Cyber Security & Automation Specialist

Cyber Security & Automation Specialist

Our growing personal injury law firm is seeking a Cyber Security & Automation Specialist to strengthen our technology infrastructure and lead secure automation initiatives across the organization.

This role combines advanced process automation expertise with cybersecurity strategy and implementation. The ideal candidate will help build and secure our 2026 technology infrastructure roadmap ensuring our data, systems, and client information remain protected while optimizing workflows and integrations across platforms.

You will play a critical role in designing secure system architecture, implementing automation, enforcing data governance policies, and ensuring compliance best practices in a fully remote environment.

Key Responsibilities

• Design and implement cybersecurity frameworks to protect firm data, systems, and communications.
• Conduct security audits, vulnerability assessments, and risk analyses.
• Establish and enforce data access controls, role-based permissions, and MFA policies.
• Monitor and respond to security incidents, threats, and breaches.
• Develop disaster recovery and business continuity plans.
• Implement endpoint security and secure cloud configuration best practices.
• Ensure compliance with legal industry data protection standards and privacy regulations.
• Partner with leadership to build a long-term cybersecurity roadmap for 2026 and beyond.

• Implement secure integrations between Filevine, Lead Docket, RingCentral, CallRail, Google Workspace, and other tools.
• Build automation using APIs, Webhooks, Zapier, Make.com, Power Automate, or similar tools.
• Ensure all integrations follow cybersecurity and data governance standards.
• Automate client follow-ups, case updates, reporting workflows, and internal notifications.
• Maintain documentation of automation architecture and security safeguards.

• Optimize case management workflows to increase productivity and reduce manual work.
• Implement secure data transfer protocols across systems.
• Improve intake-to-case lifecycle automation.
• Create automation dashboards and monitoring systems to detect anomalies.

• Develop SOPs for cybersecurity protocols and automation workflows.
• Create system architecture diagrams and infrastructure documentation.
• Document access management and system dependencies.
• Provide training materials for staff on cybersecurity best practices.

• Collaborate with operations, intake, litigation, and executive teams.
• Translate complex security and automation concepts into clear, non-technical language.
• Train staff on phishing prevention, data protection, and secure system usage.
• Act as the internal advisor on security risks and automation strategy.

Required Skills & Qualifications

• 5+ years of experience in process automation, systems integration, and/or cybersecurity.
• Strong experience with APIs, Webhooks, and system integrations.
• Hands-on experience with automation platforms (Zapier, Make.com, Power Automate, Airtable).
• Experience with custom scripting (Python, JavaScript) for automation and security controls.
• Knowledge of cybersecurity principles including:
• Access control models (RBAC)
• MFA and identity management
• Encryption standards
• Cloud security best practices
• Endpoint protection
• Network security fundamentals
• Experience implementing secure cloud-based environments (Google Workspace preferred).
• Ability to conduct security audits and vulnerability assessments.
• Strong documentation and communication skills.
• Ability to operate independently in a fully remote environment.

Preferred Qualifications (Highly Valued)

• Experience in legal, insurance, healthcare, or compliance-heavy industries.
• Familiarity with frameworks such as:
• NIST Cybersecurity Framework
• ISO 27001
• SOC 2 principles
• Experience with SIEM tools or security monitoring platforms.
• Familiarity with business intelligence tools (Power BI, Tableau, Looker, DOMO, etc.).
• Experience building IT governance policies.
• Cybersecurity certifications (Security+, CISSP, CEH, CISM) are a plus.