Information Security Engineer (Dentons Business Services EMEA)

Dentons is the world's largest law firm, renowned for its commitment to delivering innovative legal solutions to clients around the globe. With offices in over 160 countries and a team of legal professionals dedicated to excellence, Dentons offers a dynamic and inclusive work environment. 

Dentons Business Services EMEA is the operational backbone of Dentons, supporting the world's largest law firm in delivering exceptional service to clients across Europe, the Middle East, and Africa. As a crucial component of Dentons' global network, our EMEA business services team plays a key role in driving efficiency, innovation, and collaboration. 

At Dentons Business Services EMEA, we are committed to excellence in supporting legal professionals with cutting-edge solutions. Our dynamic and diverse team collaborates seamlessly to provide a wide range of services, including finance, IT, human resources, marketing, and more. We pride ourselves on fostering a culture of continuous improvement and adaptability. 

About the Opportunity

Dentons Europe is currently seeking a Microsoft Security Engineer who will primarily be responsible for designing, configuring, and maintaining security controls for cloud and hybrid infrastructure Based in one of the locations listed below, you will select and deploy technical and procedural controls to meet specific security requirements and co-define with the rest of Information Security team processes and standards to ensure defined security levels.

You will primarily be accountable for

• Implement, maintain, and improve the security posture of the Microsoft 365 and Azure platform.
• Implement, maintain, and improve the security posture of Firm’s assets.
• Ensure that all used assets have adequate security measures in place.
• Identify and remediate vulnerabilities by using a variety of security tools.
• Monitor and respond accordingly to cybersecurity events.
• Create reports about the security state of the systems and networks including misuse of information assets and noncompliance.
• Collaborate with other teams to identify, select, and implement technical security controls.

Additional responsibilities

Penetration Testing and Vulnerability Assessments

• Help to define operational parameters for IS and security tools use and conducts reviews of tool output.
• Identify control effectiveness and recommend corrective actions.
• Help to define security testing criteria for systems and applications.
• Plan and assist with penetration-testing activities.

Definition and Implementation of Controls

• Help to define and implement security configuration and operations standards for security systems and applications, including policy assessment and compliance tools, network security appliances, and host-based security systems.
• Help to develop and validate baseline security configurations for operating systems, applications, and networking and telecommunications equipment.

Incident Detection and Response

• Provide support and analysis during and after a security incident.
• Run investigation and assist with the resolution of security incidents.
• Participate in compliance reviews, as requested by internal or external auditors.
• Monitor and report security related events

Information Security Architecture

• Assist in the development and implementation of security architecture and
• Assist in the development of security policies, standards, and baselines.
• Assess and deploy new information security technologies.

• 3+ years of experience working in a Microsoft Infrastructure Engineering role or Security Engineering role.
• Experience or strong interest in cybersecurity, with a strong engineering instinct and a deep understanding of both technical and business problems.
• Automation experience using scripting languages (e.g. PowerShell) and automation products.
• Experience in securing Windows platforms, servers, and desktops, as well as Microsoft 365 and Azure environments.
• Exposure to security activities such as EDR/XDR, Patch and Vulnerability Management, Data Classification
• Knowledge in common OS and cloud attack vectors, system hardening, and secure privilege escalation.

• Experience conducting or being the subject of security audits, both internal and external
• Experience delivering projects end to end individually and in a team environment, from initiation to implementation.
• Hands-on experience with any Firewall, IDS/IPS, WAF, Anti-Virus / Anti-Spam, SIEM, PAM, MS Security products and protection for Microsoft digital workplace family, identity, and access management (IAM) systems, antivirus and anti-malware solutions and desktop security tools
• Strong understanding of security frameworks (ISO 2700x, ITIL, COBIT, NIST, etc.)
• Familiarity with Risk Management processes and frameworks is a plus.
• Holder of IT Security related certifications is a plus (CEH, CISSP, CISM, CHFI, etc.).
• Holder of the cloud security certifications is a plus (e.g., CCSP, CCSK, CompTIA Cloud+, etc.)
• Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts.
• Analytical skills to analyze security requirements and relate them to appropriate security controls.
• Ability to interact with Firm's personnel at all levels and across all business units and organizations, and to comprehend business imperatives.
• Strong written and verbal communication skills, with the capability to work with team members and to work with only minimal supervision.

Language Capabilities

We are a truly global law firm and as such, always welcome hearing from those with foreign language capabilities.

Equal Opportunities

Dentons is committed to providing equal opportunities for all. We welcome applications from candidates with disabilities and support those in the workplace who have a disability.

Inclusion, Diversity & Equity

Essential to our success as a global law firm is our ability to attract and retain the best talent from a diverse range of backgrounds. We want a work environment where everyone can reach their potential and we have an inclusive culture which respects individual differences.

We undertake and support a number of internal and external initiatives aimed at increasing diversity within the profession and we encourage all our partners and staff to get involved. We welcome you to learn more about inclusion, diversity and equity at Dentons.

Apply for this job