Applications Security Engineer

Who We Are

At Benesch we pride ourselves on exceeding expectations and building trust not only with our clients but with our employees - Benesch's #1 asset. Committed to providing not only the highest level of legal service to our clients, Benesch also aspires to create a positive work environment for our employees. Our Firm continues to earn placement on Chicago and Cleveland's Top Workplaces list, along with Cleveland's NorthCoast 99 Top Workplaces rankings. We also continue to advance on the AmLaw 150 list, placing us among the top 150 law firms in the country.

Benesch is proud to be recognized for being a Firm that attracts and retains top talent - making Benesch a great place to work. We offer a hybrid schedule, career development and growth, transparent and visible leadership teams, and a place where diversity, equity and inclusion is celebrated. In addition, the Firm offers a full array of benefits which can be viewed at www.mybeneschbenefits.com.

Working with Us - Come and "Be Benesch!"

Want to know more? To hear from some of our team, click here: https://www.beneschlaw.com/careers/index.html

Benesch is proud to announce the opening for an Applications Security Engineer in our Cleveland office! This position is hybrid and has work from home flexibility.

Position Summary:

Do you have a passion for cybersecurity? Do you thrive on creating security measures to prevent attacks on a company's infrastructure? Do you enjoy writing policies and procedures to ensure security matters are followed? Then you may be interested in our Applications Security Engineer position. This role is perfect for the individual looking to play a crucial role in Benesch's cybersecurity initiatives.

The Applications Security Engineer plays a crucial role in the Firm's cybersecurity initiatives. This role works closely with the IT team to assist in the architecture, implementation, monitoring, and maintenance of security measures across the Firm's network infrastructure, applications, and systems. This should be informed by research, assessments, client guidelines, cyber insurance requirements, and business priorities. Primary responsibilities include: monitoring security events, conducting vulnerability assessments, responding to security incidents, mentoring and advocating for cybersecurity and policy adherence, and assist in developing and implementing security standards and best practices within the Firm.

Essential Functions:

1. Assists in monitoring and investigating the Firm's various security systems, including firewalls, IDS/IPS systems, and hosted SOC SIEM solution.


2. Conducts regular vulnerability assessments of outside vendors.


3. Collaborates with the IT team to ensure compliance with security policies, procedures, and industry best practices.


4. Leads in the recommendation, deployment, and maintenance of security technologies, such as NAC, SIEM, Microsoft Purview, endpoint protection, encryption, and access controls.


5. Researches and identifies cyber-attack methods and attack patterns which pose risk to the company and the requisite policies to recommend to management.


6. Develop and enforce security standards and best practices within the Firm.


7. Responds to and investigates security incidents, providing timely incident reports and recommendations for improvement.


8. Participates in security awareness training programs for staff, promoting a culture of cybersecurity awareness and best practices.


9. Develops custom scripts and automation techniques to reduce repetitive or inefficient processes related to cybersecurity and application maintenance.


10. Assists in the development and maintenance of disaster recovery and business continuity plans.


11. Stays up-to-date with the latest cybersecurity trends, threats, and industry best practices.


12. Maintains and assists in testing critical cyber security policy areas such as Incident Response, Business Continuity, Disaster Recovery, and Vulnerability management. Continually improves methodology to aid in improvement of hybrid infrastructure as well as application and integration configurations.


13. Maintains documentation and metrics to support internal and external audits, assessments, reviews, partnerships, and other engagements to support compliance objectives.


14. Participates in planning, documenting, and responding to penetration testing. Leads firm-initiated penetration testing and consults on 3rd party internal/external pen tests and formulates remediation plans.


15. Documentation and assessment of firm-wide hybrid application integration points and data relationships as it pertains to security.


16. Performs other duties as assigned.

Confidentiality:

Due to the nature of your employment, various documents and information, which are of confidential nature, will come into your possession. Such documents and information must be kept confidential at all times.

Qualifications:

In addition, the Applications Security Engineer should possess strong analytical and problem-solving skills, whilst being able to work independently with minimal supervision. This is in conjunction with excellent communication and interpersonal skills and the ability to work collaboratively in a team environment. This role requires integrity and professionalism, as well as a solid understanding of confidentiality in in a legal environment. A demonstrated ability to present security findings with technical staff as well as non-technical colleagues and management is essential, in addition to being able to clearly synthesize and communicate complex topics.

Benesch is an equal opportunity employer. We strongly value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability (where applicant is qualified to perform the essential functions of the job with or without reasonable accommodations), medical condition, protected veteran status, gender identity, genetic information, or any other characteristic protected by federal, state, or local law.

Applicants who are interested in applying for a position and require special assistance or an accommodation during the process due to a disability should contact the Benesch Human Resources Department by phone at 216-363-4578 or email at cwatson@beneschlaw.com.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities