Director of Global Site Security at Medtronic leading global security standards and optimizing site - level execution. Collaborating with multiple functions to ensure a comprehensive security ecosystem.
About the role
- Privacy and Cybersecurity Counsel providing legal advice on privacy laws and cybersecurity regulations for a global financial services firm. Advise on legal frameworks and support compliance initiatives across teams.
Responsibilities
- Serve as a subject matter expert on privacy and cybersecurity law and governance and be the primary legal support for our Cybersecurity organization.
- Advise on cutting-edge legal and regulatory issues for a global financial services company.
- Provide strategic legal advice on cybersecurity laws, regulations, and frameworks (e.g., NIST, PCI-DSS, SOC 2, ISO 27001, DORA, NIS2), as well as advice on global privacy laws.
- Draft and refine cybersecurity and privacy policies, risk assessments, and governance frameworks.
- Advise on incident response planning, breach notification obligations, and post-incident reviews.
- Support cybersecurity and privacy-related aspects of contracts, including vendor risk, data security terms, and regulatory compliance.
- Collaborate with business and product counsel to embed security-by-design and privacy-by-design principles across the enterprise.
- Engage with regulators and industry bodies on privacy and cybersecurity initiatives and compliance matters.
- Partner with product, engineering, and business teams to support secure and customer-centric development of new technologies and services.
- Monitor emerging cybersecurity and privacy threats, legal developments, and best practices to proactively manage risk.
Requirements
- A law degree and qualification to practice in at least one U.S. state or the ability to qualify.
- 8+ years of legal experience, with a strong focus on privacy, cybersecurity, information security, or technology law.
- Deep understanding of cybersecurity frameworks, standards, and certifications (e.g., NIST CSF, SOC 2, PCI-DSS, ISO 27001).
- Deep understanding of privacy principles, frameworks and laws, with a focus on North American privacy law and regulations
- Experience advising on cybersecurity and privacy issues in complex, regulated environments—preferably in financial services.
- Strong communication skills with the ability to translate technical issues into clear legal guidance and the ability to translate legal guidance into actionable requirements.
- Collaborative mindset and ability to work across diverse teams and cultures.
- A proactive, solutions-oriented approach and willingness to challenge the status quo.
- Bonus Points For CISSP, CIPP, CISM or other relevant cybersecurity or privacy certification.
- Experience with secure and privacy centric software development.
- International legal experience.
Benefits
- Flexible Time off
- Medical, Dental and Life Insurance
- Tuition Assistance Program
- Parental Leave
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Principal Product Security Engineer leading cybersecurity activities for Medtronic’s R&D organization. Ensuring secure product delivery and compliance with cybersecurity standards across their lifecycle.
Information Security Analyst responsible for implementing and maintaining data protection practices at Autoglass. Ensure compliance with regulatory standards and security best practices.
Senior Software Engineer driving development of privacy features in security platform. Leading technical direction and mentoring engineers for a rapidly growing company.
IT Systemadministrator managing hybrid IT infrastructure and Microsoft 365 services in a dynamic IT team. Responsibilities include security, administration, and support for IT infrastructure.
Expert in Application Security at Deloitte focused on secure development practices and end - to - end risk management. Leading strategic solutions and technical communication for software security.
Join Deloitte as a Senior in Security Architecture, tackling cybersecurity challenges and advising CISO. Collaborate within a multidisciplinary team, defining security frameworks and conducting audits.
Cyber Security Specialist supporting Clients US Consumer Banking Business with Cyber deliverables. Handling security assessments, governance activities and working on integration control enhancements.
AI Infrastructure Security Engineer assessing and strengthening AI systems across varied infrastructures. Ensuring security controls in deployment architectures, APIs, and cloud environments in a hybrid workplace.
AI Infrastructure Security Engineer assessing AI deployment architectures and conducting security testing. Collaborating with engineering teams to ensure AI products meet enterprise security standards.