Information & Cyber Security Attorney

About The Position

Requirements

• Strong understanding of information security risk assessment, risk management, and governance to effectively advise on legal and regulatory risk and control alignment.
• Demonstrated experience with industry frameworks and standards such as NIST Cybersecurity Framework, SSAE 16, PCI, and ISO 27001/27002, and how these are applied within regulated environments.
• Juris Doctor (JD) degree with 4–6 years of experience practicing law, preferably within a financial services, insurance, technology, or highly regulated environment.
• Proven ability to build strong relationships and effectively collaborate with peers, business leaders, and legal stakeholders at all levels of the organization.
• Knowledge of information security and cybersecurity governance models and control frameworks.
• Ability to interpret and apply regulatory requirements to cybersecurity and technology operations.
• Experience supporting security audits, regulatory engagements, and contractual security obligations.

Responsibilities

• Review, draft, and negotiate security‑related provisions in contracts with TransUnion vendors and other third parties.
• Advise Global Information Security and Global Technology teams on domestic and international laws, regulations, and standards impacting security operations.
• Partner with cross‑functional teams, including senior business and legal stakeholders, to provide cybersecurity and information security legal guidance supporting operations and new initiatives.
• Collaborate with Tech Risk Governance, Insider Threat, Vulnerability Management, and Incident Response teams to assess, manage, and resolve security risks, threats, and vulnerabilities.
• Support TransUnion’s Global Compliance team on security audits, regulatory examinations, and related compliance matters.
• Monitor and advise on changes in laws, regulations, and industry standards that may impact TransUnion’s short‑ and long‑term security and business strategy.
• Provide clear, practical guidance to senior leaders, including the General Counsel, on cybersecurity‑related legal and risk considerations.

Benefits

• Day-one eligibility for medical, dental, and vision coverage, plus supplemental plan options.
• Spousal, domestic partner, and other eligible dependent coverage is available on select plans.
• Choose tax‑advantaged HSA and FSA accounts to make everyday care more affordable.
• Company‑paid basic life and AD&D, optional voluntary life and AD&D for you and your family, and short‑ and long‑term disability.
• Opt into a legal plan, pet insurance, and travel accident coverage.
• From adoption assistance and fertility planning coverage to caregiver support, we’re here for every chapter.
• Access Dependent Care FSA for possibility of an employer match, a complimentary Care@Work membership, and up to 12 weeks of paid parental leave with eligibility for a thoughtful, gradual return.
• Build toward what’s next with our 401(k) with employer match and Employee Stock Purchase Plan (ESPP).
• Tap financial wellness resources, career coaching, and optional long‑term care insurance to plan confidently.
• Grow and recharge with tuition reimbursement, flexible time off for exempt employees or paid time off for nonexempt employees, up to 12 paid holidays per year, commuter benefits, employee discounts, charitable gift matching, and paid volunteer time off, plus corporate volunteer events that make it easy to give back.
• Access 24/7 support including professional therapy, coaching, and emotional well‑being programs alongside guided meditation and resources that support physical, mental, social, and financial wellness.