Fisher Phillips · 6 hours ago
Senior Information Security and Risk Analyst
Atlanta, GA
Full-time
Hybrid
Senior LevelFisher Phillips, a premier international labor and employment law firm, is seeking a skilled and experienced Senior Information Security and Risk Analyst to join their team. This role is essential for safeguarding the confidentiality, integrity, and availability of the firm's networks and provides strategic oversight of security monitoring and incident response activities.
ConsultingLaw EnforcementLegal
Responsibilities
Provide oversight and direction for the monitoring, interpretation, and assessment of security events generated by Firm security platforms, ensuring appropriate prioritization, escalation, and response to incidents
Conduct periodic, risk-focused reviews of the Firm’s information security posture, including access controls and permission models, and recommend enhancements to improve security governance and reduce risk
Establish and enforce access governance standards by overseeing investigations of unauthorized or inappropriate access, directing remediation actions, and ensuring violations are properly documented and reported
Oversee the investigation and analysis of security alerts from endpoint protection, network security, and monitoring systems, ensuring alerts are appropriately triaged and addressed in accordance with Firm standards
Provide senior-level oversight of email security incident response, including phishing and malware investigations, remediation actions, and identification of systemic control improvements
Provide administration and strategic oversight of Microsoft Defender for Office 365, including policy design, tuning, threat investigation workflows, and continuous optimization to reduce phishing, malware, and business email compromise risk
Analyze Microsoft Secure Score and related security posture metrics to identify gaps, prioritize risk-based improvements, and lead remediation initiatives that strengthen the Firm’s overall Microsoft 365 and Entra security posture
Maintain advanced knowledge of information security, risk management, and regulatory trends through ongoing professional development, industry engagement, and participation in relevant professional organizations
Serve as a key contributor to client-driven and regulatory security audits by overseeing the collection and validation of security control evidence and supporting responses to client data security assessments
Qualification
Required
Bachelor's degree in information security or a related field
Experience working with security frameworks (e.g., ISO 27001) required
Relevant cybersecurity certifications are preferred (e.g., CISSP, CISA, CISM)
Experience managing Microsoft Defender for Office 365 - safe attachments, safe links, anti-phishing policies, spoof/intelligence protection, and threat hunting
Experience managing Security Email Gateways (Mimecast-preferred) - polices, mail flow, antispam/malware filters, reporting
Experience investigating and remediating email-based threats like phishing, business email compromise, ransomware, impersonation, and malware
Experience managing Endpoint Detection and Response platforms and performing alert triage, behavioral analysis, device isolation, threat hunting, remediation
Experience leading or contributing to full incident lifecycle - triage, containment, eradication, recovery
Experience with Security Information and Event Management (SIEM) concepts, threat intelligence, basic scripting, auditing, tuning
Ability to analyze, collect, and categorize vulnerabilities in information systems to guide decision making
Ability to organize, standardize, and manage detailed information while prioritizing multiple competing work efforts
Ability to work collaboratively and effectively across teams, exercise sound judgment, and confidently navigate conflict resolution while analyzing, appraising, and resolving complex procedural, organizational, and administrative challenges
Preferred
Knowledge of incident response methodologies, cyber threats and vulnerabilities, adversarial tactics and techniques
Knowledge of cybersecurity, ethics and privacy principles, along with related regulatory requirements
Strong self-motivation with the ability to work independently and take initiative
Qualified applications with arrest or conviction records will be considered for employment
Benefits
Health, dental, and vision insurance
A 401(k) with profit sharing
Generous paid time off
Holidays
24/7 telehealth services
A variety of wellness programs
Additional optional benefits designed to support your unique lifestyle
Company
Fisher Phillips
Fisher Phillips is a law firm that offers legal assistance in a wide range of labor and employment issues, as well as counseling services.
Founded in 1943
501-1000 employees
H1B Sponsorship
Fisher Phillips has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (5)
2024 (2)
2023 (11)
2022 (4)
2021 (4)
2020 (5)
Funding
Current Stage
Late StageLeadership Team
Danielle Hultenius Moore
Partner and member of the Management Committee at Fisher Phillips
Dennis Cuneo
Partner
Recent News
2025-12-02
2025-11-03
Company data provided by crunchbase