dynamic, fast‑paced legal environment.
Alston & Bird is seeking a qualified and dynamic individual for the position of Information Security Engineer who will perform a variety of duties supporting information security including: management and maintenance of security systems, investigate security alerts and reported phishing emails, assisting users with problems related to security systems, participate in threat intelligence organizations, recommend configuration changes for security systems and assist with the selection and implementation of new solutions.
Support security operations of the firm
Administer and maintain the firm’s security systems, such as SIEM, malware analysis, XDR, anomaly detection, vulnerability scanners, anti-virus etc.
Make recommendations and assist with configuration changes to existing systems to address newly identified vulnerabilities
Provide security education to users through phishing exercises
Proactively review security systems for indicators of compromise, violations of policy, and anomalous behaviors
Assist in investigations of security incidents as needed
Prepare and maintain documentation of systems managed by the Information Security team.
Recommend, evaluate, and support security enhancements to management
Provide evidence for various compliance initiatives when required
Maintain current knowledge of industry recognized risks and possible security vulnerabilities as well as current security solutions.
Provide backup support for other members of the Information Security team.
Support initiatives and special projects of other Information Systems teams as required
Provide system hardening recommendations
Assist in troubleshooting of problems of various types
Support users
Respond to reports of incidents of compromise and malicious emails
Support initiatives of the Information Security team
Maintain current knowledge of industry recognized risks and possible security vulnerabilities as well as current security solutions
Provide guidance regarding secure application and system configuration
Resolve security-related calls referred by the Help Center when the calls are beyond the scope of the Help Desk
Assist with execution of security assessments by third parties
Ability to communicate effectively with technical and non-technical individuals regarding security concerns, problems, and questions
Solid and broad technical foundation
Awareness of relevant compliance requirements (ISO 27001, HIPAA, state privacy laws, etc.)
Ability to multitask and switch focus among multiple different efforts quickly
Ability to quickly learn new applications and adjust to upgrades to existing applications
Excellent organizational and self-management skills
Experience with administration of security systems (vulnerability scanner, endpoint detection and response, SIEM etc.), networking protocols, Microsoft and Linux systems, cloud and mobile technologies
Associate or bachelor’s degree is not required but strongly preferred
Minimum of 3 years prior experience in a role focused on operational support is required
Applicable certifications (ISSEP/CISSP, GIAC) strongly preferred
Previous experience in the legal field is desired
EQUAL OPPORTUNITY EMPLOYER
Alston & Bird LLP is an Equal Opportunity Employer does not discriminate on the bases of any status protected under federal, state, or local law. Applicants will be considered regardless of their sex, race, age, religion, color, national origin, ancestry, physical disability, mental disability, medical condition (associated with cancer, a history of cancer, or genetic characteristics), HIV/AIDS status, genetic information, marital status, sexual orientation, gender, gender identity, gender expression, military and veteran status, or other protected category under the law on the basis of race, color, religion, sex, age, sexual orientation, gender identity and/or expression, national origin, veteran status or disability in relation to our recruiting, hiring, and promoting practices.
The statements contained in this position description are not necessarily all-inclusive, additional duties and responsibilities may be assigned, and requirements may vary from time to time.
Professional business references and a background screening will be required for all final applicants selected for a position.
If you need assistance or an accommodation due to a disability you may contact donavan.mclean@alston.com.
Alston & Bird is not currently accepting resumes from agencies for this position. If you are a recruiter, search firm, or employment agency, you will not be compensated in any way for your referral of a candidate even if Alston & Bird hires the candidate.