Information Technology

Information Security Engineer

Permanent

Friedman Williams


Information Security Engineer Philadelphia Pennslyvania

Job ID: 21412

Hybrid role in Philadelphia 
The Information Security Engineer is a hands-on technical security professional responsible for protecting the Firm’s information assets through the design, implementation, and administration of enterprise security solutions. This role partners closely with IT and business stakeholders to strengthen the Firm’s security posture across infrastructure, cloud, identity, networks, and data while supporting security operations, risk management, and incident response. The ideal candidate is technically curious, collaborative, and passionate about cybersecurity, with a strong desire to continuously learn and improve security processes.

Key Responsibilities

  • Engineer, implement, administer, and optimize security technologies across endpoints, networks, cloud platforms, identity, email, and data protection environments.
  • Manage and support key security platforms including next-generation firewalls, EDR, SIEM, IAM/PAM, vulnerability management, DLP, Zero Trust, and threat detection solutions.
  • Monitor, investigate, and respond to security events and incidents, participating in forensic investigations, root cause analysis, and remediation efforts.
  • Lead vulnerability management activities including scanning, risk analysis, remediation planning, reporting, and validation.
  • Conduct security risk assessments, architecture reviews, and evaluate new technologies to ensure security requirements are incorporated into system design and implementation.
  • Develop and maintain security standards, procedures, documentation, and technical baselines while supporting audits, client security assessments, and regulatory compliance initiatives.
  • Automate repetitive security tasks and improve operational efficiency through scripting and process enhancements.
  • Lead or participate in security projects and contribute to security awareness and continuous improvement initiatives.

Qualifications

  • Bachelor’s degree or equivalent experience with 4+ years of hands-on experience in security engineering, security operations, SOC, or digital forensics.
  • Strong technical expertise in multiple security domains including network security, IAM, cloud security, EDR, SIEM, Zero Trust, vulnerability management, encryption, enterprise authentication, DLP, and incident response.
  • Experience with Microsoft security technologies such as Defender, Sentinel, Entra ID, Purview, and Intune is highly desirable.
  • Knowledge of security frameworks including NIST CSF, ISO 27001, SOC 2, CIS Controls, and OWASP.
  • Experience with networking protocols including TCP/IP, SSL, SSH, HTTP, and IPSec.
  • Scripting or automation experience using PowerShell, Python, or similar languages preferred.
  • Strong communication, analytical, and problem-solving skills with the ability to translate technical risks into business impact.
  • Security certifications such as CISSP, GSEC, GCIH, CISA, Security+, or Microsoft Security certifications are preferred.
  • Experience within a law firm, professional services, or consulting environment is a plus.

send resume to tgrossman@friedmanwilliams.com 

Tagged as: Information Security Engineer