Senior Security Engineer
Indexed description
Foley & Lardner is currently seeking a Senior Security Engineer to join the Architecture team in our Information Security department. The Senior Security Engineer is responsible for engineering and implementing solutions to enhance the Firm’s security infrastructure. A core part of the role involves close collaboration with the broader Information Security team, internal IT, and business units to secure both new and existing solutions across the technology environment. The role focuses on existing and emerging technologies, with a particular emphasis on cloud, AI and agentic AI security. A key responsibility will be helping to establish code review and security scanning processes for internally developed applications, including future use of static/dynamic analysis solutions to assess AI tools and software built by internal teams. Additional responsibilities include implementing and maintaining robust security controls for technology infrastructure and cloud platforms, while ensuring the secure integration, protection, and governance across a broad range of systems and solutions.
The role also serves as an escalation resource for the Information Security Operations team, providing advanced expertise and support. As part of a small team, this role provides security guidance across the technology environment, helping to mature the security control framework, develop tailored solutions, and strengthen overall security posture. This person will act as a security advocate, advising key stakeholders on technology risk management and balancing security with business needs through effective mitigation strategies, ensuring the safe adoption of cloud, AI, and related technologies.
Responsibilities
- Work in active partnership with key stakeholders to perform security architecture risk reviews.
- Develop and implement advanced-level Cloud and AI Security solutions.
- Support and advance the overall Information Security technology roadmap.
- Provide recommendations for advancing the Information Security program, security policies, and security control standards to enhance operational practices.
- Create and maintain Information Security standards applicable to all technologies in the portfolio.
- Provide requirements, guidance, and vision to the vendor community to cultivate the appropriate combination of technology and feature capabilities to meet current and future security requirements.
- Execute on infrastructure threat and vulnerability management processes.
- Ensure security systems are upgraded by monitoring security environment, identifying security gaps and evaluating and implementing enhancements.
- Define, develop and maintain metrics and measurements for information security controls and processes.
- Respond to security-related issues, problems, crises, and critical situations to support resolution and minimize downtime.
- Act as a senior-level point of contact for incident investigations and minor security events (e.g., unauthorized access, non-compliance with Firm policies, fraud, service disruptions, etc.) to determine malfunctions, breaches, and remediation steps.
- Responsible for Information Security technology selection process to include requirements consolidation into RFI/RFP/RFQ, testing, POC, selection and deployment.
- Support audits against internal and industry process, quality, and security standards; drive initiatives and remediation efforts to correct non-conformance.
- Provide Information Security consulting on security related issues.
- Collaborate with peers to identify and implement improvement initiatives across the Firm, processes and toolsets.
- Manage multiple, parallel projects using formal project planning techniques.
- Ability to work evening and weekend hours as needed or directed. Some travel may be required.
- High School Diploma or equivalent required; Associate's Degree or Bachelor's Degree preferably in Engineering, Information Technology, Computer Science, or similar strongly preferred.
- Minimum of five (5) years in a professional technical Information Technology role required.
- Minimum of three (3) years of hands-on experience in Information Security with Cloud Security or AI/Agentic AI exposure required.
- One or more of the following: CISSP, Microsoft Azure AZ-104 & AZ-500, CCSP, CCSK, CPT/CEH strongly preferred.
- Certification(s) specializing in Cloud Security. or AI/Agentic AI Security strongly preferred.
Milwaukee - $104,400 to $156,600
Chicago, Dallas - $114,800 to $172,300
Foley offers a comprehensive benefit program which currently includes Paid Time Off; Paid Holidays; Medical, Dental and Vision insurance; 401(k) Retirement; Disability and Life insurance; Adoption Assistance; Backup Care for Dependents.
Affirmative Action/Equal Opportunity Employer/M/F/Vet/Disabled.
About Foley & Lardner
Foley is an Am Law 50 law firm consistently ranked among top-tier practices. With over 1,100 lawyers in 26 offices across the United States, Mexico, Europe, and Asia, our market-leading platform includes Corporate, Intellectual Property, and Litigation. Adding depth to our bench strength, we focus on four primary sectors: Energy, Health Care & Life Sciences, Innovative Technology, and Manufacturing. We look beyond the law to focus on the constantly evolving demands facing our clients and act as trusted business advisors to deliver creative, practical, and effective solutions.
For nearly two centuries, Foley has maintained its commitment to the highest level of innovative legal services and to the stewardship of our people, firm, clients, and the communities we serve. While respecting our roots, we’re also continuously looking to modernize all aspects of our business and elevate who we are and what we do, which keeps us focused on the future.
Create a free Caio profile to unlock more results and save your role and location preferences.
Unlock free search