We use cookies. Find out more about it here. By continuing to browse this site you are agreeing to our use of cookies.
I agree and accept cookies
Main menu
Post a Job
Request a Demo
Yes
No
Both
Advanced search
#alert
Back to search results / More jobs like this
Back to search results
Paul Hastings LLP jobs

Senior Cybersecurity Engineer

Paul Hastings LLP
flexible benefit account, parental leave, paid holidays, 401(k), retirement plan, profit sharing
United States, California, Los Angeles
Mar 28, 2025

Paul Hastings is a leading international law firm that provides innovative legal solutions to many of the world's top financial institutions and Fortune Global 500 companies. With a strong presence throughout Asia, Europe, Latin America, and the U.S., we have the global reach and extensive capabilities to provide personalized service wherever our clients' needs take us. As one of the world's leading law firms, we seek dynamic individuals who share our commitment to service, innovation, and professional growth.

We have an opening for a Senior Cybersecurity Engineer.

The Senior Cybersecurity Engineer will have a strong background in IAM Operations Support. The ideal candidate will have hands-on experience with Active Directory (AD), Okta, SailPoint, Service Now, and PowerShell scripting. This role requires expertise in access provisioning, lifecycle management, and access controls within an identity and access management (IAM) environment. As part of the IAM Operations team, the Senior Cybersecurity Engineer will be responsible for supporting the day-to-day operations of IAM systems, ensuring that user access is provisioned accurately, securely, and in compliance with company policies and regulatory requirements.

In this capacity, the Senior Cybersecurity Engineer will:

IAM Operations Support

  • Provide operational support for IAM systems, including Active Directory, Okta, SailPoint, and other access management tools;
  • Support access provisioning, de-provisioning, and modifications for users across multiple systems, ensuring timely and accurate access to IT resources;
  • Monitor and maintain user lifecycle management processes, including onboarding, offboarding, role changes, and access reviews;
  • Ensure that user access follows the least-privilege principle and is granted in accordance with defined security policies and access control requirements;
  • Reporting and Auditing: Generate reports, monitor system activity, and perform audits to identify and address security issues or compliance violations;
  • Incident Response: Respond to security incidents, including account breaches and unauthorized access, and take appropriate actions to mitigate risks;
  • Design and implement role structures and entitlements to ensure users receive the appropriate access levels; and
  • Customize workflows to align with the organization's specific business processes and compliance requirements.

Access Control Management

  • Perform regular access reviews, user entitlement audits, and account validation to ensure compliance with security policies, industry standards, and regulatory requirements;
  • Maintain and troubleshoot role-based access control (RBAC) systems and ensure that roles are assigned appropriately within Okta and SailPoint; and
  • Collaborate with security teams to ensure Multi-Factor Authentication (MFA), Single Sign-On (SSO), and other access control mechanisms are effectively deployed and managed.

Automation and Scripting

  • Develop and maintain PowerShell scripts for automating IAM tasks, such as user provisioning, access management, and system integrations;
  • Automate processes in SailPoint and Okta to improve operational efficiency, reduce manual errors, and streamline IAM workflows; and
  • Troubleshoot, debug, and optimize existing scripts and workflows to improve reliability and performance.

Incident Response and Troubleshooting

  • Respond to IAM-related incidents, access issues, and service requests, resolving them promptly to ensure minimal disruption to business operations;
  • Investigate and resolve access provisioning issues, including account lockouts, permission errors, and role misconfigurations; and
  • Support the IAM team in root cause analysis for access-related incidents and contribute to continuous improvement efforts.

Collaboration and Knowledge Sharing

  • Work closely with IT Operations, Cybersecurity, and HR teams to ensure seamless user onboarding, offboarding, and role transitions;
  • Support cross-functional projects involving IAM processes and systems integration; and
  • Provide training and guidance to junior IAM team members and other staff on IAM best practices, policies, and tools.

Documentation and Reporting

  • Maintain up-to-date documentation for IAM processes, workflows, and policies;
  • Generate reports on user access, lifecycle management activities, and security compliance metrics for internal stakeholders; and
  • Assist in the preparation of audit documentation and support external audits as needed.

Proficiencies:

  • Active Directory administration and management (users, groups, OUs, GPOs, etc.);
  • Hands-on experience with Okta for user provisioning, Single Sign-On (SSO), and Multi-Factor Authentication (MFA);
  • Familiarity with SailPoint for identity governance, including user provisioning, access reviews, and compliance reporting;
  • Understanding of IAM protocols (e.g., LDAP, SAML, OAuth, OpenID Connect) and IAM-related technologies;
  • Security Awareness: A strong understanding of security policies, compliance standards, and best practices for IAM;
  • Problem Solving: Ability to diagnose, troubleshoot, and resolve access issues in a timely and efficient manner;
  • Attention to Detail: Precision and accuracy in managing user accounts, access reviews, and audit reports;
  • Communication Skills: Strong written and verbal communication skills to interact with technical and non-technical stakeholders;
  • Collaboration: Proven ability to work effectively with cross-functional teams, including IT, security, and business units; and
  • Adaptability: Ability to work in a fast-paced, dynamic environment with changing priorities and tight deadlines.

Qualifications:

  • High School Diploma and 6 years of equivalent work experience;
  • 5+ years of experience in IAM Operations Support, with hands-on expertise in Active Directory (AD), Okta, SailPoint, and related IAM platforms;
  • Strong understanding of access provisioning, user lifecycle management, role-based access control (RBAC), and entitlement management; and
  • Experience with PowerShell scripting for automating IAM tasks and integrating IAM systems;
  • Certified Information Systems Security Professional (CISSP) or other relevant security certifications;
  • Certified Identity and Access Manager (CIAM) or other IAM certifications; and
  • Okta Certified Administrator or SailPoint Certified IdentityNow Engineer.

Employees will be provided with an excellent career opportunity in a collaborative environment, in addition to a generous total compensation package with the opportunity to earn bonuses based on individual contribution and firm profitability.

The salary wage range that we expect to pay for this position is a minimum of $105,900 and a maximum of $150,000 annually. The actual pay wage may vary based on experience or other relevant factors.

Eligible employees can participate in the Firm's comprehensive benefits program, which include the following:

  • Medical, Dental, Vision, Life/AD&D, Long Term Care, and Short- and Long-Term Disability
  • Flexible Spending Account and Health Savings Account
  • Healthcare Concierge and Advocacy
  • Lifestyle Spending Account
  • Voluntary 401(k) Plan and Profit Sharing
  • 10 Paid Holidays per year and a generous PTO Program
  • Family Support including Paid Parental Leave, Fertility Benefits, Breast Milk Shipping, Back-up Child Care, Elder Care, and Tutoring
  • Wellbeing programs (Employee Assistance Program, Relationship Support, Mental Health and Well-Being Events)
  • Retirement Plan Consulting
  • Anniversary Bonus Program
  • Professional Development Programs
  • Transportation and Commuter Benefits
  • International Travel Insurance
  • Auto/Home/Pet Insurance
  • Prepaid Legal Insurance
  • Employee Discounts
  • And More!

The Firm has a range of diversity initiatives including our Paul Hastings Affinity Networks (PHANs), Women's Initiative, and PH Balanced. These initiatives provide a firmwide forum to share experiences, as well as an opportunity to participate in a supportive network with common interests to help make life at the firm more inclusive. Learn more about our Global Diversity, Inclusion and Wellness Initiatives here.

Paul Hastings LLP is an equal employment and affirmative action employer F/M/Disability/Vet/Sexual Orientation/Gender Identity. Pursuant to local ordinances, we will consider qualified applicants with criminal histories in a manner consistent with the requirements of the Fair Chance Initiative for Hiring Ordinance.

Applied = 0
MORE JOBS LIKE THIS

(web-6468d597d4-w6ps7)