McGuireWoods LLP is seeking a hands-on Senior Manager, Information Security to lead and develop our technical operations team. This manager role will oversee day-to-day security operations, ensuring systems and tools are running smoothly while coaching and mentoring analysts. This role is ideal for a leader who thrives in a tactical, operational environment, working directly with tools, managing incidents, and optimizing processes.

McGuireWoods, one of the world’s leading law firms, has provided legal solutions to corporate, individual and nonprofit clients since 1834. Along with excellent benefits, McGuireWoods offers most employees a hybrid remote option allowing flexibility and work-life balance. Our Applicant Disclosures describe your rights. Our Privacy Statement describes how we will process and safeguard your personal data.

• Lead, coach, and develop a team of Information Security Analysts, providing hands-on guidance and mentorship.
• Oversee daily security operations, ensuring security tools and systems are stable, effective, and not disrupting business operations.
• Conduct risk assessments to identify vulnerabilities and develop mitigation strategies.
• Ensure compliance with data protection regulations and industry standards; oversee audits and manage remediation efforts.
• Manage and optimize security systems, including endpoint protection, SIEM, data protection, intrusion detection/prevention, and vulnerability management tools
• Lead incident response, including investigation, containment, and development of remediation plans.
• Own and execute operational security initiatives
• Partner closely with internal technology and risk stakeholders within the broader organization to maintain a strong security posture.
• Identify opportunities to enhance tools, workflows, and processes to continuously improve security operations.

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• 10+ years in information security, with hands-on experience in operational security roles. 3+ years managing or mentoring technical teams.
• Strong knowledge of security frameworks (e.g., NIST, ISO 27000) and regulatory landscapes (e.g., PCI, SOX, GDPR).
• Familiarity with endpoint protection, SIEM, data protection, vulnerability assessment, and law firm data security tools.
• Strong problem-solving skills and the ability to work autonomously while coaching and supporting your team.

Have more questions? Connect with a recruiter directly. #LI-KB1