Description:

A Software and Information Solutions Company is actively seeking a Senior Corporate Counsel with a focus on Privacy and Security to join our Legal Team. This role requires a proactive attitude to navigating global legal frameworks and implementing strong data privacy and information security strategies. The ideal candidate understands how to give the business practical, risk-based advice across a global regulatory framework where there may not be consistent black-and-white lines to follow.

Responsibilities include:

Developing and maintaining our privacy program, both internally and for our products, based on market best practices and global, federal and state regulations.
Developing and maintaining mechanisms to measure compliance with international legal standards for data protection and cybersecurity.
Designing, reviewing, and providing counsel on internal policies, procedures, and standards relating to data protection, cybersecurity, artificial intelligence, and data management.
Performing careful review and negotiation of data-related clauses in contracts with clients, partners, and suppliers.
Providing strategic guidance to internal teams on the impact of privacy and security regulations for product development and market offerings.
Conducting and participating in audits, risk assessments and third party reviews in the area of data protection, cybersecurity, and data management to ensure the integrity and security of information handling.
Participating and providing guidance on incident response matters.
Playing a key role in due diligence for mergers and acquisitions and advising on related matters during integration activities.
Promoting educational initiatives on data privacy and security compliance across the organization.
Driving continuous improvement projects to optimize operations and facilitate interdepartmental cooperation.

Requirements:

Juris Doctor degree and active an active bar membership in at least one U.S. jurisdiction.
4+ years of relevant legal & data privacy experience, with CIPP certification preferred.
Familiarity with FedRAMP, CMMC, NIST and GDPR privacy and security principles.
Experience with the E.U.-U.S. Data Privacy Framework and the APEC Cross-Border Privacy Rules System .
Understanding emerging technologies, including the use of GenAI and large language models both within an organization and within products.
Proven expertise in managing cross-border data privacy matters.
Experience with matters related to the SaaS industry.
A quick understanding of core business goals and the ability to assess the related legal landscape.
The ability to spot risks and opportunities quickly, providing concise summaries and actionable solutions.
A history of managing diverse projects independently with a high level of efficiency.
Ability to collaborate and work cross functionally across various business units.