Security Engineering Analyst
Job Description
We have an exciting opportunity for a Security Engineering Analyst to join the growing Information Security team in Belfast.
The firm's ability to keep our clients' data secure is a bedrock for our reputation as a trustworthy professional services partner to many of the world's large and prestigious organisations. Information security is not an afterthought; it is core to all that we do, to protect not only our data but that of our clients, and has the unwavering support of the Board.
The in-house Information Security team is a core part of our technology services structure with mature or evolving capability across all areas of digital security and cyber defence. We align our efforts to the NIST framework and other recognised certifications including ISO27001 and SOC2 and strive to keep pace with the continually evolving threat landscape, in support of A&O Shearman's strategy to lead where global complexity creates opportunity.
In addition, you will have the opportunity to share and gain intel from the firm's cybersecurity lawyers. The global team have experience advising clients on hundreds of incidents. Leveraging this experience, they feedback practical lessons learned into clients' cyber risk management and incident response programmes.
What you will do
The Security Engineering Analyst is a key member of the firm's Information Security team, responsible for supporting the design, implementation, and maintenance of the firm's security infrastructure. This role ensures that new capabilities and features are integrated securely into the firm's systems. It involves a combination of hands-on engineering tasks and active participation in incident response, risk assessments, and the ongoing enhancement of security operations.
- Assist in the implementation, and maintenance of secure infrastructure across the technology estate
- Manage and optimise the Security Information and Event Management (SIEM) and Security Orchestration, Automation and Response (SOAR) platforms
- Monitor and resolve issues with the core technology stack.
- Security Consultation and Collaboration
- Provide security engineering advice and consultation across all levels of the firm, with support from senior Security Engineering colleagues.
- Work closely with IT, MSSPs, and other internal teams to align global security efforts and ensure consistent implementation of controls.
- Automation and Operational Efficiency
- Support the automation and orchestration of security processes to enhance efficiency and reduce manual workload.
- Track and report on key performance indicators (KPIs) and metrics to evaluate the effectiveness of security controls and identify areas for improvement.
- Security Architecture and Strategic Development
- Contribute to the development of a best-in-class security architecture in collaboration with senior Security Engineering staff and external vendors.
- Assist in delivering the strategic roadmap for security engineering that aligns with broader business and IT objectives.
- Monitor the progress of ongoing projects involving Security Engineering to ensure alignment with strategic goals.
- Incident Response and Vulnerability Management
- Support the enhancement of monitoring capabilities in collaboration with the broader Information Security team.
- Coordinate with Cyber Defence Operations and other teams to investigate and respond to security incidents.
- Participate in incident response activities, including technical analysis, implementation of fixes, and post-incident reviews.
- Collaborate with Vulnerability Management teams to remediate identified vulnerabilities and improve the firm's security posture.
What you will have
- Ideally 3+ years of hands-on experience in information security or technology, with a portion of that time spent in a Security Engineering or similar technical security role.
- Strong understanding of networking and routing protocols (e.g., TCP/IP) and core services (e.g., DNS, SMTP).
- Operational experience in multiple of the following areas:
- - SIEM
- - SOAR
- - Detection rules, usecases and Playbooks
- - Ansible
- - Firewall IDS/IPS
- - Windows / Linux OS
- - Cloud Security / CNAPP
- - AWS / Azure
- Highly analytical mindset with strong problem-solving abilities; capable of interpreting data flows, assessing security events, and drawing logical conclusions.
- Excellent written and verbal communication skills, with the ability to collaborate effectively across both technical and non-technical teams.
- Demonstrated commitment to continuous learning and professional growth in cyber security, with a strong interest in staying current with industry trends, threats, and technologies.
- High level of personal integrity and ethical standards, with sound judgment in high-pressure or sensitive situations.
You will stand out if you bring
- Bachelor's degree in Information Security, Computer Science, Engineering, Technology, or a related field.
- Industry-recognised certifications such as:
- CISSP (Certified Information Systems Security Professional)
- CEH (Certified Ethical Hacker)
- CISM (Certified Information Security Manager)
- CompTIA Security+
- Practical experience with programming or scripting languages, particularly:
- Python
- PowerShell
What we can offer you
We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services.
We recognise the value of flexible working and embrace hybrid working, allowing our people to work from home up to 40% of their working time. We do, however, remain committed to working together in person for the remaining 60% of time so that we can learn, grow and succeed together.
Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic.
If this role is not of interest we may have another suitable opportunity here for you at A&O Shearman! Visit our careers portal at A&O Shearman Careers and submit your CV to our Talent Network to be notified when the perfect opportunity becomes available.