Senior Network Security/Compliance Engineer

MG+M The Law Firm (MG+M) is a nationally renowned litigation law firm with 15 offices nationwide concentrating on complex civil matters. The firm's expertise is diverse but focused in the areas of toxic tort, complex product liability, local government, general liability, and commercial litigation. We approach litigation as a unified team, integrating our efforts with those of our clients to advance their interests wherever they do business. Our goal is always to deliver optimal results at the best possible value. MG+M seeks a Senior Network Security/Compliance Engineer to join our dynamic and diverse IT team in our Boston office.

Reporting directly to the Manager of Information Security, the Senior Network Security & Compliance Engineer is responsible for network engineering and security for the Firm's technology environment. This multifaceted role involves maintaining security levels, infrastructure, and vendor support while collaborating with IT staff to address incidents and deploy security solutions effectively.

Additionally, the engineer assists the Infosec Manager with vendor oversight to ensure smooth communication and coordination with external security partners on various security platforms, such as next-gen firewalls and LAN/WAN technologies, to mitigate emerging threats and safeguard the network.

The Senior Network Security/Compliance Engineer responds to after-hours inquiries from the Security Operations Center (SOC), providing timely assistance in resolving security incidents and serving as a point of contact for SOC escalations. This role demands a deep understanding of network security principles, proactive monitoring of security trends, and close collaboration with stakeholders to maintain a robust security posture.

Expanding the responsibilities, the position also assists with responses to client questionnaires, assessments, and RFPs, ensuring compliance with data security requirements. Their role extends to supporting data compliance initiatives, reinforcing the organization's commitment to security and regulatory standards.

RESPONSIBILITIES – Security core functions:

Vendor Management and Security Oversight:

• Observe and respond to alerts from eSentire, Mimecast, 365, Digital Guardian, Jira, and Masergy, collaborating with outsourced SOC to contain and remediate issues.
• Maintain list of Third-Party Vendors and Security Documentation for each vendor
• Work with other IT departments to vet security configurations of third-party products
• Continuous Monitoring of Security incidents in the wild with all vendors associated with MG+M.
• Managing, Summarizing, and Inventory of all OCG for clients and Insurers

Security Infrastructure Management:

• Evaluate, architect, build, and support security infrastructure, including IPS/IDS, EDR, Vulnerability Scans, Data Loss Prevention, SIEM, NAC, DUO MFA, and systems.
• Configure network security monitoring functions and provide detailed reporting.
• Continuously building documentation for all systems
• Vulnerability Management and Incident Response
• Run vulnerability evaluations of protocols, hardware, and software, working with vendors to address identified vulnerabilities.
• Continuously remediate vulnerabilities found in scans and works with other IT teams to remediate vulnerabilities in a timely fashion.
• Assist with security incident response efforts, following the Incident procedures: Identify, Protect, Detect, Respond, Recover.
• Field service desk tickets in response to end user security incidents

Compliance and Training:

• Uphold policies reflected in the Information Policy Suite documents, ensuring client and team compliance.
• Perform analysis of vulnerability data, improve remediation strategies, and spread security awareness through internal communications.
• Assist on conducting yearly penetration testing, review results, and provide recommendations for improvement.
• Assist on Gathering evidence for Internal and External Audits
• Assist on Cyber security Training efforts for the firm.

RESPONSIBILITIES – Networking core functions:

Network Security Troubleshooting and Support:

• Act as an escalation-level engineering resource responsible for the network security of all technology platforms.
• Troubleshoot all aspects of the technology platform, including integration with Windows-10, Citrix, VPN, Office 2016, O365, Azure, and mobility.

Security Infrastructure Configuration:

• Install, configure, and maintain a variety of network security services, including WAN circuitry, routers, firewalls, and other security devices.
• Assist in ensuring disaster recovery and business continuity plans are in place and tested.

Collaboration and Compliance:

• Work collaboratively with the Infrastructure Team and Consultants to configure security in the AZURE/O365 environment.
• Adhere to Microsoft best practices, track, and report Microsoft tickets as needed.
• Assist Information Security manager with vendor onboarding and offboarding processes.

RESPONSIBILITIES - Other functions:

• Maintains, organizes, and manages daily task list of ongoing security issues and recommends steps towards resolution.
• Educates, and provides support to other team members on the latest variants and best practices on mitigation.
• Documents system security gaps, make written recommendations for improvement, and maintains internal knowledge base.
• Effectively articulates complex ideas and technical subject matter to users and peers in a manner that is easily understandable by both technical and non-technical users.
• Effectively communicates utilizing both written and verbal skills, including the distribution of technology notifications and procedures as required.
• Works collaboratively with the Level 2 - 3+ escalation engineering team on issues requiring advanced levels of security and network administration.
• Determines escalation eligibility quickly and accomplishes by warm hand off when possible.
• Proactively notifies IT Management of potential service interruptions based on performance patterns.
• During outage periods, follows escalation processes to immediately notifying senior staff and management, clearly outlining the symptoms of the outage or failure.
• Follows and complies with IT security standards and practices.
• Complies with all IT Security policy and procedure including Least Privilege Access
• Monitors systems and infrastructure for security gaps; recommends and implements system enhancements.
• Can effectively manage the tasks responsible for multiple projects, reports status & task timings.
• Participates in regular IT meetings and special projects as required.
• Follows Project Management standards.
• Works in collaboration with IT team members to support deployments and projects as required.
• Adheres to Change Management Standards at all times and monitors team for compliance.
• May be required to participate in on-call rotation in an afterhours support role to Perform proactive and reactive troubleshooting analysis of cloud systems and platforms as required.
• Demonstrates willingness to be flexible with work schedule, travel to MG+M offices as necessary for coverage. Works additional hours in excess of regular schedule as needed.
• Other duties as assigned.

RESPONSIBILITIES -Technical skills / requirements:

• In depth understanding of security in cloud platforms, including all Microsoft product suites and Azure IaaS
• In depth understanding of security systems and interoperability, function, and operational use. Practical/admin level experience with Windows 10, Microsoft Office 2016, Office 365, Microsoft Exchange Online, SharePoint, Mimecast
• Practical/ admin level experience with Remote Access technologies; Citrix and VPN
• Practical experience with security systems (anti-virus, anti- malware, monitoring systems, encryption software, and DLP systems)
• Practical experience with Remote Connectivity Tools (LogMeIn, SCCM, Dameware etc.)
• Adept skills in AZURE, Office 365 (Identity, Intune, Authentication, Administration, Implementation, Exchange, Skype)
• Working knowledge virtual remote connections and related security
• Must be able to work effectively in a collaborative, matrixed management environment.
• Strong written communication skills to participate and assist in the creation of comprehensive security documentation, including processes and procedures.
• Ability to review system changes for security implications and recommend improvements.
• Understanding of cyber security methodologies
• Current knowledge of technology capabilities and trends; types, and current hacking techniques
• Significant mid-level networking experience with the TCP/IP
• Ability to compose professional communications regarding security related information to broad audience.

PROFESSIONAL PROFILE:

• Bachelor’s Degree preferred or Minimum of 5 years of post-education IT work experience mandatory.
• Legal industry experience highly desirable
• Microsoft Certification required (Azure Fundamentals, Azure Administrator, Azure Architect)
• CompTIA Security+ or CISSP highly preferable
• Knowledge of NIST, SOC II, and ISO27001
• Basic Understanding Data privacy regulations
• CCIE (Cisco Certified Internetworking Engineer) suggested.
• Minimum of 3-5 years’ experience in a fast-paced, demanding IT support environment.
• Minimum 3 years’ experience identifying threats and developing appropriate protection measures.
• Candidate should have experience working within a diverse, matrixed teaming environment.
• Strong working, hands-on knowledge of Microsoft and Azure Security essentials
• Experienced, positive, self-motivated, directed, and highly proactive professional with solid written and verbal communication skills.
• Strong problem solving/analytical abilities and dedication to quality customer service skills a must.
• Ability to interact professionally with a diverse group of colleagues.
• Highly accountable and takes ownership as well as willing to work within a hybrid support model following best practices.
• Possesses strong problem solving, analytical and troubleshooting skills; must take be able to multitask and manage tasks to multiple business priorities.
• Experience working independently under pressure with minimal guidance and supervision.
• Ability to multi-task with a calm demeanor and work under pressure in a fast-paced, challenging environment
• Conveys and acknowledging differences of opinion in a positive and respectful manner.
• Comprehensive understanding of network security, cloud platforms, and relevant technologies, is a must to support and thrive in a dynamic and challenging environment.

MG+M offers competitive compensation and a comprehensive benefits package including medical, dental, vision, life, disability, and 401(k).

MG+M will not discriminate in its employment practices due to an applicant’s age, race, color, religion, sex, sexual orientation, gender identity, national origin, and veteran or disability status. We are committed to cultivating an environment that embraces and promotes diversity as a fundamental value. Minorities and women are encouraged to apply.