Leadership Solutions

Director, Information Security


King & Spalding


Atlanta, GA; Charlotte, NC; Houston, TX; Los Angeles, CA; New York, NY; San Francisco, CA; Washington, DC; Chicago, IL


The Director of Information Security will proactively work with business units and partners to implement practices that meet policies and standards for information security. He or she will oversee a variety of cybersecurity and risk management activities related to IT to ensure the achievement of business outcomes. The Director of Information Security will also work with executive management to determine acceptable levels of risk for the organization.

The firm offers a generous total compensation package with bonuses and raises awarded in recognition of individual merit-based performance. Eligible employees may participate in King & Spalding’s comprehensive benefit program including health and wellness plan, life and disability insurance, flexible spending accounts and a health savings account, a 401(k) plan, profit sharing plan, on-site gym access, discount programs, an onsite childcare center and a substantial Paid Time Off (PTO) program

Candidates will have the following key responsibilities in addition to other responsibilities listed in the full job description:

  • Facilitate an information security governance structure via the firm’s Technology & Innovation Committee. Determine the information security approach and operating model in consultation with stakeholders and aligned with the risk management approach and compliance monitoring of nondigital risk areas.
  • Provide regular reporting on the current status of the information security program to enterprise risk teams, senior business leaders and committees as part of a strategic enterprise risk management program, thus supporting business outcomes.
  • Work with the General Counsel’s office to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations.

Please see complete job description online.


Successful Candidates will have a minimum of 7 to 10 years of experience in a combination of risk management, information security and information technology and at least 5 years in a senior leadership role. The Director of Information Security must be a strategic leader who is a builder of both vision and bridges and someone who has the ability to energize teams. Candidates must possess excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences at various hierarchical levels, ranging from board members to technical specialists. The Director of Information Security should have sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies. He or she should also have a proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic business environment.

Candidates are required to have a Bachelor’s degree. A Masters degree is preferred. Candidates must also have knowledge and understanding of relevant legal and regulatory requirements, such as GDPR and HIPAA and other similar and emerging requirements.

How to Apply:

Apply online