Security Analyst
Washington, DC, United States
Applications have closed
Crowell & Moring
Job Description
Crowell & Moring LLP is an international law firm with offices in the United States, Europe, MENA, and Asia that represents clients in litigation and arbitration, regulatory and policy, intellectual property, and transactional and corporate matters. The firm is internationally recognized for its representation of Fortune 500 companies in high-stakes litigation and government-facing matters, as well as its ongoing commitment to pro bono service and diversity, equity, and inclusion.
Job Summary
The Security Analyst (Identity and Access Management) specializes in IAM technologies and applications including Single Sign-On (SSO), federation, permissions, authorizations, and identity management. The SA maintains the Firm’s IAM platform and related systems and works with InfoSec management and others in the Firm to ensure the right people have appropriate access to data and applications at the right time. The SA is responsible for keeping up-to-date with current identity technologies, threats, vulnerabilities, and automation and participates in projects implementing, upgrading, and modifying identity systems.
Job Responsibilities
- Under general supervision of the Infosec Manager the SA manages the IAM system including Enterprise Applications, federations, certificates, Identity Provider (IdP).
- Maintains and validates the Firm’s Multifactor Authentication (MFA) systems.
- Integrates external applications with the Firm’s identity system using OAUTH, SAML, OpenID or other appropriate technology
- Coordinates with Human Resources, Finance, and others to automate as much as possible the Join/Move/Leave process for employee, Partner, and third-party identities.
- Maintains and manages the Firm’s sources of Identity, including Active Directory, Microsoft Entra ID, and Active Directory Federation Systems (AD FS)
- Manages federation and replication technologies such as Entra ID Connect.
- Maintains the Firm’s Public Key Infrastructure (PKI) systems including certificate templates, issuance policies, security, and revocation.
- Completes special projects and other duties as assigned by the InfoSec Manager.
Qualifications
Requirements:
Knowledge, Skills and Abilities
- Knowledge of Identity technologies and systems including Security Assertion Markup Language (SAML) Single Sign On (SSO), and related technologies such as OAUTH, OpenID.
- Understanding of directory and authentication technologies such as Active Directory (AD), lightweight directory access protocol (LDAP), Kerberos, RADIUS, and Public Key Infrastructure (PKI)
- Understanding of Microsoft identity products such as Entra ID, Conditional Access, Defender for Identity, and Enterprise Applications
- Understanding of multifactor technologies and platforms, including NIST 800-63 R3 approved methods.
- Ability to work overtime as needed.
Education
The position requires a Bachelor’s Degree, preferably in Computer Science/MIS or equivalent certification from an accredited technical training school. Four years of progressive experience may substitute for education.
Certification
Microsoft SC-300 or related Identity and Access, Azure, or Entra certifications. CISSP or GIAC certifications are a plus
Experience
The position requires a minimum of four (4) years of increasingly responsible, directly related experience during which knowledge, skills and abilities applicable to the position were demonstrated.
Additional Information
Crowell & Moring LLP offers a competitive compensation and comprehensive benefits package which includes progressive options such as back up child care, wellness programs, cultural events and social activities. We take great pride in our positive, friendly culture that rewards hard work and success, at the same time recognizing the importance of family and community service.
EOE m/f/d/v
Crowell & Moring LLP participates in the E-Verify program.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Active Directory Automation Azure CISSP Computer Science Finance GIAC IAM Kerberos LDAP NIST OpenID PKI SAML SSO Vulnerabilities
Perks/benefits: Competitive pay Equity / stock options
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Senior Cybersecurity Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cloud Security Architect jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Network Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Information System Security Officer jobs
- Open Security Consultant jobs
- Open Information Systems Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Information Security Architect jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Security Architect jobs
- Open CISA-related jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open Network security-related jobs
- Open GCP-related jobs
- Open ISO 27001-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open DoD-related jobs
- Open DevOps-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Vulnerability management-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Security assessment-related jobs
- Open PowerShell-related jobs
- Open SQL-related jobs