Senior Information Security Analyst

DLA Piper is, at its core, bold, exceptional, collaborative and supportive.  Our people are the backbone, heart and soul of our firm.  Wherever you are in your professional journey, DLA Piper is a place you can engage in meaningful work and grow your career.  Let’s see what we can achieve. Together.

Summary

The Senior Information Security Analyst is responsible for identifying, investigating, and addressing both internal and external threats. This position requires a deep understanding of various threats, attacks, and malware to develop effective detection and protection measures for the enterprise. The position will collaborate with the IT department to maintain security controls, which includes tuning detection systems, updating control policies, and automating processes. Additionally, this role involves directly managing relationships with our security operations vendors and providing technical leadership and mentorship to a team of security analysts. This position plays a critical role in driving initiatives for advanced threat detection, incident response, and vulnerability management, which are vital for maintaining a proactive and robust security posture. The ideal candidate will combine extensive technical expertise in Security Operations (SecOps) with proven leadership skills, enabling them to enhance our security strategy and effectively respond to the evolving threat landscape.

Location  

This position can sit in our Baltimore, Reston, or Washington, DC office and offers a hybrid work schedule.

Responsibilities  

• Mentoring and guiding Information Security Analysts.

• Responsible for evaluating the effectiveness of and improving various information security program functions at the Firm.

• Reviewing Security Incident and Event Management (SIEM) systems, which includes regular reporting of metrics and summaries regarding ongoing investigations and ticket tracking,

• Performing alert triage, which involves investigating and analyzing security incidents, identifying root causes, and developing appropriate mitigation strategies.

• Ensuring effective Endpoint Threat Detection, including EDR capabilities, traditional antivirus, asset management, and familiarity with baseline and configuration management tools.

• Managing Next Generation Firewalls and/or Intrusion Detection/Prevention Systems (IDS/IPS).

• Engaging in Threat Hunting and utilizing Threat Intelligence.

• Utilizing malware sandbox technologies and interpreting the results.

• Overseeing Incident Response tools, processes, and capabilities.

• Possessing experience or a deep understanding of vulnerability and configuration management.

• Conducting independent project work.

Desired Skills   

Communication Skills: Proficient in both verbal and written communication, with the ability to convey technical information to non-technical audiences. Analytical Skills: Strong analytical abilities with a keen attention to detail, essential for identifying and addressing security events. SIEM Proficiency: Skilled in identifying, triaging, and analyzing security events using Security Information and Event Management systems. Incident Response Knowledge: Deep understanding of incident response processes and methodologies. Scripting Experience: Familiarity with scripting languages to automate security operations and enhance the incident response process. Attacker Methodology: Demonstrated understanding of the methodologies used by attackers, which supports proactive defense measures. Intrusion Detection: Solid grasp of intrusion detection systems, AI-based attack detection and prevention strategies, and SOC (Security Operations Center) operations. Cloud Security: Knowledge of cloud infrastructure and security considerations in a cloud environment. Core Infrastructure Knowledge: Familiarity with core infrastructure components such as DNS, Active Directory, and Exchange. Security Tools Experience: Prior experience with security tools like Microsoft Defender, CrowdStrike, and Palo Alto Networks is desirable. Professional Services Background: Experience in professional services sectors such as legal, finance, or consulting is preferred. These competencies are critical for effectively managing security operations and responding to incidents in a dynamic environment.

Minimum Education   

• Bachelor's Degree in Information Security, Cybersecurity or similar fields.

Preferred Education 

• Master's Degree in Information Security, Cybersecurity or similar fields.

Certificates

• Professional-level industry certification (e.g. CISSP, GIAC, SANS, etc.) preferred.

Minimum Years of Experience  

• 7 years of experience working within Cybersecurity field

Essential Job Expectations

While the specific job requirements of a DLA Piper position may vary depending upon scope of the job and area of specialty, there are certain universal requirements that are expected of all DLA Piper employees, which include but are not limited to:   

• Effectively communicate, verbally and in writing, with clients, lawyers, business professionals, and third parties.

• Produce deliverables, answer phone calls, and reply to correspondence in an efficient and responsive manner.

• Provide timely, accurate, and quality work product.

• Successfully meet deadlines, expectations, and perform work duties as required.

• Foster positive work relationships.

• Comply with all firm policies and practices. 

• Engage in both physical and sedentary activity, such as (a) working at a computer for extended periods of time, including on-screen reading and typing; (b) participating in digital/virtual conference calls; (c) participating in meetings as needed.

• Ability to work under pressure and manage competing demands in a fast-paced environment.

• Perform all other duties, tasks or projects as assigned.   

Our employees are expected to embrace and uphold our firm values as a part of our DLA Piper culture. We are committed to excellence in how we represent our clients and develop our people.   

Physical Demands

Sedentary work: Exerting up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met.   

Work Environment   

The individual selected for this position may have the opportunity for a hybrid work arrangement comprised of remote and in-office work, the requirement for which will be determined in coordination with the hiring manager or supervisor and may be modified in the firm’s discretion in the future.

Disclaimer   

The purpose of this job description is to provide a concise statement of the work elements and to organize and present the information in a standardized way. It is not intended to describe all the elements of the work that may be performed by every individual in this classification, nor should it serve as the sole criteria for personnel decisions and actions. The job duties, requirements, and expectations for this position may be modified at the Firm’s discretion at any time. This job description does not change the at-will nature of employment.

Application Process    
Applicants must apply directly online instead of sending application materials via email.
 

Accommodation   

Reasonable accommodations may be made upon request to permit individuals with a disability to perform the essential functions and responsibilities of the position or to participate in the job selection process. If you have a request for an accommodation during the application process, please contact careers@us.dlapiper.com.

Agency applications will not be considered.    

No immigration sponsorship is available for this position.   

The firm’s expected hiring range for this position is $92,637 - $144,364 per year depending on the candidate’s geographic market location.

The compensation offered for employment will also be dependent on other factors including the candidate’s experience, skills, educational and professional background, and overall qualifications. We offer a comprehensive package of benefits including medical/dental/vision insurance, and 401(k).

#LI-KS1

#LI-Hybrid

DLA Piper is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Job applicant poster viewing center.