Microsoft’s Corporate, Legal and External Affairs (CELA) organization is seeking an experienced Attorney to join the Microsoft Security legal team in the role of Assistant General Counsel, Cybersecurity Regulatory Strategy, Compliance & Operations . As a cybersecurity legal expert, you will provide legal support to Microsoft’s core security operations, assist with the development and implementation of new and emerging cybersecurity regulations, and play a vital role in safeguarding the global digital landscape.
Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Qualifications:
Required/Minimum Qualifications
- Bachelor’s Juris Doctorate Degree or Equivalent International Degree
- OR Completion of a Legal Apprenticeship.
- Active license to practice law in a jurisdiction and capable of meeting admission requirements in relevant jurisdiction.
- 10+ years experience as a practicing attorney in cybersecurity law and/or cybersecurity compliance and operations
- OR equivalent practice of law.
Additional or Preferred Qualifications
- Fluency and facility with cyber risks, remediation, or U.S. and/or foreign cybersecurity standards, frameworks, risk assessments or certification processes, ideally including a practical understanding of same.
- Deep curiosity to understand Microsoft’s products, services, and operations, with a drive to get precise and complete information to make informed decisions.
- Sound and practical business judgment, ability to think strategically, and desire to establish a “trusted advisor” relationship with key clients.
- Highly motivated, independent, self-starter able to multitask and constantly prioritize in an ever-changing legal and regulatory environment.
- Ability to creatively problem-solve with a focus on achieving results that both benefit our business and maintain the trust of our customers and partners.
Legal Counsel IC6 – The typical base pay range for this role across the U.S. is USD $152,300 – $266,800 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $194,800 – $292,200 per year.
Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here: https://careers.microsoft.com/us/en/us-corporate-pay
Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form .
Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.
#CELA
Responsibilities:
Legal Counsel
- Frontline Support to Security Research Teams: Provide legal support to security research teams concerning activities related to threat intelligence production, dissemination, and proactive threat hunting.
- Legal Management for Security Incidents: Lead and manage legal support during complex security incidents, including legal review of external communications, coordination with law enforcement, and guidance on vulnerability disclosure obligations.
- Collaboration with Engineering Teams on AI (Artificial Intelligence) Security: Partner with the engineering team to implement legal requirements related to new or emerging AI security obligations and voluntary commitments.
- Legal Liaison for AI Security Partners: Act as the key legal connection to AI partners for information sharing, readiness, and operations on AI security.
- Cybersecurity Policy Development & Implementation: Assist in creating and implementing new, innovative cybersecurity policies and processes, in collaboration with legal, policy, and engineering teams in Microsoft Security, CELA, and other organizations within Microsoft.
- Training and Education: Provide ongoing training to Microsoft employees on cybersecurity legal obligations and best practices.
- Risk Assessments and Compliance: Conduct risk assessments and collaborate with internal audit teams to ensure continuous compliance with legal obligations.
Operational Excellence
- Provide input and continuous feedback to improve process efficiencies within role.
- Identify opportunities and tools to increase operational efficiency and effectiveness.
Communication
- Collaborate effectively within Corporate, External and Legal Affairs and with business clients.
- Organize issues and ideas in written and verbal communication.