Manager, Risk and Compliance

Information TechnologyAll Practice AreasCharleston, Charlotte, Pittsburgh, Washington, DC
apply

Job Description

At K&L Gates, we are looking for smart, imaginative and hard-working people with diverse backgrounds, experiences and ideas to join us.  Perhaps our search for talented visionaries and your search for important and impactful work lead to the same place.

As the leader of the Business Continuity and Compliance team, the Manager of Risk and Compliance primarily drives business continuity and security compliance programs and procedures in support of Firm facilities/operations worldwide. This position oversees the resilience programs and safety of firm personnel, facilities and assets globally, both within and outside the firm controlled space. Additionally, this position develops and maintains the firm’s crisis management, business continuity and compliance programs, ensuring alignment with appropriate national and international standards.

Essential duties

Compliance

  • Develop and implement a system for ensuring senior management awareness of security or crisis risks to which the Firm is exposed. 
  • Ensure that appropriate risk management measures are in place for all foreseeable risks and conduct regular reviews of the Firm’s risk exposure in order to anticipate where risk exposure may be changing.
  • Support the Firm’s ISO 27001 program and all governing bodies, including the Information Security Management System (ISMS) Management Committee.  Activities include attending meetings, reviewing, discussing and enforcing policies, procedures and standards.

Business Continuity

  • Develop and maintain the K&L Gates business continuity management plan.  Where necessary ensure compliance with an internationally recognized standard;
  • Provide business continuity management leadership and expertise to the Firm globally;
  • Lead an annual Business Impact Analysis session with executive management in order to ascertain the Firm’s mission critical activities, recovery time objectives and the threats and risks posed;
  • Manage business continuity technologies, including the emergency notification system and business continuity planning software; ensure timely situational updates to internal and external stakeholders; capitalize on business opportunities to refine processes and technologies to mitigate exposure during disruptions of service;
  • Ensure wide understanding of the plans to recover the business, and where appropriate conduct training with critical individuals.  Own and publish the plans for corporate and office recovery, and also specific plans for recovering people (in the event of a pandemic), infrastructure, Information and communications technology, and data and processes.

Collaboration

  • Establish partner relationships with office and departmental Directors to assist in seamless execution of firm compliance requirements;
  • Review existing Firm vendor relationships, recommend changes and contract enhancements, and ensure vendor compliance with contract terms;
  • Address client inquiries regarding the firm’s information security and business continuity capabilities.
  • Function as a key contributing member for all Information Security Projects
  • Maintain regular communication with all Managers and Team Leads in the Global Operations department

Experience and skills required

  • Bachelor’s degree required, graduate degree preferred; 10+ years significant experience in information security, business continuity, military or law enforcement, public service or private sector security organization preferred, with progressively responsible management experience, or an equivalent combination of education and experience sufficient to perform the essential functions of the job;
  • Experience with physical security assessments and systems;
  • Strong management experience in information security, compliance and business continuity planning.  Experience of auditing, risk management and contract / vendor negotiation;
  • Must be an intelligent, articulate and persuasive leader who is able to communicate security-related concepts to a broad range of technical and non-technical staff;
  • Highly skilled at developing relationships and rapport with key stakeholders including but not limited to partnering effectively with Global Security personnel
  • Must have a deep understanding of information technology and information security at an enterprise level;
  • Must have some experience working with or for international business entities; experience working within a law firm a plus;
  • Must have the ability to adapt to a rapidly changing business and technology landscape;
  • Must have strong analytical and problem-solving skills;
  • Must have a customer focus and ability to manage client expectations;
  • Ability to work in a dynamic environment with critical deadlines
  • Travel may be required

 

 

ABOUT THE FIRM

K&L Gates is a fully integrated global law firm with lawyers located across five continents in more than 40 offices. We have experienced dramatic growth in the past decade and now rank among the largest U.S. based law firms in the world.  We take pride in constantly striving for innovation, imagination and an entrepreneurial spirit. We come up with big ideas and then roll up our sleeves to get the job done, guiding our clients through their most complex issues in a variety of industry sectors and across multiple regions of the world. 

The industry recognition the firm has garnered emanates from the foundation of a global community aligned on behalf of our clients. The people at K&L Gates are committed to working together to create a legacy for each other, the firm, our clients, and the communities in which we serve. We thrive in an inclusive and socially conscious environment that embraces diversity and takes a holistic approach to the career evolution of all our professionals.

For more information or to view other job opportunities, please click here to go back to our careers page.

Notice: We participate in E-Verify in certain Firm locations for purposes of verifying employment eligibility.

EQUAL EMPLOYMENT OPPORTUNITY

The Firm is an equal opportunity employer. It is the policy of the Firm that employment decisions shall be based on merit, qualifications and competence. Employment practices will not be influenced or affected by virtue of a person’s race (including traits associated with race, including hair texture and protective hairstyles such as afros, braids, locks, and twists), religion, creed, color, national origin, ancestry, citizenship, physical disability, mental disability, medical condition, genetic information, marital status, sex, pregnancy, childbirth, breastfeeding, gender, parental status, gender identity, gender expression, sexual orientation, age, familial status, domestic violence victim status, military and veteran status, or any other characteristic protected by applicable federal, state, or local law. This policy governs all aspects of employment including, without limitation, recruiting, hiring, compensation, benefits, promotion, assignment, and dismissal. In addition, it is the Firm’s policy to provide an environment that is free of prohibited harassment of any kind including, without limitation, that which is based on sex, race, age, disability, ethnic background, or any other category protected by law (including the categories listed above). The Firm complies with federal and state disability laws and makes reasonable accommodations for applicants and employees with disabilities. If you require reasonable accommodation in completing this application, interviewing, or otherwise participating in the employee selection process, please contact askHR@klgates.com.