Enterprise Security Compliance Lead

Latham & Watkins is a global law firm consistently ranked among the top firms in the world. The success of our firm is largely determined by our commitment to hire and develop the very best and brightest, creating a team that provides our clients with the highest quality of work and service. We are driven by our core values: respect, innovation, and collaboration.  

The Enterprise Security Compliance Lead is an integral part of Latham’s Global Security and Risk Management team. This role will be responsible for participating in the overall process related to client security audits, vendor security audits, and other security compliance activities, while completing assigned client security reviews from intake through closure by identifying all necessary internal stakeholders based on the request. This role will be located in our Global Services Office located in downtown Los Angeles office. Please note that this role may be eligible for a flexible working schedule that allows for a hybrid and in-office presence.

Other key responsibilities include:

• Assisting the vendor security audit process for assigned vendors, including collecting and reviewing submitted materials, following-up on outstanding items, and drafting summary reports
• Maintaining relationships with third party audit services who audit firm vendors, audit the firm on behalf of clients, and those who otherwise audit or evaluate the firm (e.g., ISO 27001 assessors, independent consultants)
• Acting as a project manager as assigned to ensure the success of ISO 27001, client and vendor audits, and other assessments (e.g., identifying internal stakeholders, scheduling and motivating others to meet deadlines, assembling relevant and appropriate documentation, completing necessary responses, tracking necessary follow-up)
• Arranging penetration tests and vulnerability testing; scheduling tests, and following up on results, while delivering the results of internal and external system vulnerability scans, arranging necessary internal follow-up to facilitate agreement coordinate remediation of items
• Organizing team work and reviewing for consistency and quality

We’d love to hear from you if you:

• Exhibit an understanding of business security practices and procedures
• Demonstrate knowledge of information security technologies
• Display knowledge of a variety of communication protocols and encryption techniques/tools

And have:

• A Bachelor's degree or equivalent in Information Systems, Computer Science, Engineering or related field; a minimum of five (5) years’ Security and Technology experience may be considered in lieu of a degree
• Recognized security certifications (e.g., CISA, CRISC, CDPSE, CISSP)
• A minimum of five (5) years’ experience in IT audit or IT risk management
• A minimum of three (3) years’ experience in performing security assessments, IT vendor risk assessments, and vulnerability management reviews
• A minimum of two (2) years’ experience applying project management concepts

Successful candidates will not only be provided with an outstanding career opportunity and welcoming environment, but will also be provided with a generous total compensation package with bonuses awarded in recognition of both individual and firm performance. Eligible employees can participate in Latham’s comprehensive benefit program which includes:

• Healthcare, life and disability insurance
• A generous 401k plan
• At least 11 paid holidays per year, and a PTO program that accrues 23 days during the first year of employment and grows with tenure
• Well-being programs (e.g. mental health services, mindfulness and resiliency, medical resources, well-being events, and more)
• Professional Development programs
• Employee discounts
• And more!

Additionally, we have a range of diversity programming including Global Affinity Groups. These groups provide a firmwide platform to share experiences and advice as well as an opportunity to participate in a supportive network with common interests to help make life at the firm even better.

Latham & Watkins is committed to diversity, equal opportunity, sustainability, and pro bono legal services. We draw from a remarkable wealth of talent to create one of the world's leading law firms, and advance these commitments through the work of our Global Citizenship department. Our lawyers, paralegals, and professional staff worldwide comprise a rich mixture of different races, ethnic backgrounds, religions, sexual orientations, cultures, and primary languages. Our diversity makes us who we are.

Latham & Watkins LLP will consider qualified applicants with criminal histories in a manner consistent with the City of Los Angeles Fair Chance Initiative for Hiring Ordinance (FCIHO)​.  Please click the link below to review the Ordinance.

Please click here to review your rights under U.S. employment laws. #MidSenior #LI-JG2