Manager, Cloud Governance - Full Time Only

Great opportunity!!! Our client is seeking a Manager, Cloud Governance, who plays an essential role in overseeing the client s data management practices, ensuring that data across the firm s solutions are available and secure. This position involves developing and implementing data standards and policies that support the organization s objectives, while also facilitating effective data sharing and protection. By coordinating with various departments, the Manager, Cloud Governance ensures that data protection practices align with regulatory requirements and business strategies, ultimately enhancing the security processes and operational efficiency of the firm s data.

RESPONSIBILITIES:

• Develop and implement a data governance framework: As a Manager, Cloud Governance, you will be responsible for creating and implementing a data governance framework that outlines the policies, procedures, and standards for managing the organization s data assets from intake to disposal, using data governance tools such as of Microsoft Purview Information Protection, Data Lifecycle Management and Data Loss Prevention, iManager Threat manager, Varonis etc.
• Designing the implementation of data retention policies and supporting technical controls: You will review the supporting policies and procedures regarding data retention that define how long data should be kept and how it should be disposed of and designing the implementation of technical controls to enforce the relevant policies and procedures
• Designing the implementation of data classification policies and supporting technical controls: You will review the supporting policies and procedures regarding data classification that define how data should be classified based on its sensitivity, criticality, and regulatory requirements and designing the implementation of technical controls to enforce the relevant policies and procedures
• Review data security and privacy controls: You will be responsible for reviewing data security and privacy controls on relevant solutions to ensure that the data governance technologies, policies and procedures protect the firm s data from unauthorized access, use, or disclosure
• Provide training in data governance best practices: You will provide training In data governance best practices to ensure that employees understand their roles and responsibilities in managing data.

The Manager, Cloud Governance will also be responsible for the following:

• Working with various business stakeholders to understand their data access and sharing requirements and influence the design of secure and compliant solutions
• Partnering with Information Governance Team to ensure the directives of the Office of the General Counsel are executed
• Designing the implementation of Microsoft Purview Information Protection, Data Lifecycle Management and Data Loss Prevention
• Designing reporting and alerting capabilities in different solutions to support a robust data governance function
• Providing data governance thought leadership for the O365 implementation and other cloud platforms
• Working with Security Architecture team to develop data governance impactful secure design patterns
• Working with the Governance Risk and Compliance team to ensure that newly identified risks are properly entered into the risk register as needed and assist the GRC team with updates on technical risk mitigation plans

REQUIREMENTS:

• Strong project management skills and understanding of the technology and operational risks as related to technology solutions
• Ability to develop and maintain a solid working relationships across the departments
• High-level technical understanding of security applications, platforms and architectures
• Advanced awareness of current information security standards and developments (CSF, NIST, ISO), as well as the emerging cyber threat landscape
• Strong understanding of Cloud and data governance from a technology perspective
• Excellent analytical and problem-solving skills, inquisitive nature and comfort challenging current practices
• Understanding of governance, risk and compliance (GRC) practices and technologies across governance, process and technical domains

QUALIFICATIONS:

• Bachelor degree in Information Security, Information Assurance, Computer Science, Information Systems preferred
• At least 7 years of combined information technology, information security and risk management experience
• CISA, CISM, GSEC, CISSP, CRISC or other security-related certification preferred
• Advanced understanding of Microsoft Purview and other data governance tools and methodologies
• Strong understanding of risk management concepts, frameworks, and methodologies
• Strong understanding of information security concepts and technologies
• Fundamental knowledge of the operation of law practices
• Advanced knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint.