Nashville, Tennessee

Job Description

The Sr Cyber Security Risk Analyst will be is responsible for leading one of three Centers of Excellence’s (Threat Detection, Investigation, Response; Application Security, Network & IAM) activities at a law firm in Nashville, TN. Reporting to the Director of Security and Continuity, the senior analyst will serve as the technical information security expert and as a contributor to cross-functional teams for support of security-specific infrastructure enhancements. The primary objective of this role is to manage cybersecurity operations and monitoring.

The successful candidate will have deep cybersecurity and technology knowledge and will be collaborative in nature due to the cross-functional nature of the work. They will be asked to act as a subject matter expert (SME) who can contribute to internal and external dialogues on cyber security, as well as creating reporting, documenting processes and procedures necessary to run the area. The ideal candidate experience with cloud security IAM, endpoint security, cyber incident response, security logging and monitoring,

Responsibilities include:

• Developing, implementing and managing functions within their Center of Excellence including configuration management, tuning, and the ability to take risks/threat intelligence and partner with relevant areas to remediate
• Monitoring and analyzing security events, alerts, and logs in real-time, and responding to security incidents as per the incident response plan
• Coordinating incident investigations, including the collection and preservation of evidence, and providing incident reports to relevant stakeholders
• Developing and maintaining incident response plans and procedures
• Continuously evaluating and improving the organization's security posture
• Collaborating with other IT and business teams to ensure timely response to incidents and vulnerabilities
• Keeping up-to-date with the latest cybersecurity trends and developments
• Providing regular reports on security risks, incidents, and response efforts to senior management
• Establishing appropriate safeguards, protocols, and response to any data breaches
• Providing training and guidance to staff on incident management, threat intelligence, and incident response best practices
• Create reporting KPI’s for their CoE

Qualifications:

• A Bachelor's degree in a related field or equivalent experience
• Minimum of 5 years of experience in cybersecurity, with experience in a law firm setting preferred
• Proven experience in incident management and incident response
• Strong knowledge of incident response, threat intelligence, and cybersecurity best practices
• Certifications such as GCIH, GCIA, CISSP, CISM or related security certifications is a plus

Pillsbury Winthrop Shaw Pittman LLP is an Equal Opportunity Employer.

If you require an accommodation in order to apply for a position, please contact us at [email protected].