Advise on legal and regulatory obligations applicable to cybersecurity incidents.
Serve as the primary legal advisor for incident response.
Monitor and interpret evolving cybersecurity regulations.
Support crisis management activities and provide legal guidance.
Draft, review, and update cybersecurity policies, standards, procedures, and playbooks.
Provide legal input into cyber tabletop exercises and readiness assessments.
Advise on cybersecurity requirements applicable to third-party service providers.
Partner with Information Security to evaluate cybersecurity controls and governance frameworks.
Support regulatory examinations and documentation efforts related to cybersecurity matters.
Collaborate cross-functionally with Technology, Risk, Compliance, and business teams.
Educate internal stakeholders on cybersecurity legal risks and best practices.

Requirements

Juris Doctor (JD) from an accredited law school; licensed to practice in at least one U.S. jurisdiction.
8–12+ years of legal experience with a strong background in cybersecurity, data security, privacy, technology law, or incident response.
Experience in financial services with exposure to broker-dealer and/or investment advisory regulatory environments (SEC, FINRA, MSRB, banking regulators).
Experience advising on cyber incident response, materiality assessments, regulatory notifications, and supervisory expectations.
Familiarity with cybersecurity regulations and frameworks, including NYDFS Cybersecurity Rules, state breach laws, Reg S-P, SEC/FINRA expectations, and data protection statutes.
Experience drafting and maintaining cybersecurity policies, incident response procedures, standards, and playbooks.
Strong analytical and problem-solving skills.
Excellent written and verbal communication skills.
Ability to manage multiple priorities in a fast-paced, high-stakes environment.
Collaborative mindset with the ability to work across technical, business, legal, compliance, and risk teams.

Benefits

401K matching
health benefits
employee stock options
paid time off
volunteer time off

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecuritydata securityprivacy lawincident responsecybersecurity policiesregulatory notificationsmateriality assessmentscyber tabletop exercisescybersecurity frameworksdrafting legal documents

Soft Skills

analytical skillsproblem-solving skillswritten communicationverbal communicationtime managementcollaborationcross-functional teamworkcrisis managementeducational skillsadvisory skills

Certifications

Juris Doctor (JD)licensed to practice law