We are looking for a high-performing individual looking to advance their career in our Global Information Security Team. Information Security Operations Associate contributes to Morae's success by developing, implementing, and maintaining technical safeguards and controls deployed globally against unauthorized access to, use, disclosure, modification, damage, or loss of company systems and data. As a technical Information Security team member, the Security Operations Associate will contribute to developing Moraes Cyber Security Operations and Technology. The Information Security Operations Associate will be a member of a team of skilled Security Professionals responsible for implementing and maintaining our cyber security monitoring and response toolset as well as a global set of process and technology-oriented controls to implement a standardized and optimized security approach. The role will be responsible for cyber security incident response, security toolset improvements, security incident reporting, threat monitoring, and participating in the “blue team” during penetration testing exercises. The role will partner with wider Information Security GRC, IT Infrastructure, Technology, EUC support, business, and product teams to maintain and improve technical tools, set of controls and incident response process.
Responsibilities:
-
Security Operations
-
Performs both (1) Business as usual and (2) Project activities related security operational process and toolset – including information, cyber and physical.
-
Asset Management & Vulnerability monitoring, prioritization, and reporting
-
Security Incident Management Process implementation & monitoring
-
Security Event & Incident Management technology implementation & monitoring
-
XDR/MDR Implementation & monitoring
-
IAM/MFA/Identity/Zero-Trust/Conditional access implementation & monitoring
-
Security Awareness/Phishing Simulation Management
-
DLP/Data Classification/Information Protection
-
Email Filtering and Protection o External Threat Monitoring
-
Red/Blue Team Exercises & external Penetration testing support
-
Participates in Security Project activities related to implementation of Security Operations
-
Provides input to security risk analysis, mitigation, and remediation plans.
-
Communicates information security incidents & response activities with IT & business.
-
Provides insights and recommendations for improving and optimising security operations and processes.
-
Conducts application security reviews and recommend improvements.
-
Assists the development of security operations standards and procedures.
-
Supports appropriate and effective security operations metrics, reporting, and maturity levels.
-
Supports ISO & SOC 2 Compliance oriented technical control set operations.
-
Together with the wider Information Security & Technology team, implements and oversees technological upgrades, improvements, and major changes to the security environment.
-
Identifies and classifies security risks related to new implementations or existing infrastructure and application solutions and provision of remediation guidance.
-
Recommends solutions for managing and improving current technology architecture vulnerabilities and weaknesses.
-
Conducts Research, monitoring and analysis of trends related to cybersecurity.
Why Morae?
Morae’s approach to employee development is unique in the marketplace. At Morae, employees are given opportunities to progress at their own pace and to influence the course of their professional growth. This includes earning a client-facing role or even an oversight role within their first year!
About Morae:
Morae is a dynamic, high-growth organization that provides an integrated suite of solutions to corporate law departments, law firms, and partners with leading software and services providers within and outside the legal industry. We are a young company but are made up of seasoned professionals in the legal industry, with a focus on building productive long-term relationships with employees and clients in an environment where collaboration is encouraged, knowledge is shared freely, and diversity of thought, cultures, communities, and points of view is embraced. Our team has the vision to create an effective solution for any business problem and the experience to execute that vision. Learn more at moraeglobal.com. Our privacy policy can be found here https://www.moraeglobal.com/privacy-policy.
