Senior Information Security Analyst

Practice Group / Department:

Job Description

We're Norton Rose Fulbright - a global law firm with over 50 offices and 7,000 employees worldwide. We provide the world’s preeminent corporations and financial institutions with a full business law service. At Norton Rose Fulbright, our strategy and our culture are closely entwined. We know that our expansion will mean little unless it is underpinned by truly global collaboration and we understand that pioneering work only takes place when our people have room to move and think beyond boundaries. As well as the relevant skills and experience, we're looking for people who are innovative, commercial and value the work that they do. 

The Role

The Senior Information Security Analyst is one of several such Analyst roles in the firm. Each Analyst is responsible for assisting with the day to day operation of CISO office tasks. Analysts are also encouraged to participate in proactively identifying sources of vulnerability and threat.

The role will be part of a worldwide team that is empowered to operate the activities within their assigned function. Daily activities will focus heavily on request, event and incident management and direction will be provided by the Information Security Manager.

Norton Rose Fulbright is committed to the professional development of its staff. There will be significant development opportunities for the Senior Information Security Analyst role, both through on-the-job learning and targeted training. The CISO team also embrace a mentoring and meritocratic approach.

The success of this role is dependent upon building a lasting alignment between information security provisions and business requirements. In particular, the role must consider:

• The special requirements of the Firm with regard to client confidentiality, as well as regulatory requirements such as data protection.
• Achieving a balance between protecting the firm and ensuring that users can work effectively; being pragmatic but cognizant of risk.

Key Responsibilities

• Act as a champion for Information Security best practice and policies.
• Act as an intermediate escalation point and technical mentor for other members of the analyst team.
• Operate and manage security incidents and requests to SLA guidelines.
• Review, action, and escalate, any unusual event behaviour identified.
• Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents.
• Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm’s confidentiality and integrity.
• Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training.
• Work cooperatively with project teams to ensure that new project and changes adhere to Information Security policies and governance standards.
• Identify threats and vulnerabilities.
• Keep a technical industry awareness of security risks and exposures and proactively promote effective counter-measures.
• Configure appropriate security parameters in monitoring systems and act as a technical point of escalation for any alerted issues.
• Perform document reviews and privileged account reviews.

Key Skills and Experience

• At least 5 years’ experience working within Information Security infrastructure or vocation to move from another technical discipline.
• Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed.
• Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities.
• Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption.
• Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response.
• Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable.
• Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations.
• Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM)
• Technical bachelor’s degree or equivalent IT / Information Security experience (required)
• Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred).
• Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred)
• Experience of introducing Information Security improvement through effective deployment of technology and / or processes to move to a proactive footing in security management or demonstrating similar in current technical discipline.
• Ability to triage and remediate phishing and impersonation attacks in a timely and efficient manner as the risk dictates.
• Experience working with a service management tool.
• Familiarity with legal tech platforms (e.g., iManage, Relativity, NetDocuments) is a plus.

Personal Attributes