We're powering a cleaner, brighter future.

Exelon is leading the energy transformation, and we're calling all problem solvers, innovators, community builders and change makers. Work with us to deliver solutions that make our diverse cities and communities stronger, healthier and more resilient.

We're powered by purpose-driven people like you who believe in being inclusive and creative, and value safety, innovation, integrity and community service. We are a Fortune 200 company, 19,000 colleagues strong serving more than 10 million customers at six energy companies -- Atlantic City Electric (ACE), Baltimore Gas and Electric (BGE), Commonwealth Edison (ComEd), Delmarva Power & Light (DPL), PECO Energy Company (PECO), and Potomac Electric Power Company (Pepco).

In our relentless pursuit of excellence, we elevate diverse voices, fresh perspectives and bold thinking. And since we know transforming the future of energy is hard work, we provide competitive compensation, incentives, excellent benefits and the opportunity to build a rewarding career.

Are you in?

PRIMARY PURPOSE OF POSITION

Exelon seeks an experienced cybersecurity and privacy attorney to join our team. The Assistant General Counsel - Cybersecurity and Privacy will provide legal advice to our business units on cybersecurity, privacy and physical security incident response, investigations, litigation, risk management and policy. This attorney will handle high-impact matters, interface with company management and teams at all levels and represent the company externally with regulators and key stakeholders. The position requires coordination with business stakeholders and members of the Legal and Compliance departments.

PRIMARY DUTIES AND ACCOUNTABILITIES

Performs as a specialist in cybersecurity and privacy law, providing expert legal counsel to Exelon and its Business Units - including all levels of management; and under minimal supervision, plans, conducts and supervises complex, high-impact legal assignments; evaluates legal and business risks and advises clients accordingly.

Conducts and leads investigations involving security and integrity threats, supports incident response investigations, works with cross-functional teams to conduct after-action reviews, develops mitigation strategies, and coordinates with internal and external resources on litigation and settlement matters.

Provides counsel on evolving federal and state cyber and privacy-related regulations, enforcement actions, cybersecurity best practices, emerging threats, and industry standards, and collaborates with cross-functional teams, including cybersecurity and IT professionals, physical security specialists, and risk management and compliance personnel to address security and privacy concerns.

Provides lead direction and/or project leadership direction to less experienced attorneys, matrixed cross-functional teams, and support staff.

Oversees outside counsel, prepares early matter assessments and manages budgets for all matters involving outside counsel.

Performs significant projects and other duties as assigned.

JOB SCOPE

Manages relationships and matters with Business Units and outside counsel.

Demonstrates superior legal judgment in the business context; anticipates and understands trends in relevant areas of law and policy; and provides strategic thinking and counsel to meet company objectives.

Strong leadership skills; ability to work in stressful conditions under time deadlines.

MINIMUM QUALIFICATIONS

An LLB or JD from an accredited law school.

At least 10 years of experience as a practicing attorney in the areas of complex litigation, internal investigations, and/or similar practice areas, including significant experience focused on cybersecurity and/or privacy law.

Possesses and applies a comprehensive knowledge of principles, practices and procedures of cybersecurity and/or privacy law to the completion of complex assignments with minimal supervision.

Superior legal research, analytical, and written and oral communication skills.

Superior organizational and project management skills.

Demonstrated ability to collaborate effectively in cross-functional and diverse teams and on time-sensitive and high-risk matters.

PREFERRED QUALIFICATIONS

regulatory experience with cybersecurity and/or privacy matters.

Significant experience in complex internal investigations.

Technical and/or business training in cybersecurity and/or privacy.