Senior Security Engineer

Wilson Sonsini is the premier legal advisor to technology, life sciences, and other growth enterprises worldwide.

We represent companies at every stage of development, from entrepreneurial start-ups to multibillion-dollar global corporations, as well as the venture firms, private equity firms, and investment banks that finance and advise them.

The firm has approximately 1, attorneys in 17 offices: 13 in the U.S., two in China, and two in Europe.

Our broad spectrum of practices and entrepreneurial spirit allow our staff exceptional opportunities for professional achievement and career growth. The firm is actively seeking a Senior Security Engineer to join the IT team.

This position, under the direction of the Director of Security Engineering and Operations, is responsible for managing the Firm's information security systems and processes, enforcing security policies, managing the security threat lifecycle, analyzing and responding to security events escalated by the Security Operations Center (SOC), and coordinating actions to limit risks identified through automated systems.

The Senior Security Engineer provides expertise in security engineering, incident response, and risk management. This position is available as a hybrid work schedule.

1. Provide subject matter expertise in information security related to networks and systems.
2. Manage the Firm's security technology including anti-virus, vulnerability scanning, intrusion detection, content filtering, and insider threat systems.
3. Review security events from monitoring environments and escalated incidents, following defined response processes.
4. Coordinate deployment of security patches and updates for operating systems and applications.
5. Monitor venues for security threats and provide notifications for mitigation actions.
6. Manage evaluations of the firm's environment by external third parties and produce recommendations aligned with business needs.
7. Maintain knowledge of client security needs and implement measures accordingly.
8. Stay updated on emerging security technologies and developments.
9. Design and build scalable operational environments for security products.
10. Support troubleshooting and provide security consulting to other teams.
11. Perform other duties as assigned and ensure compliance with company policies.

• 5+ years of experience in Information Security.
• Certifications such as GIAC, CISSP, CISM, CEH, or CIPPE required.
• Extensive knowledge of security controls and technologies, including SIEM, IDS/IPS, PKI, IDAM, antivirus, firewalls, EDR, threat intelligence, automation, and deception technologies.
• Experience with wireless security, network monitoring, design, Windows security, database security, routing, and incident management.
• Knowledge of cloud computing (SaaS, IaaS, PaaS) in various environments.
• Excellent communication skills and proficiency in MS Office.
• Ability to work under pressure, independently, and meet deadlines.

The primary location for this role is Washington, D.C., with other locations possible. The actual salary depends on qualifications, experience, education, certifications, and location. The pay range varies by city, and a discretionary year-end bonus may be offered.

We offer competitive salaries and benefits. Benefits information can be found here.