Program Manager, Information Security

The way you think makes you different. At Wipfli, we embrace that.

Our inclusive culture provides a space for everyone to have a voice. Our growing number of DEI resource groups celebrate diversity and champion awareness throughout Wipfli.

We’re also focused on helping you achieve success with balance. From hybrid schedules and flexible time off to training programs and mental wellness initiatives, we take care of our team.

If you want to be in an environment where you can grow, feed your curiosity and make a difference, Wipfli is the place for you.

As a member of the Information Security team, the Information Security Program Manager will work with the firm's various business units, including IT, to manage multiple aspects of the security program. Work with business representatives to understand firm requirements, objectives, and priorities to define and improve security control requirements and help ensure controls mandated by the Information Security team adequately address associated risks and align to the firm's needs.

Essential Responsibilities

• Fosters alignment and collaboration with the business by consulting and advising assigned business group leadership on matters of information security.
• Helps ensure security and business objectives are met through participation in cross functional projects.
• Reviews and Assess Vendors via the firm’s Vendor Due Diligence process.
• Determines compliance status through the management and execution of control audits and assessments aligned to such standards as SOC, CMMC, and CIS20CSC.
• Evaluates IT security processes, controls, and effectiveness through assessments.
• Uses the firm’s GRC system to manage assigned control programs and any associated audits.
• Manages projects and other efforts associated with the firm’s compliance goals and requirements.
• Advises the Internal IT team as a security subject matter expert in support of various projects.
• Ensures accountability for addressing audit findings through the active management of any associated issues list

Required Qualifications

• 4+ years of job-related experience.
• Strong proficiency in security control standards such as CMMC or CIS20CSC
• Managing a SOC or similar compliance programs.
• Conducting security control audits and assessments.
• Associate Degree in Information Technology/Security or equivalent combination of education and work experience will be considered in lieu of a degree.

Skills & Abilities

• Ability to navigate through ambiguity and approach opportunities in a flexible and creative manner
• Ability to interact with high level managers
• Ability to work under pressure and time deadlines
• Ability to plan, prioritize, and organize work effectively
• Proficient in Word, Excel, and Outlook
• Ability to analyze data and recommend solutions
• Excellent Written, Verbal and Presentation skills
• Ability to balance many projects simultaneously

Wipfli is an equal opportunity/affirmative action employer. All candidates will receive consideration for employment without regards to race, creed, color, religion, national origin, sex, age, marital status, sexual orientation, gender identify, citizenship status, veteran status, disability, or any other characteristics protected by federal, state, or local laws.

Wipfli is committed to providing reasonable accommodations for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or participate in our recruiting process, please send us an email at [email protected].

Wipfli supports equal pay for equal work and values each candidate’s unique experiences and skill sets. The estimated pay range for this position is: $80,000 to $133,000. Compensation within the range is determined by a variety of factors including, but not limited to, location, individuals' skills, experience, training, licensure and certifications, business needs and applicable employment laws.

Individuals may be eligible for an annual discretionary bonus, subject to participation rules and based on a variety of factors including, but not limited to, individual and Firm performance.

Wipfli cares about our associates and offers a variety of benefits to support their well-being. Highlights include 8 health plan options (both HMO & PPO plans), dental and vision coverage, opportunity to enroll in HSA with potential Firm contribution and an Employee Assistance Program. Other benefits include firm-sponsored basic life and short and long-term disability coverage, a 401(k) savings plan & profit share as well as Firm matching contribution, well-being incentive, education & certification assistance, flexible time off, family care leave, parental leave, family formation benefits, cell phone reimbursement, and travel rewards. Voluntary benefit offerings include critical illness & accident insurance, hospital indemnity insurance, legal, long-term care, pet insurance, ID theft protection, and supplemental life/AD&D. Eligibility for all benefits programs is dependent on annual hours expectation, position status/level and location. Wipfli offers flexibility for many positions to be performed remotely; please discuss your work preferences with your recruiter during the interview process.