Information Security Attorney

Washington, District of Columbia, United States | Full-time | Partially remote

Apply

Location: Washington, DC, New York City, San Francisco or Chicago (Hybrid)

About ZwillGen

ZwillGen is a boutique law firm representing some of the biggest names in technology on a wide range of internet-related legal issues, including cybersecurity, privacy, government surveillance, alternative data, litigation, and fantasy sports.

We offer a hardworking yet casual and collaborative work environment that sets us apart from large law firms. At ZwillGen, we have casual attire, on-site massages, snacks and beverages, an on-site gym in our DC office, a monthly perks program, and a hybrid work schedule. Our culture prioritizes work-life balance, mutual respect, and inclusivity, with weekly firm meetings that bring everyone together.

About the Role
We are seeking an experienced attorney to join our Information Security (InfoSec) team.

We welcome candidates with a range of experience levels, from mid-level and senior attorneys (4–11 years) to counsel and partners with business development potential. The ideal candidate is a highly motivated, forward-thinking professional who thrives in a fast-paced, team-oriented environment. While we are nationally recognized for our expertise—such as being named among Law360’s Practice Groups of the Year for Privacy and Consumer Protection—we are not a BigLaw firm. We look for attorneys who share our creative and efficient team-oriented approach to clients’ needs. All clients are firm clients, not clients of individual attorneys or partners. The attorney in this role will be a valued strategic counselor working alongside our other team members.  Everybody is supported in building direct client relationships.

Key Responsibilities

  • Incident Response & Breach Coaching – Guide private-sector companies through security incidents, including overseeing of forensic investigations and analyzing federal, state, and international breach notification laws.
  • Regulatory Compliance & Legal Advising – Advise on federal and state data security laws and industry requirements, such as NY DFS, GLBA Safeguards Rule, CISA Security Requirements for Restricted Transactions, and PCI-DSS.
  • Security Frameworks & Best Practices – Provide strategic counsel on common security frameworks, including CIS 18, NIST CSF, and ISO 27001/27002, and international requirements such as the EU DORA and Cyber Resiliency Act.
  • Policy & Governance – Draft, review and assess information security policies and governance documents.
  • Technology Fluency – Understand and apply technology-driven solutions in legal contexts as it relates to all of the above.

Qualifications

  • 4+ years of experience in information security counseling and incident response.
  • Strong analytical and problem-solving skills, with the ability to assess risk and provide strategic legal guidance.
  • Excellent written and verbal communication skills.
  • Ability to manage projects independently while working effectively within a team.
  • Experience with privacy law or transactional matters is a plus.
  • Candidates must be barred in the jurisdiction where they will work.

Compensation & Benefits

ZwillGen is committed to pay transparency in accordance with applicable wage laws. The salary range for this position is $200,000 – $300,000 annually, based on qualifications, skills, and level of experience.

We offer a comprehensive benefits package, including:

  • Medical, dental, and vision insurance
  • 401(k) retirement plan
  • Paid time off and parental leave
  • Short-term and long-term disability coverage
  • Eligibility for the firm’s Perks! fringe benefit program