Apply on Employer Site

F5 · 7 hours ago

Cybersecurity Counsel

San Jose, CA

Full-time

Hybrid

Senior Level

$246K/yr - $368K/yr

6+ years exp

F5 is dedicated to creating a better digital world and empowering organizations globally. They are seeking a Cybersecurity & Information Security Counsel to lead incident response, guide security compliance strategies, and ensure robust security requirements are integrated into their products and services.

Consumer ElectronicsSaaSSecurityVirtualization

H1B Sponsor Likely

Hiring Manager

Robbie Beers

Responsibilities

Lead & operationalize incident response and data breach legal workstreams: Advise on IR readiness, privilege protocols, and crisis decisioning; run legal materiality assessments and contribute to required disclosures (including support for SEC Form 8‑K cyber incident filings), coordinating closely with the CISO and the Corporate IR Team under established playbooks

Own security terms in commercial negotiations: Draft and negotiate security and data protection schedules, support customer and vendor security reviews, RFPs, and audit requests, incident‑notification clauses, vulnerability remediation commitments, secure development and testing language, and shared‑responsibility delineations; align with internal control owners and the F5 Trust Center materials

Guide security compliance strategy: Interpret and operationalize frameworks and obligations (e.g., SOC 2, ISO/IEC 27001, FedRAMP, NIST SP 800‑53/CSF) with Product, Security, Compliance, and GTM teams; help design controls and evidence plans that withstand customer and regulator scrutiny

Advise on global cyber regulations: Track and translate evolving laws and guidance (e.g., NIS2, DORA, EU Cyber Resilience Act, sectoral breach rules, government‑contracting security) into actionable requirements for product and cloud services, partnering with stakeholders to land scalable processes

Strengthen customer trust artifacts: Partner with Security, Product, and Customer‑Facing teams on Trust Center content, and security questionnaires to clearly articulate F5 and customer control boundaries and audit posture

Enable secure‑by‑design delivery: Counsel on NIST SSDF practices, third‑party risk, SBOM posture, pen‑testing and coordinated vulnerability disclosure, data segregation, and identity/access controls across multi‑cloud and hybrid deployments

Drive cross‑functional alignment: Work hand‑in‑hand with the Office of General Counsel colleagues (Business, Product, Commercial, Privacy/Compliance, IP) and security leaders to embed pragmatic, risk‑based guidance into roadmaps and contracts—ensuring security frameworks map cleanly to customer commitments

Continuously improve programs: Develop playbooks, templates, and training; run post‑incident retrospectives; and streamline processes to increase speed, clarity, and defensibility

Qualification

Cybersecurity experienceRegulatory complianceIncident responseSecurity frameworksCloud securityLegal counselingCommunication skillsCrisis managementProject managementCollaboration

Required

JD, LLB, or equivalent degree

Admitted to the bar and in good standing or otherwise authorized to practice law in WA and/or CA

6+ years of experience in cybersecurity and regulatory compliance at a law firm and/or in‑house

Strong understanding of global cyber and data protection regulations

Ability to engage deeply with engineering and security leaders

Hands‑on counseling experience in incident response, cloud and platform security, and security compliance (e.g., SOC 2, ISO 27001, FedRAMP, NIST SP 800‑53/CSF)

Exceptional communication skills—able to translate technical concepts into clear, actionable legal guidance for a range of business partners

Ability to operate calmly in crisis situations and manage and prioritize multiple projects in a dynamic environment, fostering collaboration and driving results

Preferred

8+ years legal experience, including in‑house counseling for technology or cloud/SaaS providers

Familiarity with popular cloud platforms and multi‑cloud architectures

Knowledge of network and application security technologies (e.g., WAF, DDoS mitigation, load balancing, bot detection, and API security)

Experience aligning programs to global frameworks and sectoral rules (SOC 2, ISO 27001/27701, PCI DSS, FedRAMP, NIST SP 800‑53/CSF) and supporting regulator or customer audits

Success negotiating complex enterprise security terms at scale and partnering with customers' security, procurement, and legal teams on risk allocation

Benefits

Incentive compensation

Bonus

Restricted stock units

Benefits

Company

F5

Glassdoor3.9

F5 is a multi-cloud application services and security company that specializes in application security, performance, and delivery.

Founded in 1996

Seattle, Washington, USA

5001-10000 employees

https://www.f5.com

H1B Sponsorship

F5 has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (155)

2024 (110)

2023 (211)

2022 (194)

Funding

Current Stage

Public Company

Total Funding

unknown

Key Investors

Elliott Management Corp.

2020-11-08Post Ipo Equity

1999-06-04IPO

1998-09-24Series Unknown

Leadership Team

François Locoh-Donou

President and CEO

Mohan Veloo

Chief Technology Officer - Asia Pacific, China & Japan

Recent News

Business Wire

F5 Accelerates AI Security With Integrated Runtime Protection for Enterprise AI at Scale

2026-01-16

Business Wire

F5 NGINXaaS for Google Cloud Advances Cloud-Native Application Delivery and Security

2026-01-15

GlobeNewswire

Portnoy Law Firm Announces Class Action on Behalf of F5, Inc. Investors

2025-12-24

Company data provided by crunchbase