It’s more than what you do: it’s how you do it. That’s why O’Melveny is counsel of choice to an ever-expanding list of market leaders. Opportunity at O’Melveny means working alongside diverse, dynamic, and team-oriented colleagues on evolving issues and opportunities for prominent clients around the world. It’s a place to build a rewarding career by tackling new challenges; being appreciated, included, and supported; and creating lasting connections.
With approximately 850 lawyers on three continents, more than 40 practice and industry service areas, and strong cultural ties to all our locations, O’Melveny is a global law firm with a local feel. At our core, you’ll find a dedication to excellence, a drive to lead and innovate, and a deep sense of civic responsibility. We’re proud to have ranked among the Top 3 “Best Law Firms To Work For” in Vault’s Law Firm Rankings for eight consecutive years.
O’Melveny is seeking an Information Security Analyst with a passion in Information Assurance to help us improve our program. The Information Security Analyst provides active defense through event collection and review, threat hunting, vulnerability assessment, malware analysis and remediation of potential security related events and incidents. This position is remote.
Responsibilities include, but are not limited to:
Proactive threat hunting with SIEM, log collection, parsing, enrichment, and normalization technologies.
Perform advanced packet analysis (such as the ability to read and extract relevant information from a PCAP).
Intrusion Kill Chain familiarity, including common delivery, exploit and post-exploitation attacks such as privilege escalation techniques in Windows.
Utilizing deception technology to increase detection capabilities.
Long Tail analysis.
Assists in the management of security technology processes and solutions, which include endpoint protection, vulnerability management, content filtering, and intrusion detection systems.
Participate in the security design and management of the Firm’s network infrastructure.
Assist with management of perimeter security, including next-gen firewalls and DMZ.
Participate in various training programs for IT staff regarding security controls and disciplines.
Conducts incident detection, response, containment, eradication and recovery across IT systems, including identifying and handling suspicious files, static and interactive malware analysis, developing response processes (particularly with automation and orchestration), monitoring events, summarizing, and reporting findings.
Check server and firewall logs, network traffic, establishing and updating virus scans, and troubleshooting.
Analyze, report, and resolve as appropriate the findings from vulnerability scans, and penetration tests.
Conduct user activity audits and perform internal forensic review when required.
Stay abreast of current technologies, security compliance requirements, standards, industry trends, and current attack techniques.
The ideal candidate will:
Qualified applicants should have current experience across a broad spectrum of data security disciplines, including Microsoft solutions and infrastructure and intrusion detection and prevention.
Familiarity with OSQuery, Zeek/Bro, Sysmon, WEF, Wireshark, Process Monitor, and RITA.
Must have strong PowerShell scripting abilities.
Familiarity with C#, Bash, and Python desired.
Strong background with firewall products, IDS, IPS, DMZ, IPSec, DNS, SMTP, HTTP proxies, etc. is desired.
Knowledge of security best practices across multiple platforms, including Linux, Windows, VMWare, and Cisco IOS.
GCIA, GCDA, GCED, GCIH, GCFA, or GNFA certification preferred and OSCP is also desirable.
Knowledge of public-key cryptography, understanding of encoding, encryption, and hashing techniques.
Strong verbal and written communication skills are required, including the ability to communicate security risks to both IT administrators and non-technical staff.
Candidate should be able to effectively interact with all levels of staff.
Candidates must be internally motivated and self-driven for excellent results.
Must have strong leadership skills, providing project leadership as needed, as well as excellent written and verbal communication skills.
The ability to work in a team or work independently on complex tasks with minimal technical and management guidance is required.
Must be able to meet deadlines and deliver status updates to project team on a frequent basis.
Bachelor’s degree from an accredited university in CS, IT, CIS, or a computer related field is desired.
Professional certifications will weigh in the candidate’s favor.
Candidates must be internally motivated and self-driven for excellent results. Must have strong leadership skills, providing project leadership as needed, as well as excellent written and verbal communication skills. The ability to work in a team or work independently on complex tasks with minimal technical and management guidance is required. Must be able to meet deadlines and deliver status updates to project team on a frequent basis.
We offer an excellent salary and benefits package. For more information, or to be considered for this position, please apply online at www.omm.com. Response will be given to candidates who closely meet our qualifications. EOE M/F/D/V. No phone inquiries please.
It’s more than what we do: it’s how we do it. Across sectors and borders, in boardrooms and courtrooms, we measure our success by our clients and employees. And in our interactions, we commit to making the O’Melveny experience as satisfying as the outcomes we help you achieve. Our greatest accomplishment is ensuring that our clients never have to choose between premier lawyering and exceptional service.
With approximately 800 lawyers on three continents, and strong cultural ties to all our locations, O’Melveny is both local and global—an international law firm experienced in everything from the fine print of a municipal zoning law to the intricacies of an international infrastructure deal. At our core, you’ll find a dedication to excellence, a drive to lead and innovate, and a deep sense of civic responsibility. So, tell us. What do you want to achieve?