Manager of Information Security

External

Morningstar · Chicago

ContractHybridToday

Application SecurityAuditingBusiness AnalysisComplianceGDPRInformation Security

Cover Letter Connect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role

About the role

The IT Compliance Manager's primary focus is to lead and manage the Information Security Compliance team's effort and activities to ensure information security compliance, privacy and protection across Morningstar. This individual will act as a liaison between Information Security and the Business regarding compliance related issues and activities, execute compliance status reporting and metrics, lead the third-party risk management program, lead internal and external IT auditing processes, monitor information security and IT processes for compliance and policy issues and collaborate on risk vulnerability assessments. Provides technical expertise in all aspects of enterprise information security compliance for all applicable regulations. This role requires an individual who is well rounded - an exceptional multitasker, an effective communicator, is proactive, analytical and detail-oriented, possessing both strong technical and business skills and, operates well under pressure. This position is based in either our Chicago or Toronto office.

Requirements

A bachelor's degree and 5+ years' experience in a risk, compliance or IT auditor role

Strong leadership and team development skills, with experience managing cross-functional and global teams.

Excellent communication skills and a familiarity with common compliance standards (SOX, SOC2, PCI-DSS, GDPR, SEC, etc.)

Demonstrated knowledge and experience in the implementation of governance frameworks and security risk management processes, such as NIST, ISO, and COBIT guidelines and standards

Strong organizational skills and the ability to multitask and switch priorities with short notice

Strong business analysis, research and analytical skills

Excellent communication skills and a strong understanding of information security fundamentals

Availability to work off business hours as required

Preferred

Relevant security certifications (CISSP, CISM, or CIPP)

3+ years' experience directly managing personnel, including hiring, developing, motivating, and directing people as they work

Total Cash Compensation Range (base + bonus): $147,550 - $265, 575

Compensation and Benefits

At Morningstar we believe people are at their best when they are at their healthiest. That's why we champion your wellness through a wide range of programs that support all stages of your personal and professional life. Here are some examples of the offerings we provide:

Financial Health

100% 401k match up to 6% of salary

Stock Ownership Potential

Company provided life insurance - 1x salary + commission

Physical Health

Comprehensive health benefits (medical/dental/vision) including potential premium discounts and company-provided HSA contributions (up to $500-$2,000 annually) for specific plans and coverages

Additional medical Wellness Incentives - up to $300-$600 annual

Company-provided long- and short-term disability insurance

Emotional Health

Trust-Based Time Off

6-week Paid Sabbatical Program

6-Week Paid Family Caregiving Leave

Competitive 8-24 Week Paid Parental Leave

Adoption Assistance

Leadership Coaching & Formal Mentorship Opportunities

Annual Flex Stipend - $1000 annually to cover personal education & well-being expenses

Tuition Reimbursement

Social Health

Charitable Matching Gifts program

Dollars for Doers volunteer program

Paid volunteering days

15+ Employee Resource & Affinity Groups

Morn

Manager of Information Security

About the role

Responsibilities

Requirements

Benefits

Additional Information

Your Match

Company Intel

What employees say

Interested in this role?