Morgan Lewis & Bockius LLP Sr. Cyber Security Data Scientist in New York, New York
Morgan, Lewis & Bockius LLP, one of the world's leading global law firms with more than 4,000 lawyers and staff in 31 offices, is currently seeking a Sr. Cybersecurity Data Scientist, reporting to the Sr. Director of Information Security & Compliance. Reporting to the Sr. Director of Information Security & Compliance, the Cybersecurity Data Scientist provides data-driven intelligent decisions, protecting Morgan Lewis systems from cyber threats and attacks. She/he is responsible for proactively protecting information assets from unauthorized or inappropriate threats, use or disclosure of data, as well as business disruptions through network behavior and user behavior analytics. She/he is responsible for contributing to investigations by performing technical analysis of log data. In addition to working closely with IT, IG and the Business, she/he is also required to have occasional interaction with internal and external auditors, General Counsel, Privacy team and individual practice areas. She/he will also mentor at least one Cyber / Information Security Analyst or Cybersecurity Data Scientist.
The candidate must reside in close proximity to a Morgan Lewis office.
PRIMARY FUNCTIONS AND RESPONSIBILITIES
Triaging of security events related to an investigation through analytics and endpoint monitoring tools
Identifying gaps in access controls to prevent threats to data and computing assets
Implementation of security related dashboards for ease of data review
Threat hunting for anomalous or malicious activity
Identifying insider threat behavior by providing proactive monitoring, investigation, and analysis of security events
Addresses potentially malicious activities focusing on various behaviors to mitigate risk early in the insider threat kill chain.
Identify data types that should be collected to enable proper detection of cyber related events.
Management of the centralized security analytics, logging and monitoring system
Ensure ransomware protection monitoring is working as expected
Maintaining watchlists and client lists for data loss prevention (DLP)
Coordinate communication with multidisciplinary teams during investigations and cyber incidents, and notification of critical cyber security vulnerabilities.
Present results and provide subject matter expertise across multi-discipline projects engaging with sponsors and project leads on a regular basis
Monitoring processes, as well as controlling activities, to ensure compliance with security policies and client contractual requirements.
Assessing the operation and administration effectiveness of monitoring and security tools.
Importing, cleaning, transforming, validating and/or modeling data with the purpose of understanding or drawing conclusions from the data for decision making purposes.
Analyzing cyber related statistics and mining data to draw conclusions and demonstrate patterns/trends on a regular basis.
Creating graphical representation of data and reports.
Developing and implementing data collection systems and other strategies that optimize statistical efficiency and data quality.
Identifying and leveraging new technologies to facilitate better analysis, practices/approaches, and task automation.
Identifying, analyzing, and interpreting trends or patterns in complex data sets.
Processing, cleansing, and verifying the integrity of data used for information security analysis.
Penetration test reporting, tracking and remediation
Contribute to the compliance of regulations, assessments and frameworks such as SOC2, HIPAA, ISO 27001, NIST CSF, CMMC, etc.
Problem solving and troubleshooting skills a must
Other duties as assigned.
EDUCATION, EXPERIENCE AND EXPERTISE
This job requires:
a Bachelor's Degree (B.A.) from a four-year college or university (preferably in Cybersecurity Data Science, Computer Science, Information Systems, Computer Engineering, or related field),
Minimum 4 years of Cybersecurity related data analysis experience
Expertise in general information security controls, processes and principles.
OTHER QUALIFICATIONS AND REQUIREMENTS
To perform the job successfully, an individual must demonstrate the following knowledge skills and abilities:
Thorough understanding of 'Cyber Kill Chain' and relation to detection and defense mechanisms
Broad knowledge of network protocols such as DNS, DHCP and HTTPS
Understanding of MITRE Att&ck Framework
Knowledge and/or experience with OWASP Top 10
Experience with one cloud environment (GCP, AWS, Azure; prefer Azure)
Skilled at queries, report writing and presenting findings
Technical expertise regarding data models and data segmentation techniques
Ability to work effectively in a team-oriented environment, and the ability to work independently and on multiple projects
Experience analyzing raw data, investigative skills
Prior experience with statistical analysis, data analysis, data management, reporting, data mining, data manipulation
To perform this job successfully, an individual must be proficient in the following software:
Microsoft Excel, Word, PowerPoint, Project & Visio applications
Microsoft SQL Server, SQL, Excel, Access (required)
Python, Splunk, Qlik (Spark and Hadoop a plus)
Microsoft Operating Systems, Active Directory
Cisco technologies, computer operations and network design topology
Proficiency with SharePoint is a plus
Proficiency with query languages preferred: Microsoft Kusto, SQL, Splunk SPL, MongoDB
CERTIFICATES, LICENSES, REGISTRATIONS
Preferred Cert.: Data Analytics, Data Science, Certified Analytics Professional
You must be fully vaccinated against COVID-19 by your hire date to be eligible for starting in the role. Proof of vaccination will be required. Morgan Lewis will provide reasonable accommodation(s) based on medical or religious grounds for qualified candidates.
Morgan, Lewis & Bockius LLP is committed to equal employment opportunity and providing reasonable accommodations to applicants with physical and/or mental disabilities. We value and encourage diversity and solicit applications from all qualified applicants without regard to race, color, gender, sex, age, religion, creed, national origin, ancestry, citizenship, marital status, sexual orientation, physical or mental disability, medical condition, veteran status, gender identity, genetic information, or any other characteristic protected by federal, state, or local law.
Pursuant to applicable state and municipal Fair Chance Laws and Ordinances, we will consider for employment qualified applicants with arrest and conviction records.
California Applicants: Pursuant to the California Consumer Privacy Act, the following link contains the Firm's California Consumer Privacy Act Privacy Notice for Candidates which explains the categories of personal information that we collect and the purposes for which we use such personal information.
Morgan Lewis & Bockius LLP is also an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.
If you are interested in applying for employment with Morgan Lewis and need special assistance or an accommodation to use our website or to apply for a position, please call or email the following contacts:
Professional Staff positions: Please call 888.534.5003 or email
Lawyer/Summer Associate positions:
Determination on requests for reasonable accommodation are made on a case-by-case basis.
Morgan Lewis is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.