Senior Specialist, Legal Editor – Data Privacy & Cybersecurity

Security EngineerSecurity EngineerFull TimeRemoteSeniorTeam 10,001+Since 2008H1B SponsorCompany SiteLinkedIn

Location

Canada

Posted

5 days ago

Salary

$126K - $176K / year

Seniority

Senior

Postgraduate Degree8 yrs expEnglishCyber Security

Job Description

Senior Specialist, Legal Editor – Data Privacy & Cybersecurity

Thomson Reuters

• Create and maintain high-quality online legal content • Research, draft, and maintain practical data privacy & cybersecurity legal know-how content • Monitor legal, practice, and market developments in data privacy & cybersecurity globally • Support the development of AI-powered tools and identify methods for content development and AI solutions • Partner with Product Management to innovate on tech development and product enhancements • Establish relationships with external law firm contributors and industry groups • Support sales, marketing, and respond to customer inquiries

Job Requirements

  • JD required
  • Minimum of eight (8) years' experience working as a lawyer in a law firm or in-house with experience in both Canadian and non-Canadian data privacy & cybersecurity matters, with a focus on compliance
  • Experience managing complex, global privacy compliance matters under data protection laws in the US, EU, Asia-Pacific, and Latin America a plus
  • Strong technical skills and ability to effectively utilize various tools, including generative AI technologies
  • Demonstrated adaptability and flexibility to work on diverse projects within the generative AI space
  • Deep curiosity about AI and legal practice, with a desire to build legal prompt engineering skills
  • Understand current market issues and proposals to enact, amend, or change data privacy & cybersecurity laws and regulations
  • Understand the needs and priorities of law firm attorneys, in-house counsel, and compliance professionals
  • Skill and passion for writing about complex legal issues clearly and concisely in plain English
  • Innovative, agile thinker with excellent time management and project management skills

Benefits

  • Flex My Way workplace policies
  • Flexible work arrangements including work from anywhere for up to 8 weeks per year
  • Career Development and Growth programs
  • Comprehensive benefit plans including flexible vacation, Mental Health Days off, access to Headspace app, retirement savings, tuition reimbursement, employee incentive programs, resources for mental, physical, and financial wellbeing
  • Globally recognized culture for inclusion and belonging
  • Social Impact Institute with two paid volunteer days off annually
  • Opportunities for pro-bono consulting projects and ESG initiatives

Related Categories

Related Job Pages

More Security Engineer Jobs

ECS Tech Inc logo

Cybersecurity Administrator II

ECS Tech Inc

All candidates must meet the following criteria: Must be a US Citizen, no dual Citizenships. Must be able to secure a Public trust clearance. Must be able to work across multiple programs across the Federal and DOD space. The core values that ECS looks for in an engagement manager include: Teamwork, Respect, Accountability, Integrity, and Leadership.

Full TimeRemoteH1B No Sponsor

Role Description Everforth ECS is seeking a Cyber Security Administrator II to work Remotely. Please Note: This position is contingent upon contract award. - Administers cybersecurity tools and supports lifecycle operations including patching, configuration compliance, endpoint security, vulnerability scanning, and system hardening. - Ensures secure operation of CI tools and platforms, maintains documentation and baselines, and supports automated processes for remediation and monitoring. Qualifications - Bachelors’ Degree in Cybersecurity, IT, or related field. - 5+ years’ experience. - IRS CI - IRS High Risk Clearance. - Experience with endpoint protection, DLP, IAM/PAM, EDR, vulnerability scanning tools. - Strong background in system hardening, patch management, and configuration compliance. - Knowledge of DISA STIGs, CIS Benchmarks, and federal security controls. - Ability to maintain tool configurations, baselines, and operational documentation.

United States
Grupo Boticário logo

Risk Specialist I – Information Security

Grupo Boticário

Criamos oportunidades para a beleza transformar a vida das pessoas, e assim transformar o mundo ao nosso redor.

Full TimeRemoteTeam 10,001+Since 2010H1B No Sponsor

• **Strategic Risk Partnership:** Map, identify, and model cyber and digital-origin corporate risk scenarios (such as data leaks, digital extortion, cyberattacks, and downtime) across the company's ecosystem, translating technical data into clear business-impact insights. • **Audit Orchestration:** Serve as the primary focal point and facilitator for internal and external audits. You will be the link between auditors and technology teams, constructively challenging findings, ensuring clarity of control objectives and validating that technical responses are robust. • **Maturity Advancement (NIST & CIS):** Conduct periodic assessments and manage the roadmap for Information Security maturity using the CIS Controls and NIST CSF frameworks to evaluate and raise the effectiveness of our technical controls. • **Action Plan Assurance (Remediation):** Support and guide technical teams in building effective action plans (APs), ensuring that proposed fixes address root causes and truly mitigate the issues identified in audits. • **PCI DSS Support:** Support the management, design, and effectiveness testing of controls related to PCI DSS certification, ensuring continuous compliance and the security of our transactional operations. • **Technological Resilience:** Actively collaborate in mapping discontinuity scenarios for critical environments, supporting decision-making that ensures business resilience and continuity based on technological criticality. • **Metrics and Awareness:** Operate GRC tools, review metrics, and create intelligent KRIs (Key Risk Indicators) to monitor the materialization of risks. In addition, you will support the dissemination of a risk and security culture across the company.

Brazil
Full TimeRemoteTeam 1,001-5,000Since 2021H1B No Sponsor

• Build out enterprise-level business development strategy; identify and implement the steps needed to execute on the strategy across multiple business areas, market segments, and global regions. • Be responsible for one or more components of a division, program, or function at a group level or a key enterprise focus area within business development, including strategic accounts, market segments, or capability portfolios. • Establish strategic and tactical business development plans for functions/areas owned based on corporate strategy, market analysis, and competitive intelligence. • Make strategic decisions about pursuit strategies, resource allocation, and market positioning that are critical to business development performance with likely short-term and long-term impact. • Provide direction and lead activities through subordinate managers who have overall responsibility for the successful operation of assigned business development areas and major client relationships. • Be accountable for meeting financial plans, goals, and schedules for business development activities with a consistent focus on value creation, win rates, and return on business development investment. • Embody company culture and great leadership; serve as a catalyst for transformational change in business development approaches, systems, and organizational capabilities. • Drive enterprise-level business development initiatives that align with corporate strategic objectives and position the organization for sustainable competitive advantage. • Establish and oversee strategic partnerships and alliances that create significant business opportunities and market access across multiple segments. • Direct the development of innovative business models and approaches to capture new markets or expand existing ones, including adjacent market strategies and capability development. • Lead cross-functional teams to identify and pursue major business opportunities that require enterprise-wide coordination and executive sponsorship. • Interact with internal and external executive-level management on strategic matters related to business growth, market positioning, and competitive strategy. • Mentor and develop senior business development leaders to ensure organizational capability and succession planning for critical business development roles. • Uphold and model company values; hold others accountable to values in all business development activities, strategic decisions, and client interactions.

Virginia
$189.2K - $260.1K / year
Apple logo

Offensive Security Researcher - Wireless Security

Apple

Well-known for creating the Mac, iPhone, iPad, and Apple Watch, as well as its App Store, Apple Music, Apple Pay, and iTunes services, Apple's goal is to leave the world better tha

Role Description Apple's Security Engineering & Architecture organization is responsible for the security of all Apple products. Protecting our users is at the heart of everything we build, and our team takes an offensive approach to that mission by uncovering and fixing vulnerabilities impacting one of the world's most sophisticated ecosystems before adversaries can ever exploit them, all at the scale of more than one billion devices. In this role, your primary focus will be on the wireless attack surface of Apple platforms. You will conduct offensive security research across: - Cellular/baseband - Wi-Fi - Bluetooth stacks - Other wireless protocols such as Thread, NFC, and UWB These radios are reachable over the air and represent some of the most impactful proximity- and remote-triggerable attack surfaces on our devices. You will work in cross-functional teams alongside other researchers and engineering teams to identify and help eliminate vulnerabilities before they can be exploited. Knowledge of Apple operating systems such as iOS or macOS is a plus, but not required. This job is for individuals with outstanding technical skills, grit, and a genuine passion for breaking systems — so we can build them stronger. If this is you, we'd love to hear from you. In-office roles in Paris, Cupertino, and other locations. Remote considered for experienced candidates. Qualifications - Proven experience in vulnerability research targeting wireless technologies such as cellular/baseband, Wi-Fi, or Bluetooth - Strong understanding of vulnerability classes and exploitation techniques relevant to wireless protocol stacks and radio firmware, such as: - Memory corruption - Parsing and state-machine flaws - Cryptographic and authentication weaknesses - Protocol downgrade or logic attacks - Ability to apply AI techniques and tools, such as LLMs or Machine Learning, for security research activities Requirements - Deep knowledge of cellular technologies and 3GPP standards (2G/3G/4G/5G), baseband processors, and modem firmware internals - Experience analyzing protocol stacks, including their firmware, host-controller interfaces, and over-the-air protocol behaviour of wireless technologies like Wi-Fi (802.11) and Bluetooth/BLE or other short-range protocols like Thread, NFC, or UWB - Familiarity with binary reverse-engineering using tools like IDA and Ghidra, as well as the practical RF and over-the-air toolset, such as software-defined radio (SDR) and other equipment for capturing and injecting wireless signals

France