Data Governance Manager

Job Title _ Cloud Governance Manager

Location _ Remote

Duration _12+ Months Contract

Job Description

Key Responsibilities

• Data Governance Framework: Develop and implement policies, procedures, and standards for managing data assets from intake through disposal, leveraging tools such as Microsoft Purview Information Protection, Data Lifecycle Management, Data Loss Prevention, iManage Threat Manager, and Varonis.
• Data Retention & Classification: Design and enforce technical controls for data retention and classification policies, ensuring compliance with regulatory and business requirements.
• Security & Privacy Controls: Review and assess security and privacy measures across platforms to safeguard firm data against unauthorized access, use, or disclosure.
• Training & Enablement: Deliver training and guidance to employees on data governance best practices, clarifying responsibilities for managing and protecting data.
• Stakeholder Collaboration: Partner with attorneys, business teams, and IT stakeholders to design secure, compliant data access and sharing solutions.
• Integration with Governance Functions: Work closely with the Information Governance team, Office of General Counsel, Security Architecture, and GRC teams to align directives, design secure patterns, track risks, and support compliance initiatives.
• Cloud Platform Leadership: Provide thought leadership for data governance across Office 365 and other cloud platforms, including reporting, alerting, and secure design patterns.

Required Skills & Competencies

• Strong project management capabilities with the ability to manage risks associated with technology solutions.
• High-level technical understanding of security applications, cloud platforms, and data governance architectures.
• Knowledge of information security standards and frameworks (CSF, NIST, ISO) and awareness of the evolving cyber threat landscape.
• Proficiency in governance, risk, and compliance (GRC) practices, with strong analytical and problem-solving skills.
• Excellent collaboration, communication, and stakeholder management skills.

Qualifications

• Bachelor s degree in Information Security, Information Assurance, Computer Science, or Information Systems preferred.
• 7+ years of combined IT, information security, and risk management experience.
• Professional certifications such as CISA, CISM, GSEC, CISSP, or CRISC preferred.
• Advanced knowledge of Microsoft Purview and other governance tools.
• Strong understanding of risk management frameworks, security technologies, and law firm operations.
• Proficiency in Microsoft Outlook, Word, Excel, Visio, and PowerPoint.

Skills and Certifications [note: bold skills and certification are required]

• project management capabilities with the ability to manage risks associated with tech solutions
• High-level technical understanding of security applications
• High-level technical understanding of cloud platforms, and data governance architectures.
• Knowledge of information security standards and frameworks (CSF, NIST, ISO)
• Awareness of the evolving cyber threat landscape.
• Proficiency in governance, risk, and compliance (GRC) practices
• 7+ years of combined IT, information security, and risk management experience.
• Professional certifications such as CISA, CISM, GSEC, CISSP, or CRISC are preferred.
• Advanced knowledge of Microsoft Purview and other governance tools.
• Strong understanding of risk management frameworks, security technologies, and law firm operations.