Job Description
Mid- to Senior-level Data Privacy Senior Attorney The candidate must have 5 years of experience specifically handling privacy and cybersecurity issues. Should ideally have experience in the following areas: reviewing, updating or drafting security policies; data breach prevention and risk-mitigation counseling, including tabletop design and delivery; data breach investigation and response counseling; in-depth knowledge regulatory framework for key international, federal and state privacy laws (including requirements of all effective and pending state consumer data privacy laws, PCI-DSS, GLBA, HIPAA, and GDPR); implementation of key components of privacy and security compliance programs; negotiation of complex information technology, licensing and outsourcing contacts, including privacy and data security clauses and key risk allocation issues such as indemnification and limitation on liability; advising clients in all industries on a wide variety of privacy and data security matters; advising on data governance strategies (retention, use policies, inventories, mapping); addressing privacy and cybersecurity due diligence issues in M&A transactions; and drafting company terms of service and website privacy policies. Excellent academic credentials and a J.D. from an ABA-accredited law school are required. Privacy professional certification is preferred. Passion for staying up to date about the latest technology-driven privacy and cybersecurity issues and trends is needed. Excellent drafting and negotiation skills are essential.
