Department: Cyber Practice - Insurance, Financial,
Insurance and Professional Disputes
Location: London or Manchester
Role: Associate / Senior Associate
The Practice
With multi-jurisdictional experience aligned to the far-reaching
international exposure of cyberattacks and data breaches, our global
team provides practical, commercial and tailored advice to our clients
facing threats in this area.
Cyber liability is among the most complex risks challenging companies
today. We manage the full lifecycle of cyber risks for clients through
the Readiness, Respond and Recover phases.
We are one of the first and only law firms to specialise in manging
cyber risk and have worked on over 6,000 data breaches since 2005,
ranging from SME business email compromise events to some of the
largest and most complicated multi-jurisdictional security incidents
to date involving 200+ global jurisdictions.
We provide a range of pre-breach (Readiness) services including cyber
simulations. We advise corporate clients, insurers and their insureds
in evaluating data breaches and cyber exposures, regularly assist in
organising immediate and effective responses to suspected breaches and
cyber threats (Respond). This includes negotiating with attackers,
managing forensics investigations, undertaking data mining, notifying
regulators, implementing notification programmes and dealing with law
enforcement and government authorities. We also advise on
post-notification requests, complaints and claims including class
action based litigation alongside regulatory investigations including
launching enforcement challenges and appeals (Recover).
Our cyber practice and the work we undertake is global. The matters
we work on are fast-moving and dynamic in nature. They involve working
with international clients, leading cyber market experts, key law
enforcement and government bodies, well-known threat groups and
cutting-edge technologies.
Recent assignments include global breaches for technology companies,
multi-million ransomware events for retailers including full PCI-PFI
investigations, cross-border incidents for financial services
companies with scores of regulators and group litigation following
breaches for a number of clients.
The practice is growing rapidly which had led to this latest role and
opportunity. The team is collegiate, supportive and friendly.
Key Responsibilities
The role is to work with partners who advise clients on a wide
range of cyber risk matters including on the Readiness, Respond and
Recover phases. They work closely with the global cyber team on
cross-jurisdictional incidents and have significant experience
dealing with data protection regulators, including coordinating EU
wide regulatory investigations from the UK.
Working on a range of data protection, technology and media
litigation matters.
Manging cyber security incidents including initiating and leading
CMT calls, dealing with attackers, instructing IT forensics firms,
engaging PR consultants, advising on notification obligations;
managing regulatory investigations (e.g. ICO, FCA, SRA, etc) and
notifying and liaising with criminal authorities.
Dealing with litigation connected to cyber matters including
defending group litigation and representative actions initiated
following incidents; and managing other disputes arising out of
security incidents.
GDPR applicability - advising on the application of GDPR (Article
3) on international breaches.
Assisting with business development initiatives for the cyber
practice including developing corporate and cyber insurer client
opportunities and relationships.
Developing a strong personal reputation and further strengthening
the firm's profile in the cyber market.
Building relationships with third parties including vendors,
brokers and other key intermediaries.
Supporting and leading various thought leadership and broader PR initiatives.
Essential Skills & Experience
Display excellent technical legal skills including drafting and
strategy management, as well as managing and prioritising a full and
varied caseload.
Strong litigation experience, ideally including some technology
and/or media disputes experience.
Previous cyber experience with a focus on breach response work.
An individual who is passionate, driven, determined, with a real
interest in technology and data issues, who is able to take the
initiative on all aspects of cyber work.
We are ideally looking for a candidate who has a minimum of 5 PQE.
Please note that our PQE levels are a guide and all suitable
candidates will be considered.
The solicitors act 1974 requires practicing solicitors to have a
practicing certificate.
Successful completion of a Training Contract (or equivalent) and
relevant education (Legal Practice Course; Graduate Diploma in Law
(if non-Law Graduate); 2:1 honours degree or equivalent; A Levels).
Role Competency Requirements
Technical Excellence
Technical legal expertise: the knowledge of the law and ability to
apply it.
Research: the ability to conduct research effectively and apply it commercially.
Managing legal processes: the ability to ensure all legal processes
are followed efficiently and effectively.
People and Team
Guiding individual performance and development: develops the skills
of self and others.
Teamwork and collaboration: working cooperatively and effectively
with others.
Leadership: creating high performing teams.
Client Relationships and Business Development
Building business relationships: establishing, maintaining and using
relationships to create and develop business opportunities.
Commercial thinking: understanding the commercial drivers.
Cross-selling and business development.
Finance and Practice Management
Finance management and understanding of the business.
Project management: ensuring projects are delivered.
Knowledge sharing.
Personal Effectiveness
Communication.
Clarity of thinking.
Personal contribution.
This is the job description as constituted at present; however the
Firm reserves the right to reasonably amend it in accordance with the
changing needs of the business.
