Cozen O'Connor · 1 week ago

Security Engineer

Philadelphia, PA

Full-time

Hybrid

Mid Level

Wonder how qualified you are to the job?

ConsultingGovernment

Insider Connection @Cozen O'Connor

Discover valuable connections within the company who might provide insights and potential referrals, giving your job application an inside edge.

Responsibilities

Partners with operations and application support teams in the design and review of projects with respect to adherence to security policies, standards, and best practices

Works with technical operations teams to ensure security controls such as firewalls, MFA, DNS security, and NAC applications are logging and functioning as expected

Monitors and administers our Crowdstrike EDR platform, including event investigation, report writing, configuration of policies, and updates of endpoint agent software

Works with Cloud Engineer and Operations staff to ensure Microsoft cloud design and implementation follow security best-practices

Conduct regular audits to ensure security controls such as Crowdstrike and our Qualys vulnerability software are functioning as expected

Tests for vulnerabilities by conducting regular scans of networks using our Qualys vulnerability scanning platform and works with third party vendors during annual security assessments and testing

Monitors network and system logs for security breaches or intrusions; manages and improves the SIEM platform by writing and tuning rules, reports, and dashboards for Security Operations team members

Leads incident response to investigate breaches and minimize impact; leads technical forensic investigation into how the breach happened, articulate extent of the exposure, and how to prevent it from happening in the future

Prepares reports of security performance metrics, events, incident findings, and other security related outputs and presents to management

Works with Risk and Audit manager to ensure all relevant certification tasks and client inquiries are addressed in a timely manner

Follows current news and information related to security trends/threats outside the firm and presents recommendations based on relevant findings

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

System Security AnalysisInformation SecuritySecurity SoftwareFirewallsIntrusion Detection SystemsAnti-Virus/EDR SoftwareAuthentication SystemsLog Management (Splunk)Web-Content Filtering PlatformsVulnerability Management SystemsIT EnvironmentsProject PlanningDocumentationProblem-SolvingCommunicationAzure Cloud SecurityCollege Degree

Required

Prior work experience as a system security analyst or information security engineer

Hands on experience in security software and systems including firewalls, intrusion detection systems, anti-virus/EDR software, authentication systems, log management (Splunk experience preferred), web-content filtering platforms, and vulnerability management systems

Ability to work in complex IT environments both independently and also cross-team

Experience with planning, implementation and documentation of tasks/projects in the assigned areas

Strong communication skills