Application Deadline:
28 January 2026
Department:
Information Technology
Location:
10 Earlsfort Terrace, Dublin 2, D02 T380
Description
Arthur Cox LLP is one of Ireland's leading law firms. We are an "all-island" firm with offices in Dublin and Belfast. We also have offices in London, New York, and San Francisco. Our practice encompasses all aspects of corporate and business law.
With 600 legal staff and a total headcount of nearly 900, we provide a comprehensive service to an international client base ranging from multinational organisations, banks, and financial institutions and established global leaders to government agencies and new players in emerging industry sectors.
Our story has been defined by our progressive outlook. For over 100 years, we have led the way in the legal field in Ireland. For our clients, we work to deliver the best service and support. With an independent, entrepreneurial spirit of innovation leading the way.
Background:
The Security Operations Engineer is responsible for safeguarding the firm's IT environment, plays a pivotal role in strengthening the firm's cyber defences and proactively addresses security incidents and vulnerabilities to continuously secure IT services against evolving threats.
This role requires strong experience with Microsoft 365 security tools, Microsoft cloud/on-prem technologies, networking fundamentals, and ITIL-aligned operational processes. The engineer will work collaboratively within the IT function and with external service providers to maintain a secure, compliant, and resilient IT environment.
Department: Information Technology
Location: On-site
Reports To: IT Security Operations Manager
Key Responsibilities
Security Monitoring & Incident Response:
* Follow-up on security events for on-prem, cloud, and hybrid infrastructures from SIEM platforms, EDR/AV solutions, Microsoft 365 security portals and other security tools and investigate potential threats, conduct root cause analysis and take remediation action.
* Continuously monitor CVE databases and threat intelligence sources for newly identified vulnerabilities and lead the implementation of appropriate security fixes and improvements, which may include patching, configuration changes, or architectural adjustments.
* Respond to and contain security events and incidents in accordance with ITIL-aligned management. processes. Escalate critical incidents as appropriate and support detailed post-incident reviews.
* Assist with developing and maintaining supporting documentation and standard operating procedures.
Microsoft 365 & Microsoft Security:
* Manage and optimise Microsoft 365 security configurations across Microsoft Defender for Endpoint, Microsoft Defender for Office 365, Defender for Identity / Entra ID security features.
* Oversee Conditional Access, MFA, identity protection and device compliance policies.
* Review and improve Microsoft Secure Score, compliance dashboards, and cloud security posture.
* Support identity and access management activities within Entra ID.
Security Engineering & Hardening:
* Track all open vulnerabilities and their remediation status to closure.
* Assist with system and endpoint hardening across the on-prem and cloud estates.
* Assist with patch compliance oversight and security baseline enforcement.
Governance, Risk & Compliance:
* Support compliance initiatives (ISO27001, GDPR or other relevant standards).
* Maintain and improve security policies, standards, guidelines, and SOPs.
* Provide evidence for audits and assist with risk assessments.
* Contribute to security awareness and improvement initiatives.
ITIL-based Operational Processes:
* Operate within ITIL processes including Incident, Problem, Change, and Request Management.
* Produce high-quality documentation, including runbooks, procedures, knowledge articles.
* Participate in change review processes (CAB) for security-related changes and deployments.
* Contribute to Continual Service Improvement for cyber operations and M365 security services.
Network Security:
* Collaborate with network teams to secure firewalls, VPNs, proxies, and network segmentation.
* Support configuration reviews for network security appliances and routing policies.
* Analyse network-based incidents (e.g., suspicious lateral movement, abnormal traffic patterns).
Skills Knowledge and Expertise
* Bachelor's degree in computer science, Information Technology or related field.
* At least 5+ years in cybersecurity engineering or operations (regulated industry referred).
* Hands-on experience with SIEM, EDR/XDR, vulnerability management, and cloud security (M365/Azure).
* Certifications (Highly desirable):
*CISSP, CISM, CEH or similar
Microsoft SC-200, SC-300, SC-400, AZ-500, MS-102
ITIL Foundation or similar service management awareness.
Proficiency in scripting (PowerShell, Python) for automation.*
Technical Skills:
* Strong experience with Microsoft 365 security products and technologies (Defender suite, Conditional Access, MFA, Entra ID).
* Experience with EDR/AV, identity security, and threat detection methodologies.
* Practical experience using of SIEM platforms.
* Ability to create or modify PowerShell scripts or similar automation tools.
* Experience with vulnerability management tools and patching workflows.
* Solid understanding of network security concepts, including firewalls, VPNs, IDS/IPS, proxies, DNS, and TCP/IP.
* Knowledge of ITIL processes (Incident, Problem, Change Management), PowerShell scripting proficiency for automation tasks a plus.
Soft Skills:
* Demonstrated critical thinking, troubleshooting and problem-solving skills to complex technical problems.
* Excellent interpersonal, written, and verbal communication skills in English to both technical and business audiences (individual or group).
* Strong customer service mindset.
* High-quality documentation skills and process-oriented approach.
* Ability to complete assignments with minimal direction.
* Ability to work independently and as part of a team.
* Strong attention to detail and a methodical approach.
Additional competencies:
* Collaborative mindset and who can work independently or more often as part of a diverse team and group of internal and external stakeholders.
* Exceptional aptitude for dealing with ambiguity, unexpected emergencies, frequent interruptions, and competing deadlines (must be able to work overtime and weekends when necessary).
* Proactive, flexible and adaptable disposition with a willingness to work hands-on, demonstrating attention to detail and the ability to take ownership of individual and team's work.
* Innate curiosity and willingness to learn and evolving technology environment on an ongoing basis: develops knowledge base and skill set beyond that called for by immediate tasks and continually push the 'knowledge envelope'.
* A continuous improvement mindset, continually critically evaluating results to drive improvements of processes and / or methods and/or underlying technology direction.
Benefits
We reward, encourage and empower our talented people to reach their full potential offering excellent progression opportunities along with a market leading remuneration package and benefits including:
* Discretionary annual bonus scheme
* 25 days annual leave
* Flexible working policy
* Immediate pension scheme
* TaxSaver and Bike to Work scheme
* Professional membership fees
* Full gym and wellness programme