Senior IT Security Engineer, Threat Response

Senior IT Security Engineer, Threat Response at Orrick, Herrington & Sutcliffe LLP

Orrick currently has an excellent opportunity for a Senior IT Security Engineer, Threat Response. This position could be based in any of our U.S. offices and consideration given for 100% remote US locations.

Responsibilities

• Incident Response: Collaborate with the incident response team to investigate and respond to security incidents, providing expert analysis and support.
• Proactive Threat Hunting: Conduct advanced threat hunting activities to detect unknown and sophisticated threats that have bypassed traditional security defenses.
• Data Analysis: Analyze security alerts, network traffic, endpoint logs, and other data sources to identify anomalies and potential threats.
• Threat Intelligence: Integrate threat intelligence data into response and hunting activities, ensuring that the organization is aware of and protected against emerging threats.
• Tool Development: Develop and refine custom scripts, queries, tools, and automation to enhance threat detection and hunting capabilities.
• Reporting: Document and report findings, including potential risks, vulnerabilities, and recommended remediation steps to key stakeholders.
• Collaboration: Work with other cybersecurity teams to improve detection rules, refine security policies, and enhance overall security posture.
• Continuous Improvement: Stay updated on the latest threat hunting techniques, tools, and best practices, and continuously improve the threat-hunting process.
• Additional security operations duties as requested.

Qualifications

Technical Skills

• Strong conceptual understanding of how computers, operating systems, and networks interact in an enterprise setting.
• Experience with security monitoring tools and security analysis tools.
• Experience integrating cyber threat intelligence into security operations.
• Ability to clearly document an investigation plan and findings.
• Knowledge of malware analysis, digital forensics, or reverse engineering is a plus.
• Certifications such as GIAC Certified Forensic Analyst (GCFA) or similar considered an asset.
• Proficiency in Jupyter Notebooks or a willingness to quickly learn and apply the tool is a plus.

Durable Skills

• Strong analytical and pragmatic problem-solving abilities.
• Excellent business communication skills, both written and verbal.
• Ability to work independently and as part of a team.
• Consistent attention to detail.
• Commitment to staying ahead of emerging threats.
• Experience working in a Security Operations Center (SOC) environment.

Who is Orrick?

Orrick is a global law firm focused on delivering innovative solutions for four sectors: Technology & Innovation, Energy & Infrastructure, Finance and Life Sciences & HealthTech. Founded more than 150 years ago in San Francisco, Orrick today has offices in 25+ markets. We are recognized globally for delivering the highest-quality legal advice and for our culture of innovation and collaboration.

Compensation and Benefits

Orrick is committed to providing a comprehensive, competitive, and thoughtful total compensation package to our attorneys and staff, wherever they work. This compensation and benefits information is based on the Orrick’s estimate as of the date of publication and may be modified in the future. The level of pay within the range will depend on a variety of job-related factors that may include, but not limited to, qualifications, relevant experience or education, particular skills or expertise, geography. Other compensation may include an annual discretionary merit bonus, which would be determined by Firm and individual performance.

We offer a full range of elective health benefits including medical, dental, vision and life; robust mental well-being programs; child, family, elder, and pet care benefits; short- and long-term disability and industry leading parental leave benefits, health savings account contributions (w/applicable medical plan), flexible spending accounts, and a 401K program. This role will receive compensated time off through our Paid Time Off program, and paid holidays.

Please visit www.orrick.com for more information about the firm.

How to Apply

If you are searching for a chance to create an impact, you have a little grit and you love working with a team, we want to talk with you. To submit your resume and cover letter for this position, please visit our Staff and Paralegal Opportunities Listings at www.orrick.com/Careers. Orrick accepts applications for this position on an ongoing basis, until filled.

We are an Equal Opportunity Employer.

Consistent with the SF Fair Chance Ordinance, an arrest and conviction record will not automatically disqualify a qualified applicant from consideration.

Qualified applicants with criminal histories will be considered for the position in a manner consistent with the requirements of the Los Angeles Fair Chance Initiative for Hiring.

Key skills/competency

• Threat Hunting
• Incident Response
• Security Operations
• Data Analysis
• Threat Intelligence
• Network Security
• Endpoint Security
• Scripting & Automation
• Malware Analysis
• Digital Forensics