Cyber Security Engineer (Asia)

Position summary:  Cooley Technology embraces a culture of customer service excellence and all members of the department are expected to move this agenda forward. To that end, the Cyber Security Engineer (Asia) is expected to recognize that the Cooley Technology department is a service organization first and foremost and will be evaluated on this requirement equal in importance to the technical or operational responsibilities outlined later in this document. The Cyber Security Engineer will work to maintain and monitor the security practices and systems implemented by the Firm.  The Cyber Security Engineer will implement and manage security systems and tools as directed by Firm policies, procedures, and management. Specific duties include, but are not limited to, the following:

Position responsibilities

• Review, analyze and monitor security system reports and logs for suspicious activities, trends and patterns.  This includes but is not limited to web filters, mail gateways, firewalls, encryption systems, anti-malware systems, IDS/IPS

• Configure, maintain, and administer security products and solutions used within the Firm

• Configure, maintain and administer firewalls, VPN, privileged access management (PAM), data loss prevention, EDR, and security information event monitoring (SIEM) systems

• As a member of the Incident Response team respond to alerts, warnings, incidents, and help desk tickets to ensure minimum exposure of Firm assets under the direction of the Cyber Security Manager

• Participate in troubleshooting efforts on all cyber security related problems to include the establishment, management, and use of TAM arrangements with specified security vendors

• Participate as a technician/engineer on Technology and Innovation projects

• Conduct risk and security reviews on products as directed by the Cyber Security Manager or Technology management

• Recommend controls to ensure the appropriate level of protection and adherence to the goals of the overall information security strategy

• Monitor Technology security metrics and measures to include monitoring security system logs, Windows server logs, and network monitoring systems

• Provide consultation and conduct internal investigations that may require forensic analysis under the direction of the Cyber Security Manager and/or Technology management

• Respond to audit findings as directed by the Cyber Security Manager and/or Technology Management

• Evaluate and recommend commercial security vendors and products

• All other duties as assigned or required

Skills and experience:   

Required:

• After orientation at Cooley LLP, exhibit proficiency in the Microsoft Office suite, iManage and other firm applications

• Ability to work extended and/or weekend hours, as required

• Ability to travel, as required

• 2+ years of experience in information security

• Proven practical experience in information security and well-rounded knowledge of Technology

• Experience working with:

• Active Directory

• Firewalls

• Intrusion Detection and Prevention Systems

• Endpoint Detection and Response (EDR) and management console

• Web filter/proxy technologies

• Encryption technologies – whole disk, e-mail, and data at rest

• Vulnerability scanners

• Data loss prevention

• Email gateways and anti-spam services

• Privileged account management systems

• Security information and event management systems

• AWS and Azure Cloud Services

• Required to participate in a 7x24 on-call rotation

Preferred:

• Bachelor’s Degree in Information Technology or Computer Information Systems

• CISSP or equivalent certifications and/or experience

• Experience working with the following products:

• Palo Alto Network’s Firewalls and Prisma Access

• Tenable Vulnerability Scanner

• VMWare

• Cyberhaven Data Loss Prevention

• Proofpoint Email Gateway and Anti-Spam

• Forensic Tools

• S/MIME email encryption

• Delina Secret Server

• Crowdstrike

• Google SecOps SIEM

• Two factor authentication technologies

• Penetration testing tools

• Patch management systems

Competencies:   

• Exceptional customer service skills

• Excellent analytical, problem-solving, customer service, project management and communication skills

• Goal-oriented

• Excellent decision making, integrity and working with IT management, business users and staff

• Excellent oral and written communication skills, including technical and user documentation

• Strong organizational skills

• Ability to work independently and under high pressure with tight schedules and deadlines

• Ability to interact well with all levels of business professionals

• Excellent active listening skills

• Flexible and patient with process development/execution and adherence to instruct project management practices

• Capable of grasping new concepts quickly and without prior experience

• Detail-oriented

• Ability to multi-task and work in fast-paced environment

• Ability to interact and coordinate with several teams to achieve objectives

• Ability to solve problems independently and simultaneously, effectively managing multiple tasks

• Professional demeanor at all times

Direct Reports: None.