Head of Information Security
Position Type: Full Time
Exempt
Hybrid Flexible (Up to 1 - 3 Days Onsite)
Location: San Francisco
Salary Range: $157,500.00 - $277,500.00*
*The salary range is the one that Munger, Tolles & Olson LLP reasonably expects to pay for this position. The salary range does not guarantee, obligate, nor set expectations of an applicant’s wage in the event of hire. The posted range is only one component of Munger, Tolles & Olson LLP’s Total Rewards package.
-------------
Join Our Team as Head of Information Security!
Are you a visionary leader with a passion for cybersecurity
?We’re looking for a dynamic Head of Information Security to shape our firm’s cybersecurity strategy and lead our talented Information Security team. Reporting directly to the CIO, you’ll work closely with top partners and the General Counsel to ensure we stay ahead in the legal industry’s cybersecurity landscape. If you’re ready to drive our security posture forward and make a significant impact, we want to hear from you
!
Be a leader in cybersecurity with u
s!
Job Functions & Responsibilit
iesStrategic Leadersh
ip:Develop and implement an information security strategy in alignment with the firm's business objectiv
es.Work closely with the CIO to define and refine the security vision, ensuring it remains current and effective in mitigating emerging threa
ts.Serve as a key advisor to senior leadership, including partners and the General Counsel, on all matters related to information securi
ty.
Team Managem
ent:Lead, mentor, and manage a team of information security professionals and foster a culture of continuous learning and improvem
ent.Oversee the recruitment, development, and retention of talent within the information security t
eam.Ensure that the team is equipped with the latest tools and knowledge to effectively manage and respond to security incide
nts.
Cybersecurity Operat
ions:Oversee the deployment, management, and optimization of security solutions, including, but not limite
- d to:Endpoint Detection and Response
- (EDR)System Information and Event Logging (
- SIEM)Identity and Access Management
- (IAM)Data Loss Prevention
- (DLP)Vulnerability Manag
ementMonitor the Firm's cybersecurity landscape, identifying potential vulnerabilities and mitigating risks proacti
vely.Lead the response to any security incidents, coordinating with internal and external stakeholders to ensure swift resolu
tion.
Policy Development & Compl
iance:Develop, implement, and enforce security policies, standards, and procedures that align with internal and external require
ments.Ensure the firm’s compliance with all relevant laws, regulations, and industry standards, including, but not limited to: ISO 27001, GDPR, CCPA, and client guide
lines.Lead audits, assessments, table-top exercises, and penetration test responses to ensure compliance and identify areas for improv
ement.Manage the firm’s security awareness and training pr
ogram.
Stakeholder Enga
gement:Regularly interact with top partners and the General Counsel to communicate risks, propose solutions, and report on the status of the firm’s information security p
rogram.Act as a liaison between the Information Security team and other departments within the firm to ensure a unified approach to se
curity.Build and maintain relationships with external security partners, vendors, and consultants to enhance the firm's security capabi
lities.
Innovation & Continuous Impr
ovement:Stay abreast of the latest developments in information security and ensure the firm’s practices remain cutti
ng-edge.Foster a culture of innovation within the security team and encourage the exploration and adoption of new tools and method
ologies.Lead initiatives to enhance the firm’s cybersecurity posture, including threat intelligence, advanced analytics, and automated response mec
hanism
s.
Tools Proficiency with Microsoft Office Word, Excel, PowerPoint, and Visio is
requiredProficiency with Microsoft 365 (e.g., Microsoft SharePoint, Teams, and OneDrive) and document management systems i
s desiredProficiency with project management and collaboration tools i
s desired
Minimum Job Quali
fications Bachelor’s degree in information technology, information security, or a related field is
preferred.Experience in a law firm or legal environment working directly with attorneys and senior m
anagement.CISSP, CISSM or other relevant certifications in Information
Security.Strong knowledge of cybersecurity frameworks, standards, and best
practices.Familiarity dealing with outside counsel g
uidelines.Excellent analytical and problem-solving skills, with the ability to work independently and as part
of a team.Strong communication and interpersonal skills, with the ability to interact effectively with technical and non-techni
cal staff.
Physic
al Demands Writing, typing, reading, speaking, hearing, seeing, sitting, bendin
g, reaching
Working
Conditions The position is primarily remote, with occasional in-office visits as required. Candidates must be located within a commutable distance to one of
our offices.Quiet office environment in a high-rise building, seated the majority
of the time
Di
rect Reports A
ssigned Staff
For full details of the position and for information on other job opportunities, please visit our website
at www.mto.co
m-------------The Head of Information Security role is an amazing opportunity available on our team of professionals at Munger, Tolles & Olson, LLP! We offer competitive pay, benefits and an opportunity to make an impact in
today’s world
.-------------Why Choose
- Munger Tolles?Precedent-Setting Cases: Clients turn to us for groundbreaking cases that demand crea
- tive thinking.Resourceful Deployment: When the stakes are high, we can mobilize an “army of t
- rial lawyers”.High-Profile Representation: We represent major entities such as Bank of America, Edison International, Oaktree Capital Management, PG&E, and Berks
hire Hathaway.
Our Excepti
- onal Attorneys:Clerkship Experience: Nearly 75% of our lawyers and over 80% of our litigators have clerked for federal o
- r state judges.Diverse Backgrounds: Our attorneys bring additional dimensions to client service. Some honed their skills as assistant U.S. attorneys, while others hold advanced degrees in fields like physics, engineering
, and medicin
e.-------------
We are a talent-first Firm and are always looking for great people. We encourage you to apply even if the level of this position is not an exact match to your qualifications. This may not guarantee your placement into the opening; however, it is always worth exploring if there is an opportunity
for the futur
e. -------------About Munger, To
lles & OlsonMunger, Tolles & Olson has been consistently ranked on The American Lawyer’s A-List since its inception in 2004, including nine years in the top spot. We strive to hire only the most qualified and creative lawyers. We believe that clerkships provide valuable experience. In this regard, about 80% of our attorneys served as law clerks to federal or state judges and sixteen attorneys were clerks to U.S. Supreme Court Justices. We recruit and retain the best professional talent to support our Attorneys with a focus on service and excellence. We have a full spectrum of functional positions including Information Technology, Information Security, Accounting, Human Resources, Legal Support
, and Marketi
ng.-------------MTO is an equal opportunity employer and does not discriminate in employment on the basis of race, including but not limited to hair texture and protective hairstyles (for example, braids, locks, and twists), color, ethnicity, religion, gender, gender identity or expression, pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth and breastfeeding, marital or domestic partner status, parental or family care status, national origin, ancestry, age, sexual orientation, disability or medical condition, genetic characteristic, political affiliation, military or veteran status, or any other characteristic protected by federal, state or local law. It is the policy of Munger, Tolles & Olson LLP to prohibit discrimination, unlawful harassment (including sexual harassment), and retaliation. This commitment prohibits such conduct by any individual involved in MTO’s operations and by anyone doing business with or on behalf of Munger, Tolles
& Olson L
LP.-------------Munger, Tolles & Olson LLP (MTO) does not accept unsolicited resumes from 3rd parties or agencies. Any unsolicited resumes and profiles received from 3rd parties or agencies will be considered property of MTO and no fees will be due or paid. If you wish to become an approved Agency with MTO, please contact a member of the MTO Talent A
cquisition Team.