Information Security, Risk & Compliance Manager
Minneapolis, MN, US
⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️
Full Time Senior-level / Expert USD 120K - 1500K
At FORTÉ, every role plays a part in reimagining how the modern workplace works. Whether you're on the front lines with customers or behind the scenes making things run, your work helps people connect, collaborate, and get things done. From classrooms to control centers, we design and deliver the systems that power smarter, more connected workplaces – and it all starts with the people who make them possible. FORTÉ (formerly AVI Systems) is a 100% employee-owned company with 50+ years of experience and a bold new identity.
The Information Security, Risk & Compliance Manager is responsible for developing, implementing, and maintaining FORTÉ’ global information security and compliance program. This strategic, hands-on role ensures that the organization meets regulatory standards, manages enterprise risk, and responds to client audits. This individual will oversee internal security policy enforcement and serve as the organization’s primary point of contact for privacy regulations, including GDPR.
Cybersecurity Program Management
• Maintain and continuously improve AVI Systems’ cybersecurity framework
• Lead risk assessments, vulnerability analyses, and incident response procedures
• Monitor and enhance internal controls to mitigate security risks
Regulatory Compliance and Risk
• Oversee compliance documentation and ensure internal audit readiness
• Ensure adherence to SOC 2 Type II, ISO 27001, GDPR, and other applicable standards
• Manage customer security questionnaires and third-party assessments
• Maintain a formal risk register and lead organizational risk assessment initiatives
Privacy and Data Protection
• Serve as the primary contact for privacy regulations and compliance requirements
• Implement and manage procedures for data classification, retention, and protection
• Collaborate with Legal and HR teams on privacy incidents and data subject access requests
Disaster Recovery and Business Continuity
• Develop, test, and maintain disaster recovery and business continuity plans
• Lead periodic tabletop exercises and drive executive-level readiness initiatives
QUALIFICATIONS:
• Bachelor’s degree in information security, Computer Science, or a related field (or equivalent
• experience).
• 5+ years of experience in cybersecurity, compliance, or IT risk management.
• Familiarity with SOC 2 Type II, ISO 27001, NIST, and GDPR frameworks.
• Hands-on experience with security technologies (e.g., SIEM, MFA, firewalls, endpoint
• protection).
• Professional certifications such as CISSP, CISM, CRISC, or CIPP preferred.
• Strong strategic thinking and operational execution
• Proven analytical and risk-based decision-making ability
• Ability to manage cross-functional alignment and influence without authority
• Self-starter able to work independently
• Proficient with Microsoft Office Suite and other common enterprise platforms
Why Should You Apply?
At FORTÉ, your work matters, and it’s easy to see the impact you make. That’s because we’re 100% employee-owned, and everyone here has a stake in how we show up – for each other, our customers, and the future we’re building. You’ll join a team that values your strengths, supports your growth, and shares your commitment to doing work that moves people and organizations forward. With bold momentum and a clear mission, FORTÉ is a place where you can bring your best – and build what’s next.
The benefits of ownership
At FORTÉ, you're not just covered – you’re supported. Our employee-owners have access to a comprehensive benefits package designed to protect your health, grow your wealth, and help you do your best work.
Here’s a look at what we offer:
• Healthcare, vision & dental coverage to keep you and your family well
• Health Savings Accounts (HSA) and Flexible Spending Accounts (FSA) for more control over your healthcare dollars
• Employer-paid life and disability insurance for added peace of mind
• 401(k) with company match to invest in your future
• Employee Stock Ownership Plan (ESOP) so you benefit directly from our shared success
• Tuition reimbursement and ongoing learning opportunities to support your growth
• Employer-paid employee assistance program to care for your physical, mental, and financial health
• Paid time off that helps you truly disconnect
FORTÉ is an equal opportunity employer, including individuals with disabilities and veterans.
The Information Security, Risk & Compliance Manager is responsible for developing, implementing, and maintaining FORTÉ’ global information security and compliance program. This strategic, hands-on role ensures that the organization meets regulatory standards, manages enterprise risk, and responds to client audits. This individual will oversee internal security policy enforcement and serve as the organization’s primary point of contact for privacy regulations, including GDPR.
Cybersecurity Program Management
• Maintain and continuously improve AVI Systems’ cybersecurity framework
• Lead risk assessments, vulnerability analyses, and incident response procedures
• Monitor and enhance internal controls to mitigate security risks
Regulatory Compliance and Risk
• Oversee compliance documentation and ensure internal audit readiness
• Ensure adherence to SOC 2 Type II, ISO 27001, GDPR, and other applicable standards
• Manage customer security questionnaires and third-party assessments
• Maintain a formal risk register and lead organizational risk assessment initiatives
Privacy and Data Protection
• Serve as the primary contact for privacy regulations and compliance requirements
• Implement and manage procedures for data classification, retention, and protection
• Collaborate with Legal and HR teams on privacy incidents and data subject access requests
Disaster Recovery and Business Continuity
• Develop, test, and maintain disaster recovery and business continuity plans
• Lead periodic tabletop exercises and drive executive-level readiness initiatives
QUALIFICATIONS:
• Bachelor’s degree in information security, Computer Science, or a related field (or equivalent
• experience).
• 5+ years of experience in cybersecurity, compliance, or IT risk management.
• Familiarity with SOC 2 Type II, ISO 27001, NIST, and GDPR frameworks.
• Hands-on experience with security technologies (e.g., SIEM, MFA, firewalls, endpoint
• protection).
• Professional certifications such as CISSP, CISM, CRISC, or CIPP preferred.
• Strong strategic thinking and operational execution
• Proven analytical and risk-based decision-making ability
• Ability to manage cross-functional alignment and influence without authority
• Self-starter able to work independently
• Proficient with Microsoft Office Suite and other common enterprise platforms
Why Should You Apply?
At FORTÉ, your work matters, and it’s easy to see the impact you make. That’s because we’re 100% employee-owned, and everyone here has a stake in how we show up – for each other, our customers, and the future we’re building. You’ll join a team that values your strengths, supports your growth, and shares your commitment to doing work that moves people and organizations forward. With bold momentum and a clear mission, FORTÉ is a place where you can bring your best – and build what’s next.
The benefits of ownership
At FORTÉ, you're not just covered – you’re supported. Our employee-owners have access to a comprehensive benefits package designed to protect your health, grow your wealth, and help you do your best work.
Here’s a look at what we offer:
• Healthcare, vision & dental coverage to keep you and your family well
• Health Savings Accounts (HSA) and Flexible Spending Accounts (FSA) for more control over your healthcare dollars
• Employer-paid life and disability insurance for added peace of mind
• 401(k) with company match to invest in your future
• Employee Stock Ownership Plan (ESOP) so you benefit directly from our shared success
• Tuition reimbursement and ongoing learning opportunities to support your growth
• Employer-paid employee assistance program to care for your physical, mental, and financial health
• Paid time off that helps you truly disconnect
FORTÉ is an equal opportunity employer, including individuals with disabilities and veterans.
Job stats:
2
0
0
Categories:
Compliance Jobs
Leadership Jobs
Tags: Audits CIPP CISM CISSP Compliance Computer Science CRISC Firewalls GDPR Incident response ISO 27001 NIST Privacy Risk assessment Risk management SIEM SOC SOC 2
Perks/benefits: 401(k) matching Career development Equity / stock options Flex vacation Health care Insurance
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Senior Cloud Security Engineer jobsSystems Engineer jobsSenior Information Security Analyst jobsSenior Cybersecurity Engineer jobsSystems Administrator jobsSenior Security Analyst jobsSecurity Operations Engineer jobsCyber Security Specialist jobsSenior Product Security Engineer jobsInformation System Security Officer (ISSO) jobsInformation Security Manager jobsSenior Information Security Engineer jobsSecurity Specialist jobsSenior Network Security Engineer jobsSecurity Consultant jobsInformation Systems Security Engineer jobsChief Information Security Officer jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsSenior Software Engineer jobsCyber Threat Intelligence Analyst jobsNetwork Engineer jobsSenior IT Auditor jobsCybersecurity Specialist jobsSecurity Operations Analyst jobs
Security assessment jobsEncryption jobsBash jobsJava jobsTS/SCI jobsRMF jobsSDLC jobsThreat detection jobsITIL jobsTerraform jobsIDS jobsSplunk jobsSQL jobsCompTIA jobsMalware jobsTop Secret jobsDocker jobsIPS jobsForensics jobsOWASP jobsFinance jobsActive Directory jobsGIAC jobsSOC 2 jobsClearance Required jobs
OSCP jobsCRISC jobsMITRE ATT&CK jobsDoDD 8570 jobsHIPAA jobsTCP/IP jobsIntrusion detection jobsVPN jobsCCSP jobsSOAR jobsZero Trust jobsDNS jobsIT infrastructure jobsJavaScript jobsAnsible jobsNIST 800-53 jobsIndustrial jobsKPIs jobsMachine Learning jobsBanking jobsUNIX jobsGCIH jobsData Analytics jobsSANS jobsSOX jobs