SeniorSecurityEngineer

At Morgan communicate security posture, incidents, and recommendations clearly to technical staff and firm leadership. Manage application security assessments and lifecycle oversight to retire applications that are inactive or pose security risks. Qualifications Strong hands-on expertise across: Defender XDR enterprise defense suite and Microsoft Sentinel with proficient KQL; M365 tenant hardening (Entra ID, Exchange, Teams, SharePoint); Azure infrastructure security; security automation (SOAR); Entra ID and Conditional Access; vulnerability assessment; Defender for Endpoint, Intune, Application Control; and Microsoft Purview (DSPM, IP, DLP, IRM, DLM, AI). Strong technical, organizational, time-management, and communication skills. Participate in scheduled after-hours changes as needed. Education and Experience Experience at a law firm or in a similarly regulated, confidentiality-driven environment. Demonstrated experience securing AWS and/or GCP environments in enterprise settings. Experience designing and implementing security controls for AI and agent-based workloads. 4–7+ years of experience as a Security Engineer at a large, multi-state organization. #LI-MB1 Benefits Morgan & Morgan is a leading personal injury law firm dedicated to protecting the people, not the powerful. This success starts with our staff. For full-time employees, we offer an excellent benefits package including medical and dental insurance, 401(k) plan, paid time off and paid holidays. Equal Opportunity Statement Morgan & Morgan provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. E-Verify This employer participates in E-Verify and will provide the federal govern