Need help hiring top legal talent? Contact our team.
Company logo

Assistant General Counsel, Cybersecurity Regulatory Compliance and Policy

$154,500- $273,400
Posted Jul 10
Full Time

Are you interested in working on novel legal issues at the forefront of cloud computing for one of the largest hyperscale cloud computing companies in the world? If so, come join the legal team supporting Microsoft’s Security engineering organization. This is an important moment for Microsoft as it progresses on the execution of its regulatory governance framework, implementation of its recently announced Secure Future Initiative (SFI), and we welcome a great teammate to join us to help realize this journey for the company! This Assistant General Counsel, Cybersecurity Regulatory Compliance and Policy attorney will be responsible for supporting the execution of our regulatory governance framework and our SFI efforts and leading legal support for compliance with cybersecurity standards and the implementation of regulatory requirements impacting Security products, services and operations.

Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.


  • Enable Microsoft Security’s engineering team to achieve its objectives under our Secure Future Initiative by providing actionable legal guidance regarding changes to systems, policies and operations and the adoption of customer impacting security measures.
  • Partner with a variety of Microsoft subject-matter experts (SME), including Customer Security and Trust, Privacy, Safety & Regulatory Affairs, Office of Responsible AI, Intellectual Property Group, Competition, and others, to track and interpret cybersecurity, data residency, privacy, or other regulatory compliance developments worldwide with impact to the Security division. Work with SME teams to translate finalized legal and regulatory requirements into engineering-facing guidance that can be operationalized at scale.
  • Serve as a trusted compliance expertise and resource for frontline product/operations attorneys on the Security Corporate External Legal Affairs (CELA) team. Provide practical guidance regarding the impact of legal requirements on the development and distribution of enterprise products and services and on back-end security operations.
  • Partner with legal counterparts supporting the compliance teams within other engineering organizations, such as the Cloud and Artificial Intelligence (C+AI) and Enterprise & Devices (E+D) divisions, to armonize internal requirements and external narratives across diverse products and services.
  • Identify global policy developments and work to influence outcomes that may impact the design, distribution, sale, or use of Security products and/or security operations.
  • Provide legal advice to clients in support of external partner, stakeholder and regulator engagement.
  • Counsel engineering clients on strategy and program development for regulatory compliance.
  • Create efficiencies and invest in others by developing scalable resources and learning opportunities.
  • Embody our culture and a demonstrated commitment to the company’s core values, including a commitment to high ethical standards, unquestioned integrity, learning mindset and diversity & inclusion.


Required Qualifications:

  • Juris Doctorate Degree or Equivalent International Degree
    • OR Completion of a Legal Apprenticeship.
  • Active license to practice law in a jurisdiction and capable of meeting admission requirements in relevant jurisdiction.
  • 10+ years experience as a practicing attorney
    • OR equivalent practice of law.
  • Experience counseling engineering or other technical clients and translating legal requirements into actionable engineering-facing guidance
  • Familiarity with Microsoft enterprise cloud services
  • Experience managing and driving to closure long-term, highly-matrixed, cross-organizational projects

Preferred Qualifications

  • 7+ years experience as an attorney in specialized practice area (e.g., tax, employment, copyright).
  • Keen business sense, ability to think strategically and communicate effectively, and ability to establish a trusted advisor relationship with business and engineering clients
  • Flexible and analytical thinker able to quickly and accurately identify legal issues in a complex environment and to develop solutions by exercising confident judgment in ambiguous situations
  • Willingness to be available for occasional evening and early morning meetings with stakeholders in different time zones
  • Experience responding to requests or inquiries from enterprise customers, regulatory entities, non-governmental organizations, or standards bodies
  • General familiarity with global data compliance laws, regulations, and codes (e.g., GDPR, DORA, Cybersecurity Executive Order, CIRCIA, EU Data Act, EU AI Act, EU Digital Markets Act)
  • General familiarity with a variety of compliance standards, security controls, audit processes, and certifications (e.g., ISO, SOC, HIPAA, NIST)

Legal Counsel IC6 - The typical base pay range for this role across the U.S. is USD $154,500 - $273,400 per year. There is a different range applicable to specific work locations, within the San Francisco Bay area and New York City metropolitan area, and the base pay range for this role in those locations is USD $199,600 - $299,400 per year.

Certain roles may be eligible for benefits and other compensation. Find additional benefits and pay information here:

Microsoft will accept applications for the role until July 31, 2024.

Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.