About Eleven Recruiting
We are a specialized technology staffing agency supporting professional and financial services companies. Why do we stand out in technology staffing? We listen and act as advisors for our candidates on how they can best add value, find interesting projects, and pave a path for career advancement. We advocate for best pay, diversity in tech, and best job-fit for every candidate we place.
Our client, a national law firm, is seeking an experienced Head of Information Security to join their team!
This role is primarily remote with occasional in-office visits as required. Candidates must be located within a commutable distance to one of the offices: Los Angeles, Washington DC, or San Francisco.
The Head of Information Security reports to the CIO, will lead the Information Security team and will engage regularly with top partners and General Counsel.
Responsibilities:
- Develop and implement an information security strategy in alignment with the firm's business objectives.
- Work closely with the CIO to define and refine the security vision, ensuring it remains current and effective in mitigating emerging threats. Serve as a key advisor to senior leadership, including partners and the General Counsel, on all matters related to information security.
- Lead, mentor, and manage a team of information security professionals and foster a culture of continuous learning and improvement.
- Ensure that the team is equipped with the latest tools and knowledge to effectively manage and respond to security incidents.
- Oversee the deployment, management, and optimization of security solutions, including, but not limited to:
- Endpoint Detection and Response (EDR)
- System Information and Event Logging (SIEM)
- Identity and Access Management (IAM)
- Data Loss Prevention (DLP)
- Vulnerability Management
- Monitor the Firm's cybersecurity landscape, identifying potential vulnerabilities and mitigating risks proactively.
- Lead the response to any security incidents, coordinating with internal and external stakeholders to ensure swift resolution.
- Develop, implement, and enforce security policies, standards, and procedures that align with internal and external requirements.
- Ensure the firm's compliance with all relevant laws, regulations, and industry standards, including, but not limited to: ISO 27001, GDPR, CCPA, and client guidelines.
- Lead audits, assessments, table-top exercises, and penetration test responses to ensure compliance and identify areas for improvement.
- Stay abreast of the latest developments in information security and ensure the firm's practices remain cutting-edge.
- Foster a culture of innovation within the security team and encourage the exploration and adoption of new tools and methodologies.
Qualifications:
- Bachelor's degree in information technology, information security, or a related field is preferred.
- Experience in a law firm or legal environment working directly with attorneys and senior management.
- CISSP, CISSM or other relevant certifications in Information Security.
- Strong knowledge of cybersecurity frameworks, standards, and best practices.
- Familiarity dealing with outside counsel guidelines.
- Excellent analytical and problem-solving skills, with the ability to work independently and as part of a team.
- Strong communication and interpersonal skills, with the ability to interact effectively with technical and non-technical staff.
- Proficiency with Microsoft Office Word, Excel, PowerPoint, and Visio is required
- Proficiency with Microsoft 365 (e.g., Microsoft SharePoint, Teams, and OneDrive) and document management systems is desired
- Proficiency with project management and collaboration tools is desired
Location: Los Angeles, CA
Seniority Level: Senior Level
Employment Type: Fulltime
Job Function: Information Technology
Salary: $160,000 - $230,000
