Data Privacy - Transactional Attorney in McLean, VA

In-House

McLean, VA

Data Privacy - Transactional Attorney in McLean, VA

Attorney

5-7 yrs required

No

Job Title: Counsel - Cybersecurity

Job Responsibilities:
As a Global Cybersecurity Senior Counsel, the primary responsibilities include advising and providing legal support to the Chief Information Security Officer and the global cybersecurity organization at the company. The role involves collaboration with the Fraud Investigations team under the VP - Global Security Operations, within the Security and Resiliency Organization. Key duties involve:

- Providing primary legal counsel to the cybersecurity organization, including the cybersecurity incident response team (CSIRT), and the VP – Global Security Operations and Fraud Investigations team on security incidents/data breaches and fraud investigations, as well as advising on response and remediation activities.
- Offering legal advice and counsel to the Security and Resiliency Organization and the global business on the development of cybersecurity-related policies, procedures, protocols, assessments, and reporting requirements.
- Reviewing and providing guidance on cybersecurity practices, including the adoption of applicable controls and industry certifications.
- Contributing to the creation and updating of cybersecurity-related legal templates, playbooks, and incident response runbooks, and assisting with Incident Response tabletop exercises.
- Providing legal awareness and compliance training to legal colleagues and business clients on cybersecurity matters, including incident response.
- Conducting legal research on emerging cybersecurity laws and regulations impacting the company and collaborating with global stakeholders on compliance efforts to ensure effective compliance programs.

Education and Experience Information:
Essential requirements for this position include:

- A Juris Doctor (JD) degree and admission to practice law in the United States.
- A minimum of 5-7 years of relevant experience in a law firm, in-house, or government setting, with a focus on cybersecurity, incident response, and compliance.
- Experience counseling clients on cybersecurity and IT compliance matters, insider threats, risk management, and audits.
- Hands-on experience with global cybersecurity and data protection laws and regulatory frameworks, such as NIS2, DORA, NYDFS, PCI-DSS, GDPR, CMMC, NIST-CSF, and NIST 800-171.
- Strong investigative, analytical, written, and oral communication skills; a strong sense of ownership and accountability, and the ability to make decisions efficiently and quickly.
- The ability to work in a fast-paced, changing environment while organizing and managing multiple responsibilities and projects with competing priorities and deadlines.

Desirable requirements include:

- An understanding of IT and cybersecurity technical concepts and methodologies and the ability to communicate and discuss technical concepts.
- Experience in legal project management, legal risk management, and technology contract negotiations.

Salary Information:
The company is committed to fair and equitable compensation practices. The salary range for this position is $170,850 to $221,100.

Benefits Information:
Employees at the company enjoy a comprehensive benefits package that supports their life and health. Detailed information about the benefits experience is available at .

Company Information:
The company is a unique family of businesses that assists individuals and organizations in transforming how they work, live, and play. The company is committed to equal employment opportunity for all employees and provides a work environment free of discrimination and harassment.