What are the responsibilities and job description for the Senior Cloud Security Engineer position at Foley & Lardner LLP?
Overview
Foley & Lardner LLP is a great place to work because of what we do and how we do it. Here, your unique perspectives, experiences, and abilities will be embraced and developed, so you can excel. Being a part of Foley means having the opportunities and resources necessary to gain experience, advance professional goals, and forge meaningful connections. It’s a place where you can build your career and enjoy professionally satisfying work. We have over 2,300 people who are #HappyatFoley, and we think you will be too.
Foley & Lardner LLP is currently seeking a Senior Security Engineer to join the Architecture team in our Information Security department. The Senior Security Engineer is responsible for engineering and implementing solutions to enhance the Firm's security infrastructure, collaborating with the Information Security team, internal IT, and business units. This role focuses on securing cloud-based environments through initiatives such as Cloud Security Posture Management (CSPM), DevSecOps practices (e.g., automated security testing in CI/CD pipelines), Identity and Access Management (IAM/IDM) administration, and participation in Information Security Architecture reviews. Key responsibilities include implementing and maintaining robust security controls for technology infrastructure and cloud platforms, while ensuring secure integration of emerging technologies, including AI systems.
The role also serves as an escalation resource for the Information Security Operations team, providing advanced expertise and support. As part of a small team, you will provide security guidance for the technology environment, aiming to mature the security control framework, develop tailored solutions for cloud workloads, and enhance overall security posture. You will act as a security advocate, advising key stakeholders on technology risk management and balancing security with business needs through effective mitigation strategies, ensuring safe adoption of cloud and related technologies.
Responsibilities
Chicago - $111,500 to $167,300
Foley offers a comprehensive benefit program which currently includes Paid Time Off; Paid Holidays; Medical, Dental and Vision insurance; 401(k) Retirement; Disability and Life insurance; Adoption Assistance; Backup Care for Dependents.
Affirmative Action/Equal Opportunity Employer/M/F/Vet/Disabled.
About Foley & Lardner
Foley is an Am Law 50 law firm consistently ranked among top-tier practices. With over 1,100 lawyers in 26 offices across the United States, Mexico, Europe, and Asia, our market-leading platform includes Corporate, Intellectual Property, and Litigation. Adding depth to our bench strength, we focus on four primary sectors: Energy, Health Care & Life Sciences, Innovative Technology, and Manufacturing. We look beyond the law to focus on the constantly evolving demands facing our clients and act as trusted business advisors to deliver creative, practical, and effective solutions.
For nearly two centuries, Foley has maintained its commitment to the highest level of innovative legal services and to the stewardship of our people, firm, clients, and the communities we serve. While respecting our roots, we’re also continuously looking to modernize all aspects of our business and elevate who we are and what we do, which keeps us focused on the future.
Foley & Lardner LLP is a great place to work because of what we do and how we do it. Here, your unique perspectives, experiences, and abilities will be embraced and developed, so you can excel. Being a part of Foley means having the opportunities and resources necessary to gain experience, advance professional goals, and forge meaningful connections. It’s a place where you can build your career and enjoy professionally satisfying work. We have over 2,300 people who are #HappyatFoley, and we think you will be too.
Foley & Lardner LLP is currently seeking a Senior Security Engineer to join the Architecture team in our Information Security department. The Senior Security Engineer is responsible for engineering and implementing solutions to enhance the Firm's security infrastructure, collaborating with the Information Security team, internal IT, and business units. This role focuses on securing cloud-based environments through initiatives such as Cloud Security Posture Management (CSPM), DevSecOps practices (e.g., automated security testing in CI/CD pipelines), Identity and Access Management (IAM/IDM) administration, and participation in Information Security Architecture reviews. Key responsibilities include implementing and maintaining robust security controls for technology infrastructure and cloud platforms, while ensuring secure integration of emerging technologies, including AI systems.
The role also serves as an escalation resource for the Information Security Operations team, providing advanced expertise and support. As part of a small team, you will provide security guidance for the technology environment, aiming to mature the security control framework, develop tailored solutions for cloud workloads, and enhance overall security posture. You will act as a security advocate, advising key stakeholders on technology risk management and balancing security with business needs through effective mitigation strategies, ensuring safe adoption of cloud and related technologies.
Responsibilities
- Work in active partnership with key stakeholders to perform security architecture risk reviews.
- Develop and implement advanced-level Cloud Security solutions.
- Support and advance the overall Information Security technology roadmap.
- Provide recommendations for advancing the Information Security program, security policies, and security control standards to enhance operational practices.
- Create and maintain Information Security standards applicable to all technologies in the portfolio.
- Provide requirement, guidance, and vision to the vendor community to cultivate the appropriate combination of technology and feature capabilities to meet current and future security requirements.
- Execute on infrastructure threat and vulnerability management processes.
- Ensure security systems are upgraded by monitoring security environment, identifying security gaps and evaluating and implementing enhancements.
- Define, develop and maintain metrics and measurements for information security controls and processes.
- Respond to security-related issues, problems, crises, and critical situations to support resolution and minimize downtime.
- Act as a senior-level point of contact for incident investigations and minor security events (e.g., unauthorized access, non-compliance with Firm policies, fraud, service disruptions, etc.) to determine malfunctions, breaches, and remediation steps.
- Responsible for Information Security technology selection process to include requirements consolidation into RFI/RFP/RFQ, testing, POC, selection and deployment.
- Support audits against internal and industry process, quality, and security standards; drive initiatives and remediation efforts to correct non-conformance.
- Provide Information Security consulting on security related issues.
- Collaborate with peers to identify and implement improvement initiatives across the Firm, processes and toolsets.
- Manage multiple, parallel projects using formal project planning techniques.
- Ability to work evening and weekend hours as needed or directed. Some travel may be required.
- High School Diploma or equivalent required; Associate's Degree or Bachelor's Degree preferably in Engineering, Information Technology, Computer Science, or similar strongly preferred
- Minimum of five (5) years in a professional technical Information Technology role required
- Minimum of three (3) years of hands-on experience in Information Security with Cloud Security exposure required
- Specialized Cloud Security certification(s), CISSP, Microsoft Azure AZ-104 & AZ-500, CCSP, CCSK, or CPT/CEH desired
- SailPoint Identity and Access Management (IAM/IDM) vendor-specific certification(s) desired
Chicago - $111,500 to $167,300
Foley offers a comprehensive benefit program which currently includes Paid Time Off; Paid Holidays; Medical, Dental and Vision insurance; 401(k) Retirement; Disability and Life insurance; Adoption Assistance; Backup Care for Dependents.
Affirmative Action/Equal Opportunity Employer/M/F/Vet/Disabled.
About Foley & Lardner
Foley is an Am Law 50 law firm consistently ranked among top-tier practices. With over 1,100 lawyers in 26 offices across the United States, Mexico, Europe, and Asia, our market-leading platform includes Corporate, Intellectual Property, and Litigation. Adding depth to our bench strength, we focus on four primary sectors: Energy, Health Care & Life Sciences, Innovative Technology, and Manufacturing. We look beyond the law to focus on the constantly evolving demands facing our clients and act as trusted business advisors to deliver creative, practical, and effective solutions.
For nearly two centuries, Foley has maintained its commitment to the highest level of innovative legal services and to the stewardship of our people, firm, clients, and the communities we serve. While respecting our roots, we’re also continuously looking to modernize all aspects of our business and elevate who we are and what we do, which keeps us focused on the future.
Salary : $111,500 - $167,300