Search using our robust engine. Get the recommendations you need to get ahead.
Browse through our expansive list of legal practice areas.
Work where you are or where you would like to be. Find where you will work with LawCrossing.
Use our marketplace to feature your opportunity
Start your search today
Set up your account and manage your company profile on LawCrossing
Look through and compare company profiles
Learn from the legal expert
Discover salaries and the scope of your next job
LawCrossing Works Read Testimonials and Share your Story
Carrot Peelers, Sales, Personality and Your Job Search
In-House
Attorney
Data Privacy
10-15 yrs required
Assistant General Counsel, Cybersecurity and Data Privacy Duties: Providing day-to-day legal advice and counsel to internal clients (e.g., crossfunctional cyber threat team, Information Risk, Information Technology, Privacy, Compliance and LOB partners (e.g., LOB Legal colleagues, Privacy, Compliance, Risk, Controls); Providing legal advice on cybersecurity issues, including cyber incident response/preparedness, third-party breach response, client ransomware incidents, client/regulatory inquiries, and client-facing documentation; Participating and advising on cyber incident exercises, drafting/reviewing incident response playbooks, and providing training in line with changing regulatory guidance and best practices; Analyzing new technology and cybersecurity regulations, among others, and advising on regulatory and contractual implications; Responding to regulators globally regarding cybersecurity program, advising on regulatory engagement strategy, and providing legal coverage for regulatory exams; Acting as the main legal point of contact in partnership with crossfunctional cyber threat team, Information Security, and Fraud for engagement with law enforcement and other US Governmental agencies on cyber-related topics, including information sharing, incident response planning, and actual incident situations; Reviewing, analyzing and drafting client-facing and vendor agreements related to cybersecurity and information security, among others, and serving as the Legal Department’s SME for the escalation of negotiations related to cybersecurity and information security clauses in client-facing and vendor agreements; Contributing to advocacy and policy efforts with Information Risk, Privacy, and Regulatory Liaison, among others, to foster awareness of evolving cybersecurity demands; Working closely with Global Co-Head of Litigation, Investigation, and Regulatory Enforcement on regulatory investigations; Serving as a subject matter expert in matters involving third party claims and lawsuits arising out of a data breach or cyber incident; and Conducting legal research and tracking global applicable cybersecurity and privacy legislation, evolving regulations, and enforcement trends.
Qualification and Experience
Qualifications: JD Degree or educational equivalent required. CIPP/US or CIPP/EU certification preferred. Must possess 10-15 years of experience as a practicing attorney, with significant experience in an in-house environment. Must have experience either in-house, law firm or both with significant experience (5+ years of practice) in relation to US data privacy, cybersecurity and/or data security, including cyber incident and/or privacy incident response, preferably at a financial institution or in another highly regulated industry. Must be in compliance with all relevant licensing requirements, including the requirements of the jurisdiction where the role will be located, prior to commencement of employment. Strong interest in new and emerging technology solutions and applications. Good understanding of law enforcement and proven ability to navigate/collaborate with government agencies and law enforcement partners. Strong analytical, problem-solving and legal research skills. Strong business judgment and strategic thinking. Proven ability to independently identify issues, analyze problems and provide viable solutions. Excellent verbal, written, interpersonal, organizational and negotiation skills. Ability to communicate and interact effectively with all levels of personnel and management, including senior executives. Ability to work under pressure, handle deadlines, and manage multiple tasks in a high- performance environment. Ability to follow up on assignments in a timely manner, exercise good business judgment and work accurately under pressure. Excellent interpersonal skills and ability to build consensus across a global matrix organization. Must have a good understanding of and familiarity with current legal and regulatory requirements relating to cybersecurity and information security, and related legal and regulatory environments. Must have experience with workforce issues, including readiness, planning and resiliency.
Ref. 90520
Sign Up Now