Legal Counsel Cybersecurity

Introduction

At IBM, work is more than a job - it's a calling: To build. To design. To code. To consult. To think along with clients and sell. To make markets. To invent. To collaborate. Not just to do something better, but to attempt things you've never thought possible. Are you ready to lead in this new era of technology and solve some of the world's most challenging problems? If so, lets talk.

Your Role and Responsibilities

As a member of the Global Cybersecurity Legal team, reporting to the Chief Cybersecurity Counsel, you will:

• Provide advice to the Office of the Chief Information Security Officer (CISO) on legal issues related to our corporate cybersecurity program.

• Advise and help lead cyber incident response investigations in partnership with our Cybersecurity Incident Response Team (CSIRT).

• Respond to law enforcement and regulatory agencies in the US and abroad around cybersecurity matters.

• Advise senior management with respect to cyber incidents and legal and regulatory developments.

• Advise and help lead the resolution of product vulnerabilities in partnership with our Product Security Incident Response Team (PSIRT).

• Advise business leaders on cybersecurity legal, regulatory, and policy issues that affect the company.

• Partner with IBM Government and Regulatory Affairs team on legislative and policy efforts pertaining to cybersecurity.

• Lead transformational projects designed to continue enhancing IBM's cybersecurity program and reducing IBM's risk profile.

Required Technical and Professional Expertise

• JD from accredited law school.

• Licensed to practice law in a US jurisdiction.

• Deep experience in-house, in private practice or both, with significant experience in cybersecurity.

• Familiarity with US and international cybersecurity regulations.

• Strong analytic and investigative skills.

• Effective communication skills (both in writing and verbally).

• Proven ability to work as part of diverse and multi-cultural teams of both legal and business colleagues.

• Demonstrated business judgment and ability to prioritize in fast-paced environment.

Preferred Technical and Professional Expertise

• Experience with internal investigations, regulatory enforcement, law enforcement and/or national security matters in relation to cybersecurity.