Corporate Counsel

Safelite•Columbus, OH

1d•Hybrid

About The Position

The Corporate Counsel of Technology reports directly to the Assistant General Counsel of Security, Technology, AI, Customer Experience and Knowledge (AGC of STACK), and serves as a hands-on, business-oriented attorney who primarily supports technology/commercial contracting (~40%), with emphasis on buy-side procurement and but also includes client-facing (B2B) security & privacy negotiations, and provides privacy, AI governance, customer experience and brand counseling (~60%). The role executes day-to-day matters, improves repeatable processes, and maintains excellent judgment on when to escalate novel, high-risk, complex or high visibility issues to the AGC across all practice areas. The leader in this role is a hands-on and pragmatic attorney who serves as a legal and business partner to procurement, technology, security, product, and customer experience teams. This attorney is expected to manage a steady volume of matters independently using established templates and playbooks, apply strong issue-spotting and business judgment skills, and translate legal requirements into clear, actionable guidance. In partnership with the AGC of STACK, the Corporate Counsel will anticipate emerging risks through regulatory sensing, collect information and draft guidance guide to support strategic decision‑making, and adopt best practices to further enhance Safelite’s existing privacy and AI governance frameworks.

Requirements

Juris Doctor (JD) from a top tier accredited law school
Admission to practice in relevant jurisdiction(s), preferably Ohio
4-6 years of in house corporate and/or law firm experience with meaningful focus on technology contracting, including SaaS/cloud, MSAs/SOWs, and vendor procurement agreements
Working knowledge of privacy and security issues that arise in contracts (DPAs, incident terms, vendor diligence), familiarity with state privacy law regulatory structures and compliance requirements, ability to support operational privacy workflows (DSAR/DPIA support)
Familiarity with marketing/CX review topics (disclosures, endorsements, advertising claims, consent UX) strongly preferred
IP experience (trademark/copyright/patent) prosecution, licensing and portfolio management is a plus but not required
Exceptional judgment, discretion, and integrity, with the ability to navigate high‑risk issues and communicate clearly with senior attorneys and business leaders.
Ability to spot and triage issues across multiple practice areas (privacy, IP, AI, SMS consent, consumer disclosures) in contracts and customer-facing materials and to collaborate with specialists when needed.
Strong analytical, writing, and communication skills, including the ability to translate complex legal concepts into actionable and practical guidance.
Ability to anticipate emerging regulatory or enforcement risks and proactively design mitigation strategies.
Demonstrated process/operations mindset, e.g., building playbooks, clause libraries, fallback positions, intake forms, metrics, and self-service resources),to improve cycle time and consistency.
Ability to manage multiple priorities and high‑stakes matters with a solutions‑oriented mindset.

Nice To Haves

IP experience (trademark/copyright/patent) prosecution, licensing and portfolio management is a plus but not required
Familiarity with marketing/CX review topics (disclosures, endorsements, advertising claims, consent UX) strongly preferred

Responsibilities

Support the legal workstream during security incidents by gathering facts, preserving documentation, tracking timelines, and assisting with drafts.
Supporting planning of incident-response exercises (materials, minutes, after action items) and track follow-ups with stakeholders.
Review and negotiate sell-side security provisions, addendums, exhibits with insurance clients (B2B).
Independently review, redline, and negotiate a broad range of buy-side agreements, including SaaS/, software licenses, MSAs, professional services, NDAs, and other IT vendor contracts.
Support improvements to Safelite’s contracting processes (intake, playbooks, self-service tools, repository hygiene) to reduce cycle time and improve consistency.
Support day-to-day privacy program tasks such as maintaining processing records, helping complete DPIAs, documenting mitigations, and supporting privacy-by-design reviews in projects under established guidance.
Assist with DSAR process (intake, tracking, coordination with stakeholders, drafting support, evidence management).
Help develop short, practical guidance and trainings to embed privacy expectations into business workflows.
Support contracting for AI tools/services by addressing common risk areas: data inputs/outputs, training restrictions, confidentiality, security controls, audit, IP/output ownership/usage.
Contribute to AI governance operations by helping maintain an inventory of AI tools/use cases, supporting risk reviews, and assisting with internal user guidance on risk mitigation.
Review digital flows, notices, and disclosures for clarity and legal risk; recommend pragmatic edits to reduce consumer-protection exposure while supporting a consistent customer experience.
Support review of cookies/pixels and consent UX (opt‑in/opt‑out mechanisms, preference signals) by applying established privacy guidance.
Review marketing materials, promotions, endorsements/influencer arrangements, and required disclosures and flagging substantiation issues.
Provide practical support on IP issues in vendor contracts and CX/marketing materials: copyright ownership/licensing questions, basic trademark usage/clearance spotting.
Track and summarize developments impacting tech contracting, privacy, security, AI, and marketing/CX compliance; help update internal guidance accordingly.
Performs other duties as assigned
Complies with all policies and standards
Applies a risk based practical approach to partner with clients
Thrives in a high paced environment with multiple competing demands