Senior Information Security and Risk Analyst

Senior Information Security and Risk Analyst

Senior Information Security and Risk Analyst

( Atlanta, Full-time, Hybrid )

Fisher Phillips, a premier international labor and employment law firm, is seeking a skilled and experienced Senior Information Security and Risk Analyst to join our team. In this essential role, you will contribute to the seamless operation of our services, providing crucial support to our department in delivering exceptional client service and maintaining our commitment to excellence.

The Senior Information Security and Risk Analyst serves as a key leader within Fisher Phillips’ Information Security Team, responsible for safeguarding the confidentiality, integrity, and availability of cloud-based, on-premises, and internal Firm networks. This role provides strategic oversight of security monitoring and incident response activities, including the analysis and enrichment of security events through advanced contextual and threat intelligence. In addition to coordinating and guiding incident response efforts across stakeholders, the position plays a critical role in evaluating existing security processes, controls, and technologies to identify gaps, drive continuous improvement, and enhance the overall effectiveness and maturity of the Firm’s Information Security program.

Key Responsibilities

• Provide oversight and direction for the monitoring, interpretation, and assessment of security events generated by Firm security platforms, ensuring appropriate prioritization, escalation, and response to incidents.
• Conduct periodic, risk-focused reviews of the Firm’s information security posture, including access controls and permission models, and recommend enhancements to improve security governance and reduce risk.
• Establish and enforce access governance standards by overseeing investigations of unauthorized or inappropriate access, directing remediation actions, and ensuring violations are properly documented and reported.
• Oversee the investigation and analysis of security alerts from endpoint protection, network security, and monitoring systems, ensuring alerts are appropriately triaged and addressed in accordance with Firm standards.
• Provide senior-level oversight of email security incident response, including phishing and malware investigations, remediation actions, and identification of systemic control improvements.
• Provide administration and strategic oversight of Microsoft Defender for Office 365, including policy design, tuning, threat investigation workflows, and continuous optimization to reduce phishing, malware, and business email compromise risk.
• Analyze Microsoft Secure Score and related security posture metrics to identify gaps, prioritize risk-based improvements, and lead remediation initiatives that strengthen the Firm’s overall Microsoft 365 and Entra security posture.
• Maintain advanced knowledge of information security, risk management, and regulatory trends through ongoing professional development, industry engagement, and participation in relevant professional organizations.
• Serve as a key contributor to client-driven and regulatory security audits by overseeing the collection and validation of security control evidence and supporting responses to client data security assessments.

Requirements

• Bachelor’s degree in information security or a related field.
• Experience working with security frameworks (e.g., ISO 27001) required.
• Relevant cybersecurity certifications are preferred (e.g., CISSP, CISA, CISM).
• Experience managing Microsoft Defender for Office 365 - safe attachments, safe links, anti-phishing policies, spoof/intelligence protection, and threat hunting.
• Experience managing Security Email Gateways (Mimecast-preferred) - polices, mail flow, antispam/malware filters, reporting.
• Experience investigating and remediating email-based threats like phishing, business email compromise, ransomware, impersonation, and malware.
• Experience managing Endpoint Detection and Response platforms and performing alert triage, behavioral analysis, device isolation, threat hunting, remediation.
• Experience leading or contributing to full incident lifecycle - triage, containment, eradication,…