Cristin Flynn Goodwin is the Associate General Counsel of the Digital Security Unit in Microsoft’s Customer Security and Trust organization. The Digital Security Unit includes Microsoft’s Threat Context and Analysis team, and the Cybersecurity Legal team.
On the threat context side, Goodwin’s team leads Microsoft’s efforts to understand nation-state attacks against customers and the computing ecosystem and disrupt these attacks. The Threat Context and Analysis team tracks activity in Russia, China, Iran, and other areas, working closely with the Microsoft Threat Intelligence Center (MSTIC).
On the legal side, she and her team provide a focal point for addressing complex cybersecurity legal problems across Microsoft. They provide legal support for MSTIC and for advanced incidents with the Microsoft Security Response Center; advise on cybersecurity law and compliance and on national security law; advise on election law and provide legal support for Microsoft’s Defending Democracy initiatives; and support the Government Security Program for information sharing and assurance with governments around the world.
Goodwin joined Microsoft in 2006, and initially served as policy counsel in Microsoft’s Washington, D.C., office. Prior to joining Microsoft, she worked for several telecommunications companies. She began her career as a trial lawyer in New York City, and worked in the World Trade Center — which cemented her commitment to security for the rest of her career.