Information Security Analyst

Overview

Nelson Mullins, an AmLaw 100 law firm, is seeking an Information Security Analyst to join its Information Technology group in Columbia, SC. As the Information Security Analyst I, you’ll be at the forefront of safeguarding the Firm’s critical information assets. Your expertise will drive the implementation and management of cutting-edge security controls, ensuring compliance, and responding to emerging threats. In this dynamic role, you’ll actively enhance the Firm’s security posture while keeping a pulse on evolving risks, technologies, and vulnerabilities.

A Day in the Life

We are seeking a dedicated Information Security Analyst to oversee and enhance the firm’s security framework, ensuring a safe and resilient environment. The role involves developing and maintaining security plans, procedures, and checklists while implementing and managing tools such as firewalls, encryption software, and anti-virus programs to protect sensitive data. You will play a key role in incident management and response, handling email security and Data Loss Prevention (DLP) systems, investigating breaches, and executing incident response protocols with precision.

This position requires expertise in compliance and risk management, ensuring adherence to industry standards such as ISO 27001:2022, SOC II, and HIPAA, and monitoring for security variances while recommending and implementing improvements. A focus on vulnerability management is critical, including identifying, assessing, and prioritizing vulnerabilities, collaborating with teams on remediation strategies, and maintaining an ongoing management process.

The Information Security Analyst will also stay ahead of emerging threats and industry trends, implementing strategies to mitigate risks and assessing third-party security risks to maintain robust defenses. Effective collaboration and communication are essential, as this role involves integrating security into project designs, resolving security tickets, and managing user requests with efficiency and professionalism. If you are passionate about creating a secure digital environment and thrive in a collaborative setting, we encourage you to apply.

We Know You

The ideal candidate should have at least two years of experience in IT system or security administration, with a solid understanding of security tools. Proficiency in Active Directory, Microsoft Entra, Office 365, Defender, and NIST 800-53 standards is required, along with an accredited security certification such as Security+. A strong foundation in network security, encryption, key management best practices, and vulnerability management tools is essential. Additionally, candidates must possess excellent analytical skills to proactively identify and address security issues and vulnerabilities.

• Experience with scripting and automation (PowerShell/Python)
• Familiarity with any the following:  ServiceNow, MS Flow, Nmap, Qualys, Smartsheet
• Experience using KQL (Kusto Query Language).

Who We Are

With more than 1,000 attorneys, policy advisors, e-discovery professionals and other business professionals, Nelson Mullins has strong roots in the business community and an appreciation for new directions in the business world. As a Firm, Nelson Mullins has a strong foundation of community service and good citizenship. Our professional staff teams likewise promote these values, with opportunities to participate and play roles in various pro bono and community service initiatives. We collaborate with each other and with our clients, working side-by-side towards shared goals.