Primary Locations: Atlanta, New York City, or San Francisco Bay areaThe ChallengeOneTrust is the leading trust intelligence platform that helps organizations build and demonstrate trust, measure and manage risk, and go beyond compliance. It offers four cloud solutions for privacy and data governance, GRC and security assurance, ethics and compliance, and ESG and sustainability. OneTrust privacy software helps companies operationalize data privacy compliance and Privacy by Design. We are looking for a Senior Privacy Counsel to join our team and provide legal practical advice and guidance on privacy compliance matters.Your MissionConferring with senior team leaders to develop the strategy of the privacy compliance program for all OneTrust legal entities globally.Collaborating with cross-functional teams and stakeholders to ensure the integration of privacy principles and best practices across the organization or the project. Interactions may include external stakeholders, such as regulators, law enforcement agencies, clients, customers, and partners.Providing "Customer 0" feedback on our Privacy team's usage of the OneTrust software and collaborating with the OneTrust product development teams to provide guidance and feedback on how to integrate privacy use cases and feedback into the design and development lifecycle of our products and services.Developing and implementing data processing management strategies to ensure that personal data is collected, used, stored, shared, and disposed of in accordance with applicable privacy laws and standards, such as the EU and UK GDPR, CCPA, ISO 27701, etc.Some of the example projects that you will be involved in are:Providing legal privacy guidance and knowledgeable support to the business on projects involving Privacy Impact Assessments, Privacy by Design Assessments, Vendor and/or Transfer Impact Assessments.Oversight of privacy rights management workstream and providing advice to the business regarding complex privacy requests.Advising on business projects involving cookies and tracking technologies, use of AI and other innovative technologies.Supporting the company projects of automated data mapping and data governance and advising on further project priorities and strategy involving personal data management within the privacy program.Investigating and advising on potential privacy issues related to governance and external reporting, such as data breaches, data subject requests, regulatory inquiries, and litigation.You AreA Juris Doctor degree or equivalent (LLM) from an accredited law schoolAt least 5 years of experience in privacy law, data protection, or a similar roleA solid understanding of the EU GDPR, UK GDPR, California CCPA and key US & Canada Privacy laws. Familiarity with NIST Privacy Framework and ISO 27701, as well as other relevant frameworks, standards, laws, and regulations.A knowledge and strong interest in (personal) data governance, algorithms, databases, web technologies, cloud computing, big data, artificial intelligence, etc.A familiarity with privacy-enhancing technologies (PETs).A certification in privacy or data protection, such as CIPP/E, CIPM, CIPT, etc., or willingness to obtain one.Excellent analytical, problem-solving, communication, leadership, and interpersonal skillsA passion for privacy, automation and a commitment to ethical data useAbility and willingness to travel (10%-20%)Extra AwesomeFluency in more than one language preferred.Experience with security and/or ethics that will allow us to work better with our colleagues in those departments.Experience in a trade association, think tank, university, consulting, law firm, compliance, and in-house.
