×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Security and Compliance Analyst

Job in Minneapolis, Hennepin County, Minnesota, 55400, USA
Listing for: Fredrikson & Byron
Full Time position
Listed on 2026-01-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 80000 - 100000 USD Yearly USD 80000.00 100000.00 YEAR
Job Description & How to Apply Below

Who We Are:

Fredrikson is the premier Midwest-based law firm working collaboratively to help businesses achieve their goals regionally, nationally, and globally.

Overview

Fredrikson is seeking a Security and Compliance Analyst to serve as a key member of the Firm's IT Security team. This role supports and advances the Firm's security governance, compliance, and third-party risk management programs, while helping protect the confidentiality, integrity, and availability of Firm data and information assets.

The Security and Compliance Analyst manages administrative and technical components of the Firm's Security Program, supports ISO 27001 certification efforts, maintains core Microsoft 365 and Entra  platforms, oversees vulnerability management processes, and participates in incident response activities. This position works closely with IT Infrastructure, Firm leadership, and business stakeholders to ensure security practices align with Firm policies, industry standards, and business objectives.

Key Responsibilities
  • Support and maintain the Firm's ISO 27001 certification and overall security governance framework.
  • Manage compliance with Firm security policies, procedures, and best practices; identify gaps and elevate non-compliance as appropriate.
  • Administer and maintain Microsoft 365 and Entra  platforms, including Secure Score, Compliance, and Data Governance admin centers.
  • Develop, mature, and maintain the Firm's Data Loss Prevention (DLP) program.
  • Develop and manage the Firm's Third-Party Risk Management program, including vendor risk assessments and client security questionnaires.
  • Manage the vulnerability scanning program; analyze results, recommend remediation actions, and advise on patching and lifecycle management.
  • Partner with the Infrastructure Team to design, implement, and improve security controls, patch deployment, and system upgrade processes.
  • Participate in the Firm's Incident Response Team, including evaluation of security events, incident management, and required documentation.
  • Monitor security alerts, logs, network traffic, and threat intelligence to identify and mitigate risks; respond to escalations as needed.
  • Evaluate security controls of new systems, applications, vendors, and services prior to purchase or contract execution.
  • Participate in internal audits, security assessments, and internal/external penetration testing.
  • Collaborate with Firm leadership and IT teams to align security initiatives with business goals.
  • Provide project support, mentorship, and operational assistance within the IT department, including participation in on-call rotation and maintenance windows.
Required Qualifications
  • 5+ years of relevant experience in information security, compliance, risk management, or related IT roles.
  • Experience supporting security compliance frameworks (e.g., ISO 27001 or similar).
  • Experience with vulnerability management, security monitoring, and incident response.
  • Familiarity with Microsoft 365 security tools and Entra .
  • Strong analytical, organizational, and problem-solving skills.
  • Excellent written and verbal communication skills, including the ability to communicate technical concepts to non-technical audiences.
  • Ability to work with discretion on confidential and sensitive matters.
  • Candidates must live in the state of Minnesota.
Desired Qualifications
  • Experience in a professional services or law firm environment.
  • Familiarity with third-party risk management programs and vendor assessments.
  • Experience with tools such as Rapid7, OpenDNS, firewalls, and similar security technologies.
  • Relevant certifications (e.g., CISSP, CISM, CISA, or similar) preferred.
  • Collaborative, detail-oriented team player with strong initiative and follow-through.
Benefits

Our comprehensive benefits options include medical, dental, vision, basic and supplemental life insurance, short- and long-term disability, employee resource benefits (inclusive of counseling, coaching, and caregiving guidance), paid parental leave, parenting classes, pre‑tax parking and transportation options, and much more! Our retirement plan includes financial planning, Social Security/Medicare planning, 401k/Roth investment options, and a firm‑paid…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search