Workday is hiring: Senior Cybersecurity Legal Counsel in Washington

Workday is a Fortune 500 company and a leading AI platform for managing people, money, and agents. We are committed to making hard work pay off for our people, customers, and the world. Our culture is built on integrity, empathy, and shared enthusiasm, and we look for curious minds and courageous collaborators to help shape the future of work.

About the Team

The Cybersecurity Legal team supports Workday’s business by providing oversight of and strategic leadership for a diverse range of cybersecurity legal issues. The team covers Litigation and Cybersecurity, and is composed of experienced specialists who play a meaningful role in supporting Workday’s growth, innovation, security, and integrity.

About the Role

We are seeking a Senior Cybersecurity Legal Counsel to manage Workday’s global Cybersecurity Legal Program. In this role you will support and develop ongoing efforts to ensure secure networks and products, and manage the legal strategy in alignment with evolving global cybersecurity laws and regulations. We need a confident self‑starter who can prioritize multiple tasks in a fast‑paced, high‑energy environment.

Responsibilities

• Manage and further develop Workday's Cybersecurity legal program.
• Provide cybersecurity legal expertise and guidance on data security, incident response, risk mitigation, and relevant laws and regulations.
• Support the Chief Information Security Officer and the Cybersecurity & Trust organization.
• Lead legal response to potential security and privacy incidents and vulnerabilities, including drafting and reviewing notifications.
• Partner with the cybersecurity team on programs such as awareness, bug bounty, penetration testing, phishing simulations, red‑team exercises, and more.
• Develop, maintain, and improve cybersecurity legal processes and procedures, including incident response plans and related policies.
• Draft, review, and ensure compliance with security terms in customer, vendor, and partner contracts.
• Monitor and advise on compliance with global and domestic cybersecurity laws and industry standards.
• Respond to external inquiries regarding Workday’s information security practices.
• Provide legal support to the Corporate Affairs team on policy positions related to cybersecurity.
• Collaborate on cross‑functional projects involving privacy, data security, product development, public policy, and compliance.
• Manage outside counsel relationships, including strategy, work product, and budget.

About You

Required Qualifications

• J.D. Degree and membership in at least one state bar in good standing.
• 7+ years of experience as a practicing attorney, including 3+ years of cybersecurity experience at a national law firm, governmental agency, or in‑house.

Other Qualifications

• In‑house experience at a global SaaS company is a plus.
• Experience building cybersecurity programs with Information Security teams.
• Expertise in global security, privacy, and regulatory frameworks.
• Experience with SaaS, web technologies, and cloud platforms.
• Outstanding verbal and written communication skills.
• Ability to remain calm and lead in high‑pressure, crisis situations.
• Strong influence, advocacy, and judgment skills.
• Ability to nurture relationships and collaborate across networks.
• Strategic focus, critical thinking, and problem‑solving skills.
• Proactive leadership of legal projects and initiatives.
• Drive for creative solutions, process improvement, and change.

Workday Pay Transparency Statement

The annualized base salary ranges for the primary location and any additional locations are listed below. This role may also be eligible for the Workday Bonus Plan, role‑specific commission/bonus, and annual stock grants. Compensation offers are based on multiple factors including geography, experience, skills, job duties, and business need.

Primary Location—USA, VA, McLean (Tyson’s Corner): $176,400 – $264,600 USD

Additional US Locations: $159,600 – $283,600 USD

Our Approach to Flexible Work

With Flex Work, we combine in‑person and remote time. We require teams to spend at least 50% of their time in the office or field each quarter, allowing flexibility in scheduling to meet team and personal needs.

Equal Opportunity

Workday considers qualified applicants with arrest and conviction records under applicable Fair Chance law. Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans.

Workday values candidate privacy and data security. Do not apply through sites that are not Workday Careers, and be aware of sites that request personal data but are not authorized.