Fragomen

Compensation

Full Description

Note: The job is a remote job and is open to candidates in USA. Fragomen, an AmLaw 100 Firm and the leading global immigration services provider, is seeking a Cyber Security Engineer with strong operational and analytical experience in Threat Detection & Disruption to join their IS & Cyber Security team. The successful candidate will help engineer solutions to enhance threat detection and response capabilities within the organization. Responsibilities • Refine, validate and exercise our Threat Detection and Disruption program. • Develop detection techniques to protect our evolving environment and technical offerings. • Architect, deploy and maintain our network and endpoint detection tools to reduce our time to alert, triage and mitigation from potential threats. • Deploy, mature and maintain our future logging tier, security event incident management (SIEM) system and alert, triage and response pipeline. • Lead in the evolution of our protection, detection and mitigation capabilities based on experience, evolving threat environment and findings from cyber security incidents. • Participate in a cross-functional response to cyber security incidents. • Develop and maintain strong relationships with key partners to create our detection and threat disruption program. • Participate in threat hunting efforts. Skills • 2 - 5 years or more years of practical Threat Detection and Disruption experience. • A passionate team player who builds knowledge and solves complex problems. • Demonstrated knowledge of detection tools with the ability to write signatures (Snort, Suricata, Yara, etc.). • Proficiency in a modern high-level language (Python, Ruby, Node, Go, etc.). • Experience in establishing and maintaining a SIEM (Splunk, ArcSight, QRadar, ELK, etc.). • Proven experience in developing intrusion detection techniques and operational responses. • Experience in architecting and deploying logging technology (Syslog, Logstash, etc.). • Strong, professional communication skills that maintain under pressure. • Experience in developing highly automated detection and triage tools. • Knowledge of detection, forensic, security event and incident management, and orchestration tools. • Technical certifications that demonstrate technical prowess in DFIR to include GIAC (GCIH, GCFA, GCIA), Offensive Security (OSCP, OSCE, OSEE), and/or Vendor specific (Splunk, QRadar, ELK, etc.). Education Requirements • A Bachelor’s degree in a related field or a combination of related experience. Benefits • Paid Time Off + Holidays • Private Medical Insurance • And other financial benefits which we encourage you to ask us about! Company Overview • Fragomen is a legal firm that provides crisis management, employment verification, compliance, document, and immigration services. It was founded in 1951, and is headquartered in New York, New York, USA, with a workforce of 5001-10000 employees. Its website is https://www.fragomen.com. Company H1B Sponsorship • Fragomen has a track record of offering H1B sponsorships, with 2 in 2025, 2 in 2024, 5 in 2022, 1 in 2021, 5 in 2020. Please note that this does not guarantee sponsorship for this specific role.