Security Engineer in England

At BCLP, we’ve built our firm on the foundations of thinking differently. Curious, inquisitive and unbound by tradition, we’re building change within our sector and beyond. It starts with our people, which is why we’re looking for a Security Engineer to join our Technology team in London or Manchester. Reporting to the Information Security Manager, you will play a critical role in ensuring the security and integrity of our information systems and data. This position acts as a technical subject matter expert across multiple IT areas and serves as a resource for other teams, with specific expertise in firewall operations, load balancing configuration, XDR operations, and vulnerability management systems.

Responsibilities

• Manage and monitor Intrusion Detection Systems (IDS) and Intrusion Prevention Systems (IPS) to identify and mitigate potential threats.
• Develop, implement, and enforce information security policies and procedures to protect the firm’s data and Technology infrastructure.
• Administer and maintain Virtual Private Networks (VPN) to ensure secure remote access for employees.
• Investigate and resolve potential security issues, participate in incident response initiatives, and respond to security-related alerts promptly.
• Oversee the vulnerability assessment program, ensuring all network devices are maintained with the most current patches and updates.
• Manage and secure cloud-based systems to protect against unauthorized access and data breaches.
• Perform regular vulnerability testing and security assessments to identify and address potential security risks. Participate in external security assessments as required by clients.
• Continuously monitor security alerts and logs to detect and respond to threats in real-time.
• Manage network security problem resolution, including assisting other members of Technology in reviewing and resolving security related problems.

Additional Requirements

• Develop requirements for firewalls and related security technologies.
• Research new architectures and technologies.
• Take the lead in recommending new technologies, processes, and practices that will maintain or increase operational efficiencies and maintain required security certifications.
• Provide expertise in all technologies used by the department.
• Propose, collect, and report on Key Performance Indicators and measures of systems security.
• Prepare and maintain security related documentation.
• Follow department policies and procedures including change management procedures.
• Make recommendations on improvements to procedures.
• Perform other duties and responsibilities as requested.
• Ability to deal professionally with both internal and external clients on all levels.

Essential Experience and Qualifications

• Minimum of 5 years of experience in information security engineering or a related field.
• Hands-on proficiency with Palo Alto suite of products.
• Strong experience with Tenable vulnerability management solutions.
• Experience in managing security for cloud-based systems.
• Excellent problem-solving skills and the ability to think critically to resolve complex security issues.
• Strong verbal and written communication skills to articulate security issues and solutions effectively.
• Ability to work collaboratively with other Technology team members and departments to ensure comprehensive security measures are in place.
• Relevant certifications such as CISSP, CISM, CEH, or equivalent are preferred but not required.

Additional Requirements (continued)

• Must be available for on-call duties as part of the incident response team.
• Strongly service-oriented with enthusiasm for the challenges of providing services and resources in a large, multi-office law firm setting.
• Ability to be flexible and adaptable to support priorities and strategies of the firm; ability to spot value-add opportunities to the firm.

Travel

This position requires intermittent travel domestically and internationally.

EEO Statement

At BCLP we understand the value of a diverse workforce and we believe people perform at their best when they can truly be themselves at work. We aim to create an inclusive environment where all our employees are valued, motivated and able to be themselves. In order to provide the best possible service to our diverse client base, we are committed to recruiting, retaining, rewarding and developing our people with regard to their abilities and contributions and without reference to their background, gender, gender identity or expression, ethnic origin, age, religion, sexual orientation, socio-economic status, political belief, disability or any other protected characteristic.