Cybersecurity Consultant involved in deploying security tools and supporting compliance projects in Andorra. Working with cross - functional teams to enhance cybersecurity measures and documentation.
About the role
- Privacy and Cybersecurity Counsel providing legal advice on privacy laws and cybersecurity regulations for a global financial services firm. Advise on legal frameworks and support compliance initiatives across teams.
Responsibilities
- Serve as a subject matter expert on privacy and cybersecurity law and governance and be the primary legal support for our Cybersecurity organization.
- Advise on cutting-edge legal and regulatory issues for a global financial services company.
- Provide strategic legal advice on cybersecurity laws, regulations, and frameworks (e.g., NIST, PCI-DSS, SOC 2, ISO 27001, DORA, NIS2), as well as advice on global privacy laws.
- Draft and refine cybersecurity and privacy policies, risk assessments, and governance frameworks.
- Advise on incident response planning, breach notification obligations, and post-incident reviews.
- Support cybersecurity and privacy-related aspects of contracts, including vendor risk, data security terms, and regulatory compliance.
- Collaborate with business and product counsel to embed security-by-design and privacy-by-design principles across the enterprise.
- Engage with regulators and industry bodies on privacy and cybersecurity initiatives and compliance matters.
- Partner with product, engineering, and business teams to support secure and customer-centric development of new technologies and services.
- Monitor emerging cybersecurity and privacy threats, legal developments, and best practices to proactively manage risk.
Requirements
- A law degree and qualification to practice in at least one U.S. state or the ability to qualify.
- 8+ years of legal experience, with a strong focus on privacy, cybersecurity, information security, or technology law.
- Deep understanding of cybersecurity frameworks, standards, and certifications (e.g., NIST CSF, SOC 2, PCI-DSS, ISO 27001).
- Deep understanding of privacy principles, frameworks and laws, with a focus on North American privacy law and regulations
- Experience advising on cybersecurity and privacy issues in complex, regulated environments—preferably in financial services.
- Strong communication skills with the ability to translate technical issues into clear legal guidance and the ability to translate legal guidance into actionable requirements.
- Collaborative mindset and ability to work across diverse teams and cultures.
- A proactive, solutions-oriented approach and willingness to challenge the status quo.
- Bonus Points For CISSP, CIPP, CISM or other relevant cybersecurity or privacy certification.
- Experience with secure and privacy centric software development.
- International legal experience.
Benefits
- Flexible Time off
- Medical, Dental and Life Insurance
- Tuition Assistance Program
- Parental Leave
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Microsoft Success Manager helping partners grow secure, scalable Microsoft practices across ANZ. Championing Microsoft security solutions and supporting partner success strategies in the region.
Assistant AVP overseeing a 5 - member team for Access Management services in Pune and Mumbai, ensuring high standards of service delivery and compliance.
Own global security systems infrastructure for QVC, managing access control and networked security systems across multiple regions. Collaborate with IT to ensure security and technology initiatives meet organizational needs.
Sales Account Manager growing ADAPTIT Cybersecurity business in Greece and Cyprus. Responsible for client relations, sales pipeline, and collaboration with the cybersecurity team.
Information Security Engineer focusing on Identity & Access Management and SSO at Westfield. Design, operate, and mature enterprise authentication and federation capabilities.
Cyber Security Engineer responsible for operational support and development activities with Ping Identity. Collaborate with global teams to strengthen cybersecurity and improve customer satisfaction.
Application Security Specialist focusing on security in software development lifecycle at Insight Investment in Manchester, driving DevSecOps practices across teams.
Cyber Security Engineer supporting mission - critical DoD contract at CACI. Involves reviewing infrastructure changes and implementing security measures in a cloud - based environment.
Security Incident Management Analyst coordinating information security incidents. Overseeing cyber incident response and providing guidance to senior management within a leading industrial software company.