Download App | FOLLOW US ON SOCIAL MEDIA
 Upload Your Resume   Employers / Post Jobs 

Data Privacy Attorney in Chicago, IL

Northern Trust Corporation Oct 25,2021 Aug 13,2021 Location USA Chicago IL
This job is expired...

In-House

Attorney

Data Privacy

10-15 yrs required

Profile

Assistant General Counsel, Cybersecurity and Data Privacy Duties: Providing day-to-day legal advice and counsel to internal clients (e.g., crossfunctional cyber threat team, Information Risk, Information Technology, Privacy, Compliance and LOB partners (e.g., LOB Legal colleagues, Privacy, Compliance, Risk, Controls); Providing legal advice on cybersecurity issues, including cyber incident response/preparedness, third-party breach response, client ransomware incidents, client/regulatory inquiries, and client-facing documentation; Participating and advising on cyber incident exercises, drafting/reviewing incident response playbooks, and providing training in line with changing regulatory guidance and best practices; Analyzing new technology and cybersecurity regulations, among others, and advising on regulatory and contractual implications; Responding to regulators globally regarding cybersecurity program, advising on regulatory engagement strategy, and providing legal coverage for regulatory exams; Acting as the main legal point of contact in partnership with crossfunctional cyber threat team, Information Security, and Fraud for engagement with law enforcement and other US Governmental agencies on cyber-related topics, including information sharing, incident response planning, and actual incident situations; Reviewing, analyzing and drafting client-facing and vendor agreements related to cybersecurity and information security, among others, and serving as the Legal Department’s SME for the escalation of negotiations related to cybersecurity and information security clauses in client-facing and vendor agreements; Contributing to advocacy and policy efforts with Information Risk, Privacy, and Regulatory Liaison, among others, to foster awareness of evolving cybersecurity demands; Working closely with Global Co-Head of Litigation, Investigation, and Regulatory Enforcement on regulatory investigations; Serving as a subject matter expert in matters involving third party claims and lawsuits arising out of a data breach or cyber incident; and Conducting legal research and tracking global applicable cybersecurity and privacy legislation, evolving regulations, and enforcement trends.

Qualification and Experience

Qualifications: JD Degree or educational equivalent required. CIPP/US or CIPP/EU certification preferred. Must possess 10-15 years of experience as a practicing attorney, with significant experience in an in-house environment. Must have experience either in-house, law firm or both with significant experience (5+ years of practice) in relation to US data privacy, cybersecurity and/or data security, including cyber incident and/or privacy incident response, preferably at a financial institution or in another highly regulated industry. Must be in compliance with all relevant licensing requirements, including the requirements of the jurisdiction where the role will be located, prior to commencement of employment. Strong interest in new and emerging technology solutions and applications. Good understanding of law enforcement and proven ability to navigate/collaborate with government agencies and law enforcement partners. Strong analytical, problem-solving and legal research skills. Strong business judgment and strategic thinking. Proven ability to independently identify issues, analyze problems and provide viable solutions. Excellent verbal, written, interpersonal, organizational and negotiation skills. Ability to communicate and interact effectively with all levels of personnel and management, including senior executives. Ability to work under pressure, handle deadlines, and manage multiple tasks in a high- performance environment. Ability to follow up on assignments in a timely manner, exercise good business judgment and work accurately under pressure. Excellent interpersonal skills and ability to build consensus across a global matrix organization. Must have a good understanding of and familiarity with current legal and regulatory requirements relating to cybersecurity and information security, and related legal and regulatory environments. Must have experience with workforce issues, including readiness, planning and resiliency.

Additional info

Ref. 90520

Company info