Demo
Salary Resume Critique Job Openings

Information Security Governance & Compliance Manager

Messerli & Kramer
Minneapolis, MN Full Time
POSTED ON 4/13/2025
AVAILABLE BEFORE 5/3/2025

Job Type

Full-time

Description

Founded in 1965, Messerli Kramer is a well-established full service law firm based in Minneapolis, Minnesota, with other offices in St. Paul and Plymouth, along with a satellite office in Milwaukee. We have a well- earned reputation within the business community of providing sound, reasoned and comprehensive legal advice. With an emphasis on building lasting relationships with our clients, our professionals take the time to listen and understand their legal issues within the larger framework of their business as a whole. Known for our dedication and responsiveness, our attorneys and staff are focused on finding pragmatic solutions and producing remarkable results for our clients.

Messerli Kramer serves individuals and businesses through three unique, yet complementary divisions. We represent a variety of clients across a series of practice groups : Banking and Finance, Business Litigation, Corporate and Estate Planning, Commercial Real Estate, Family Law, Consumer Collections & Creditor's Remedies and Government Relations.

POSITION SUMMARY

This role is onsite / hybrid in downtown Minneapolis.

The Information Security Governance & Compliance Manager assists the Chief Information Security Officer in overseeing the Firm's Information Security and Governance program and is responsible for risk-based activities including, designing, developing and implementing information security policies, procedures, and standards and monitoring the overall health of the information security program. This role also ensures the firm complies with internal policies and external regulations based on our vendor and client requirements. This individual will be assessing and mitigating risks, monitoring compliance with laws and regulations, and developing strategies to enhance firm governance practices. In addition, this position assesses the information security program compliance with policies, procedures, client frameworks, and industry standards; and assists with overall compliance with industry and customer information security requirements such as GLBA(Gramm-Leach Bliley Act), and PCI(Payment Card industry).

ESSENTIAL FUNCTIONS

  • Perform security assessments to determine effectiveness of implemented security controls.
  • Assess the security posture of systems throughout their life cycle
  • Lead efforts to counter security breaches and anticipate and reduce future security alerts, incidents, and disasters.
  • Assist management in identifying risks and actions to monitor, remediate & report via the risk register.
  • Lead and review third party and supplier risk management programs and assessments based on each firm division requirements.
  • Implement and support Plymouth, St. Paul and Minneapolis security compliance mandates from client contractual agreements.
  • Write reports and provide insights on the efficacy of the current security policies, incident responses, disaster recovery plans, and other security-related information.
  • Assist with Insurance renewal applications specific to required security controls and questionnaires
  • Manage and facilitate the IT team's responses to security questionnaire and security audit reviews received from client oversight programs.
  • Manage and monitor internal self-audit program
  • Monitor and manage response to the vulnerability management program
  • Monitor and enforce information security policies
  • Assist with outside audit and certification activities including management of security questionnaires
  • Advise on content section in established computer security education and awareness programs and design and conduct training ad hoc computer security education
  • Apply contemporary business principles integral to a high-tech organization
  • Assist with IT vendor management and partner with vendor IT360 and other managed services partners
  • Assist IT Management to identify security initiatives and the security budgeting process
  • Solve business and technology challenges

Requirements

POSITION QUALIFICATIONS

  • Accountable - Detail oriented, follows through in all areas of support services; accepts and delivers on responsibilities, requires others to follow up and follow through on commitments and responsibilities
  • Collaborative - Works and communicate effectively with others to cooperate and accomplish goals
  • Innovative - Generates new idea and solutions from self and others
  • Quality Conscious - Delivers accuracy and precision in work products, mindful of technical requirements, SLA, rules, and standards
  • Problem Solver - Uses data and logic to quickly find solutions to difficult challenges
  • Resourceful - Knows how to get what is needed; supervises time and workloads for maximum efficiency
  • Results-Driven - Achievement-oriented; achieves and exceeds goals; pushes self and others for results
  • Time-Wise - Prioritizes; respects others' time; adheres to schedules and agendas
  • Lifetime-Learner - Proactively seeks educate and build new skills

    • SKILLS & ABILITIES

  • Experience working in a regulated environment or legal experience.
  • Experience in GLBA, PCI and SOC compliance environments.
  • Familiarity with NIST(National Institute of Standards and Technology) SP 800 series, ISO / IEC 27000 series, and similar standards.
  • Excellent verbal and written communication skills.
  • Ability to work in a high-stress environment.
  • Excellent oral, written and interpersonal skills with the ability to influence and work effectively with diverse groups of peers and business partners.
  • Detail oriented with a demonstrated ability to work on multiple tasks simultaneously with strong organizational and prioritization skills.
  • Demonstrated ability to remain current on the latest technology and best practices in information security.

    • EXPERIENCE

    Must possess 3 years' experience in information security policy, security authorization, audit, and technical practice.

    SALARY

    Base compensation will vary based on level of experience. Compensation range $100,000-160,000.00. Associate Attorneys are also eligible for monthly and / or annual bonus incentives based on performance

    EDUCATION

    B.S. or equivalent in Computer Science, Information Science & Technology, or related field. CISSP, CISA, or CISM preferred. Other information security certifications highly desired.

    PHYSICAL DEMANDS

    None.

    WORK ENVIRONMENT Office suite and remote environment - this position may travel between three locations, Minneapolis, St. Paul, and Plymouth MN, primarily stationed in Minneapolis. Messerli & Kramer currently offers a hybrid work environment where a mix of office and work from home hours are available.

    BENEFITS

  • Medical, Dental, & Vision Insurance
  • HSA & FSA Accounts
  • Employer contribution in Health Savings Account if enrolled in HDHP medical plan
  • 401K, with 4% company contribution (after completion of 1 year of service)
  • Paid time off
  • Paid company holidays
  • Company Paid Basic Life Insurance
  • Employee Assistance Program
  • Monthly reimbursement for parking and cell phone
  • Building amenities include : onsite restaurants & onsite free gym
  • Hybrid Remote Schedule

    • Messerli Kramer is fully committed to equality of opportunity in all aspects of employment. It is the policy of Messerli Kramer to provide equal employment opportunity to all employees and applicants without regard to race, color, religion, national or ethnic origin, military status, veteran status, age, gender, gender identity or expression, sexual orientation, genetic information, physical or mental disability or any other protected status. Reasonable accommodations can be made to enable individuals with disabilities to perform the essential functions.

    The company has reviewed this job description to ensure that essential functions and basic duties have been included. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate.

    Salary Description

    90,000-160,000.00

    Salary : $100,000 - $160,000

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Information Security Governance & Compliance Manager?

    Sign up to receive alerts about other jobs on the Information Security Governance & Compliance Manager career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $111,725 - $147,313
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $112,673 - $137,290
    Income Estimation: 
    $139,945 - $168,577
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $152,549 - $188,894
    Income Estimation: 
    $194,072 - $240,547
    Income Estimation: 
    $135,994 - $168,063
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $70,462 - $84,818
    Income Estimation: 
    $77,991 - $108,747
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Messerli & Kramer

    ASSOCIATE ATTORNEY - MINNESOTA
    Messerli & Kramer
    Hired Organization Address Minneapolis, MN Full Time
    Job Type Full-time Description Summary : Messerli & Kramer represents national creditors in Minnesota, Wisconsin, Iowa, ...
    Lateral/Senior Level Attorney-Estate Planning
    Messerli & Kramer
    Hired Organization Address Minneapolis, MN Full Time
    Founded in 1965, Messerli Kramer is a top-20 law firm in Minnesota, with offices in Minneapolis, St. Paul, and Plymouth....
    Corporate and Securities Attorney
    Messerli & Kramer
    Hired Organization Address Minneapolis, MN Full Time
    Overview Messerli Kramer is a leading full-service law firm in Minneapolis. We have a well-earned reputation within the ...
    MEDIA SPECIALIST
    Messerli & Kramer
    Hired Organization Address Minneapolis, MN Full Time
    500 Sign-on Bonus After Successfully Completing 90 Days Summary : The role of the Media Specialist is to work closely wi...
    View More Jobs at Messerli & Kramer

    Not the job you're looking for? Here are some other Information Security Governance & Compliance Manager jobs in the Minneapolis, MN area that may be a better fit.

    Manager, Security Governance, Risk and Compliance

    KPMG US, Minneapolis, MN

    Senior Information Technology Project Manager

    Master Compliance, Saint Paul, MN

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!