The Role

Department: Cyber Practice - Insurance, Financial, Insurance and Professional Disputes

Location: London or Manchester

Role: Associate / Senior Associate

The Practice

With multi-jurisdictional experience aligned to the far-reaching international exposure of cyberattacks and data breaches, our global team provides practical, commercial and tailored advice to our clients facing threats in this area.

Cyber liability is among the most complex risks challenging companies today. We manage the full lifecycle of cyber risks for clients through the Readiness, Respond and Recover phases.

We are one of the first and only law firms to specialise in manging cyber risk and have worked on over 6,000 data breaches since 2005, ranging from SME business email compromise events to some of the largest and most complicated multi-jurisdictional security incidents to date involving 200+ global jurisdictions.

We provide a range of pre-breach (Readiness) services including cyber simulations. We advise corporate clients, insurers and their insureds in evaluating data breaches and cyber exposures, regularly assist in organising immediate and effective responses to suspected breaches and cyber threats (Respond). This includes negotiating with attackers, managing forensics investigations, undertaking data mining, notifying regulators, implementing notification programmes and dealing with law enforcement and government authorities. We also advise on post-notification requests, complaints and claims including class action based litigation alongside regulatory investigations including launching enforcement challenges and appeals (Recover).

Our cyber practice and the work we undertake is global. The matters we work on are fast-moving and dynamic in nature. They involve working with international clients, leading cyber market experts, key law enforcement and government bodies, well-known threat groups and cutting-edge technologies.

Recent assignments include global breaches for technology companies, multi-million ransomware events for retailers including full PCI-PFI investigations, cross-border incidents for financial services companies with scores of regulators and group litigation following breaches for a number of clients.

The practice is growing rapidly which had led to this latest role and opportunity. The team is collegiate, supportive and friendly.

Key Responsibilities

• The role is to work with partners who advise clients on a wide range of cyber risk matters including on the Readiness, Respond and Recover phases. They work closely with the global cyber team on cross-jurisdictional incidents and have significant experience dealing with data protection regulators, including coordinating EU wide regulatory investigations from the UK.
• Working on a range of data protection, technology and media litigation matters.
• Manging cyber security incidents including initiating and leading CMT calls, dealing with attackers, instructing IT forensics firms, engaging PR consultants, advising on notification obligations; managing regulatory investigations (e.g. ICO, FCA, SRA, etc) and notifying and liaising with criminal authorities.
• Dealing with litigation connected to cyber matters including defending group litigation and representative actions initiated following incidents; and managing other disputes arising out of security incidents.
• GDPR applicability - advising on the application of GDPR (Article 3) on international breaches.
• Assisting with business development initiatives for the cyber practice including developing corporate and cyber insurer client opportunities and relationships.
• Developing a strong personal reputation and further strengthening the firm's profile in the cyber market.
• Building relationships with third parties including vendors, brokers and other key intermediaries.
• Supporting and leading various thought leadership and broader PR initiatives.

Essential Skills & Experience

• Display excellent technical legal skills including drafting and strategy management, as well as managing and prioritising a full and varied caseload.
• Strong litigation experience, ideally including some technology and/or media disputes experience.
• Previous cyber experience with a focus on breach response work.
• An individual who is passionate, driven, determined, with a real interest in technology and data issues, who is able to take the initiative on all aspects of cyber work.
• We are ideally looking for a candidate who has a minimum of 5 PQE. Please note that our PQE levels are a guide and all suitable candidates will be considered.
• The solicitors act 1974 requires practicing solicitors to have a practicing certificate.
• Successful completion of a Training Contract (or equivalent) and relevant education (Legal Practice Course; Graduate Diploma in Law (if non-Law Graduate); 2:1 honours degree or equivalent; A Levels).

Role Competency Requirements

Technical Excellence

Technical legal expertise: the knowledge of the law and ability to apply it.

Research: the ability to conduct research effectively and apply it commercially.

Managing legal processes: the ability to ensure all legal processes are followed efficiently and effectively.

People and Team

Guiding individual performance and development: develops the skills of self and others.

Teamwork and collaboration: working cooperatively and effectively with others.

Leadership: creating high performing teams.

Client Relationships and Business Development

Building business relationships: establishing, maintaining and using relationships to create and develop business opportunities.

Commercial thinking: understanding the commercial drivers.

Cross-selling and business development.

Finance and Practice Management

Finance management and understanding of the business.

Project management: ensuring projects are delivered.

Knowledge sharing.

Personal Effectiveness

Communication.

Clarity of thinking.

Personal contribution.

This is the job description as constituted at present; however the Firm reserves the right to reasonably amend it in accordance with the changing needs of the business.