Dentons US LLP is recruiting for an IT Governance & Security Analyst. This position will be responsible for coordinating and supporting governance and security efforts in collaboration with other key stakeholders in the business, including cross-functional coordination of the governance and security aspects of work and systems that relate to the delivery of legal services, including the Firm's practice areas and support departments. This position will help identify and operationalize risk management initiatives and standards that need to be applied to the operating environment. Key functional areas of this position include initiatives governing the Firm's client and administrative data / information in accordance with ethical, legal and contractual requirements.
• Define and communicate governance and compliance priorities to the IT team. • Research potential technology solutions and, where applicable, implementation to support new Information Governance initiatives. • Establish and maintain regular written and in-person communications pertinent to governance and security activities. • Support Business Leaders in client-facing engagements and act as an IT Ambassador in client assessments/security audits. • Help develop, maintain, evaluate and implement policies and procedures in line with both business requirements and national and international legislative changes, (i.e. ISO 9001/27001/22301, HIPAA processes and procedures). • Help ensure IT's services are properly positioned within client assessment responses as well aligning responses at a Global level where appropriate. • Coordinate and oversee internal and external client audits as it relates to IT security and compliance. • Assist with third-party IT vulnerability assessments. • Work with IT personnel to ensure awareness and alignment of ongoing client, industry and best practice compliance obligations. • Align services to support IT requirements and standards, globally as applicable. • Help obtain and maintain existing and future accreditations in accordance with applicable regulations, client-requirements and industry best-practices. • Ensure that the following activities occur in accordance with Firm approved information governance policies, including: - Administer document classification audits and coordinate remediation activities - Help develop guidance, processes, and tools / controls to ensure Firm data is structured and secured appropriately • Help ensure data integrity of core client data across Firm systems • Assist with the collection of information related to subpoenas directed to the Firm, as well as information requests from internal teams. • Work with administer of legal hold/preservation order system and procedures & coordinate with in-house counsel to collect electronic data for internal review as appropriate. • Create and refine searches to identify relevant material for attorney review. • Help advise legal teams on how to manage protected information. • Work closely with Information Technology and Information Security teams to review and respond to security questionnaires and due diligence requests. • Conduct access entitlement reviews of matters involving sensitive information. • Help identify and contain risk relating to information management, and foster a compliance culture. • Provide practical recommendations and solutions to complex and/or technical issues that relate to the management of client and Firm administrative information. • Coordinate the development and maintenance of supporting procedures and processes. • Serve as liaison to, and foster good working relationships with, attorneys and others needing assistance with information governance issues. • Assist with responding to information requests from partner and other internal and external parties. • Respond proactively to both business and project issues and escalates appropriately.
• Knowledge and experience of industry standards such as ISO 27001, Cyber Essentials. • Solid understanding of data handling best-practices and information management and governance. • Knowledge of cross-border regulations, such as GDPR and EU data Privacy rules a plus. • Broad understanding of technology and legal applications preferred. • Solid information security experience across broad security domains. • Experience working with technical people responsible for implementing security technology. • Experience in security monitoring, detection, prevention and control systems a plus. • Ability to stay current with intrusion detection systems, hacker techniques, phishing schemes, emerging logical security threats, and compromised server techniques. • Ability to dig into details as well as analyze data from a high level view. • Understanding of the compliance, legal and ethical obligations that organizations should have with respect to logical and physical security, personally identifiable information and data protection. • CISSP/CISA/CISM certification preferred. • Excellent written and oral communication skills. • Highly motivated, proactive and outcome orientated; Keen attention to detail. • Ability to work closely with the others inside and outside the IT department and in a team-oriented collaborative environment. • Ability to influence internal and external stakeholders. • Self-starter that takes ownership of identified issues. • Analytical, evaluative, and problem-solving abilities. • Ability to effectively prioritize and execute tasks in a high-pressure environment. • Responsible for project timeliness and customer satisfaction. • Able to be an ambassador for Dentons being professional in outlook, attitude and appearance.
Dentons is the world's first polycentric global law firm. A top 20 firm on the Acritas 2015 Global Elite Brand Index, the Firm is committed to challenging the status quo in delivering consistent and uncompromising quality and value in new and inventive ways. Driven to provide clients a competitive edge, and connected to the communities where its clients want to do business, Dentons knows that unde...rstanding local cultures is crucial to successfully completing a deal, resolving a dispute or solving a business challenge. Now the world's largest law firm, Dentons' global team builds agile, tailored solutions to meet the local, national and global needs of private and public clients of any size in more than 125 locations serving 50-plus countries. www.dentons.com.