Associate General Counsel - Data Protection and Cybersecurity hybrid

Profile

Associate General Counsel - Data Protection and Cybersecurity (Hybrid)
The candidate identifies and leads existing and emerging risks that stem from business activities and the job role. Ensures risks associated with business activities are effectively identified, measured, supervised, and controlled. Follows written risk and compliance policies, standards, and procedures for business activities. Independently provides legal counsel to senior leadership to support business objectives and lead regulatory, compliance and litigation risk. Leads sophisticated legal assignments with a high level of business impact and delivers appropriate solutions. Effectively communicates with partners and varying levels of leadership in both verbal and written forms. Produces clear and concise legal positions involving highly complex issues. Proactively collaborates across and the Chief Legal Office to mitigate risk. Proactively monitors and analyzes changes in laws, regulations and industry and advises appropriate organizational leadership of such changes in a timely manner. Anticipates potential or future legal and operational issues that present a risk to the organization and proactively engages with others to identify potential solutions. Regularly provides mentorship to more junior attorneys and serves as a resource to others in the Chief Legal Office. Provides leadership through cross-functional projects that have a material impact. Effectively leads outside counsel to acquire legal advice. Bachelor’s Degree from an accredited school. Juris Doctor degree from an accredited law school is required. Licensed and in good standing to practice law in one state or a territory of the USA. Should have 8 years of relevant experience with at least 7 years of experience as a practicing attorney. Demonstrated ability to effectively collaborate with key resources and stakeholders, influencing decisions and managing work to achieve strategic goals. Strong understanding of data protection and cybersecurity laws, regulations and frameworks (including GLBA, GDPR, FFIEC, PCI-DSS, ISO, NIST). Extensive experience identifying, advising on, and managing information security and cyber security risks of a financial institution or other highly regulated organization is preferred. Extensive experience drafting and reviewing policies, contracts, training materials related to information security and cyber security is preferred. Experience advising businesses in connection with potential security incidents, including response, remediation and legal risks and requirements is preferred. Experience advising risk and compliance teams in connection with security audits and compliance matters is preferred. Experience identifying, analyzing and advising on privacy risk is preferred.

Company info

Sign Up Now - EmploymentCrossing.com