The Phoenix Group · 3 weeks ago
Information Technology Security Engineer
DC-Baltimore Area
Full-time
Hybrid
Senior Level
$130K/yr - $170K/yr
5+ years expThe Phoenix Group is a growing legal services organization seeking a security-focused technologist to join their internal technology group. This role is crucial in safeguarding confidential information and internal systems, while also managing security processes and compliance with privacy regulations.
ConsultingHuman ResourcesRecruitingStaffing Agency
Hiring Manager
Cassie DiPierdomenico
Responsibilities
Perform ongoing reviews of the firm’s security posture, including vulnerability scans, risk evaluations, and related testing. Recommend and roll out improvements where needed
Serve as the point person for external audits tied to potential security certifications
Build, refine, and oversee the firm’s incident response processes. Lead investigations, coordinate remediation steps, and schedule/execute routine IRP exercises
Maintain alignment with applicable privacy and regulatory requirements (such as HIPAA, GDPR, CCPA). Draft, revise, and reinforce internal security standards and guidelines
Partner with outside monitoring providers (SOC, EDR, etc.) to track alerts, analyze activity, and prepare regular security summaries for leadership
Lead staff training efforts to strengthen awareness and reduce avoidable security issues
Manage endpoint protection tools and act as the subject-matter expert for all security-related applications
Complete client security questionnaires and review outside counsel requirements as needed
Work collaboratively with attorneys, IT professionals, and trusted vendors to embed proper security measures into systems, projects, and new technologies
Ensure security tools and agents stay up to date through regular patching and maintenance cycles
Assist with evaluating, designing, and maintaining security solutions such as firewalls, IDS/IPS, encryption configurations, antivirus tools, and access controls
Participate in reviews of new and existing systems to verify they meet risk and compliance expectations
Oversee the vendor security review process, ensuring third-party partners follow appropriate safeguards
Support additional technology or security tasks as assigned
Qualification
Required
Bachelor's degree in IT, cybersecurity, or a related discipline—or comparable experience
At least five years in a hands-on security engineering or similar cybersecurity role
Skilled with tools such as VPNs, firewalls, SIEM platforms, endpoint protection systems, and IDS/IPS technologies
Solid understanding of encryption, secure development principles, and core network security protocols
Knowledgeable about frameworks and regulations including GDPR, HIPAA, CCPA, and similar standards
Awareness of common certification processes like ISO and SOC
Strong analytical instinct with the ability to spot, interpret, and resolve potential vulnerabilities
Comfortable explaining complex security topics to individuals without a technical background
Detail-oriented and capable of balancing multiple initiatives at once
Experience working with cloud environments—particularly Azure—and identity tools/MFA within Entra
Preferred
Experience in legal or financial services is beneficial
Relevant credentials (CISSP, CISM, or similar) are advantageous
Company
The Phoenix Group
The Phoenix Group is a staffing and solutions firm for information technology and engineering field.
51-200 employees
Funding
Current Stage
Growth StageLeadership Team
Alex Marvin
Founder, President & CEO
Company data provided by crunchbase