Morrison & Foerster LLP, an Am Law 50 law firm with 16 offices worldwide, has an opening for a Director of Information Security within our Information Technology Department in our San Francisco office.
Guided by firmwide immediate and long-term business strategies and objectives, responsible for the information technology-based security, risk, and compliance function. Oversees all activities directly related to the development, implementation, maintenance of, and adherence to, the Firm's privacy program in compliance with federal and state laws and industry standards. Working with key Partners and Executives, helps establish privacy and security organizational policies, procedures and methods to protect sensitive data and information from being compromised. Ensures position and department provide highly effective, direct, and responsive support to practice group needs firmwide. Addresses the physical security of data processing facilities or operations, risk management audits and compliance with established policies. Ensures client service and satisfaction are attained in all areas of position.
The ideal candidate will have the following qualifications:
Education and Experience
Bachelor's degree or higher, preferably in technology or business discipline.Advanced degree and certifications preferred.
15+ years of relevant information security and IT operations experience with a minimum of 5 years at Director / VP/SVP level.
CISSP certification required;ISO 27001 Lead Auditor certification required.
Experience with NIST SP 800-53 and the NIST Cybersecurity Framework.
Experience with HIPAA and other Privacy Requirements.
Experience operating in a global organization. Must have strong influencing skills to get things done. Must partner well with business leaders.
Strategic leader who is also very execution oriented. Driving change and results is key.
Strong background in cyber risk management, privacy, and incident response.
Experience leading teams within a managed services environment.
Experience implementing security technologies, including encryption, network security, intrusion detection and digital forensics.
Demonstrated success leading cross functional, sourced or matrixed teams.
Proven track record in executive communications.
Previous law firm or professional services experience preferred.
Teamwork and Applied Skills
Strong sense of accountability, taking ownership over projects and responsibilities and resolving issues proactively.
Ability to take an assignment from inception to completion with minimal supervision or by following broad guidelines.
Excellent organizational and project management skills; ability to manage multiple requests, assess priorities, and achieve solutions under deadlines.
Ability to analyze needs and to determine priorities based on strategic and business objectives.
High client service ethic and a proven record in delivering exemplary client satisfaction to external and internal client constituencies.
Excellent communication skills and the ability to build effective internal and external client relationships.
Strong written and verbal communication skills; ability to present complex ideas succinctly and clearly.
Strong technical aptitude and understanding, including ability to quickly learn new applications.
Strong team management and leadership skills, with a proven ability to develop and lead in a client service-focused environment.
Extensive budgeting experience, including forecasting and managing significant capital and expense budgets.
Ability to quickly assess information, anticipate issues and outcomes, and make effective decisions, including ability to draw clear conclusions from a diverse collection of data.
A highly proactive, solution-oriented approach to work and interactions.
Strong organizational skills and the ability to create organizational solutions where a precedent may not exist.
Strong team player skills and ability to work collaboratively with diverse individuals at all levels of an organization.
Additional Personal Characteristics
Must possess professional stature to consult with and influence a sophisticated and seasoned partner group with credibility, confidence and a collaborative approach.
Impeccable integrity and ethics combined with outstanding judgment and inter-personal skills including excellent self-awareness and honed diplomacy skills.
High level of intellect combined with an action oriented and problem solving nature.
Exceptional written, verbal and client service skills. Excellent advisory capabilities and presentation skills.
Ability to work well under pressure and with a variety of personalities.
Extremely high professional standards and expectations for self and others.
Ability to take unpopular positions when necessary while maintaining trust and credibility.
Ability to succinctly summarize issues to enable decision making.