Senior IT Security Systems Engineer

London (Central), London (Greater)
26 Feb 2018
29 Mar 2018
Role Classification
Other Professional
Contract Type

The firm

Dentons is always looking to invest in the highest-quality talent, recognising that our success is built on the diverse and unique strengths of each of the members of our Firm.

Dentons is the world's largest law firm, delivering quality and value to clients around the globe. Dentons is a leader on the Acritas Global Elite Brand Index, a BTI Client Service 30 Award winner and recognized by prominent business and legal publications for its innovations in client service, including founding Nextlaw Labs and the Nextlaw Global Referral Network. Dentons' polycentric approach and world-class talent challenge the status quo to advance client interests in the communities in which we live and work.

The department

Our team of business services staff play a significant role in the success of Dentons, and we recruit staff into a wide variety of areas. Here, we look for focused, flexible individuals from a variety of backgrounds who are team players. Previous experience within the legal sector is not essential. We want to give everyone the opportunity to develop his or her potential fully and, therefore, provide support, training and encouragement to members of staff at all levels.

Purpose of role

To assume responsibility for System Security in Dentons.

You will improve security by protecting system boundaries, keeping computer systems and network devices hardened, encrypted and updated against attacks and securing highly sensitive data.

The Senior IT Security Systems Engineer performs two core functions for the business. The first is the day-to-day operations of the in-place security solutions while the second is the identification, investigation and resolution of security breaches detected by those systems. Secondary tasks may include involvement in the implementation of new security solutions, participation in the creation and or maintenance of policies, standards, baselines, guidelines and procedures as well as conducting vulnerability audits and assessments.

The Senior IT Security Systems Engineer is expected to be fully aware of the businesses security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals.


General :

  • Ability to identify production security issues and implement any required fixes in a timely manner.

  • Analyse firewalls, systems and work with 3rd party support to ensure applications are secure and proper change management is in place around changes.

  • Liaise and communicate effectively with the business to ensure that Dentons meets the cyber security requirements of any tender documents. Identify and mitigate any security gaps that exist.

  • Carry out vulnerability testing, risk analyses and security assessments in conjunction with 3rd party security and application providers.

  • Collaborate and implement improved authentication, authorisation and encryption solutions for on premise, cloud and remote access systems.

  • Co-ordinate audits with nominated third parties and clients.

  • Be point of contact for local aspects of security controls for the Edinburgh, Glasgow and Aberdeen offices.

  • Respond to client tender information request documents, and bids, in conjunction with the Business Development team.

  • Evaluate new technologies and processes that enhance Dentons security capabilities.

  • Supervise changes in software, hardware, network, telecommunications and user needs in conjunction with IT Security & Governance Manager.

  • Update, implement, and define, corporate security policies.


  • Assists in the maintenance and evaluation , of policies and procedures in line with both business requirements and national and international legislative changes, i.e. ISO 9001/27001/22301 processes and procedures.

  • In partnership with all of Business Services, ensure IT's services are properly positioned within client RFP responses as well aligning responses.

  • Coordinate and oversee internal and external client audits as it relates to IT security and compliance.

  • Coordinate and oversee third-party IT vulnerability assessments.

  • In partnership with IT Leadership team, work with respective IT personnel to ensure awareness and alignment of ongoing client, industry and best practice compliance obligations.

  • Act as business liaison with all Business Services. In this role, engage in ongoing dialog regarding business unit's priorities and IT service requirements to support efficient operations.

Required experience, skills and attributes

Technical Skills

  • Knowledge and experience of industry standards such as ISO 27001, Cyber Essentials.

  • Extensive understanding of data handling best-practices and information management and governance.

  • Knowledge and expertise of cross-border regulations , such as GDPR and EU data Privacy rules.

  • Broad understanding of technology and legal applications preferred (not mandatory).

  • Extensive information security experience, across broad security domains.

  • Experience working with technical people responsible for implementing security technology.

  • Experience in security monitoring, detection, prevention and control systems.

  • Ability to stay current with intrusion detection systems, hacker techniques, phishing schemes, emerging logical security threats, and compromised server techniques.

  • Ability to dig into details as well as analyse data from a high level view.

  • Understanding of the compliance, legal and ethical obligations that organisations should have with respect to logical and physical security, personally identifiable information and data protection.

  • Comprehensive knowledge about data handling and security best protocols.

  • CISSP/CISA/CISM certification preferred.

  • Hands on technical security experience with Windows 2008R2, Windows 2012, Server, and Windows desktop operating systems.

  • Sophos Endpoint Protection.

  • AV and Malware Protection.

  • System Security Patch Management.

  • Knowledge or hands on experience with cyber security SIEM products.

  • Knowledge of Cisco-based networking and firewall security in a multisite environment.

  • Awareness of IP Telephony security.

Personal Skills / Attributes

  • Excellent written and oral communication skills.

  • Highly motivated, proactive and outcome orientated.

  • Ability to work closely with other key stakeholders outside of the IT department.

  • Strong ability to influence internal and external stakeholders.

  • Self-starter that takes ownership of identified issues.

  • Analytical, evaluative, and problem-solving abilities.

  • Ability to effectively prioritise and execute tasks in a high-pressure environment.

  • Extensive experience working in a team-oriented collaborative environment.

  • Keen attention to detail.

  • Smart and professional manner.

  • Can carry out all responsibilities in a way which supports the practices values and promotes its equal opportunities and diversity principles.

Language Capabilities

We are a truly global law firm and as such, always welcome hearing from those with foreign language capabilities.

Equal opportunities

Dentons is committed to providing equal opportunities for all. If, as a result of a disability, you believe that there are aspects of the recruitment process or job that you would find more difficult than a non-disabled person, please tell us as soon as possible. We will then be able to discuss with you any reasonable adjustments that could be made to the recruitment process or the job itself.

Similar jobs

Similar jobs