Data Privacy Officer, Counsel
About The Position
Serve as internal Privacy Counsel and Privacy Officer for the US market. This role requires expert knowledge of data protection, information security, breach notification, and data privacy policies and procedures, in compliance with GDPR, HIPAA, and current State Privacy Laws in the US. The position involves conducting data privacy impact assessments for projects/products, managing privacy and breach requirements including investigation, reporting, and remediation, and liaising with regulatory bodies and internal stakeholders. Additionally, the role includes providing training and support on data privacy best practices and implementing new state laws, ensuring accurate maintenance of documentation and records of data processing activities for audit purposes.
Requirements
- Juris Doctorate (JD) degree from an accredited law school, preferably with a focus in data privacy, and a valid license to practice law in the US
- In depth knowledge of U.S. State and federal privacy laws/regulations (CCPA, HIPAA), data breach notification regulations and familiarity with AI regulations
- Legal, regulatory, and policy analytical ability and knowledge, including experience analyzing proposed laws or regulations relevant to information privacy
- Previous privacy/AI/breach notification/cybersecurity law, data loss prevention experience in a law firm
- Healthcare experience, specifically providing product counseling to Product Management in the pharma/biotech space
- Relevant privacy certifications (e.g., CIPP-US)
- Minimum of 5 years of legal experience
- Strong Relationship-building, collaboration and working across functionally
- Excellent communication skills, both written and verbal, with the ability to convey complex legal concepts to non-experts
- Proficiency with Word, PowerPoint and other corporate standard software
Nice To Haves
- Experience counseling pharma/biotech companies on FDA or other relevant governmental agencies on healthcare matters
- Experience counseling large enterprises on privacy compliance matters
- Experience with privacy compliance management software
- Product Management experience
- Project Management experience
- Professional proficiency in speaking French
- AI law and/or knowledge of current state AI regulations /familiarity
Responsibilities
- Serve as internal Privacy Counsel and Privacy Officer for the US market
- Conduct data privacy impact assessments for projects/products within scope
- Manage privacy and breach requirements including investigation, reporting, and remediation in accordance with regulatory requirements
- Liaise with regulatory bodies and internal stakeholders to address any data privacy concerns or compliance issues
- Provide training and support to Sanofi business unit teams on data privacy best practices and leading data privacy implementation of new state laws
- Ensure documentation and records of data processing activities are maintained accurately for audit purposes
Benefits
- High-quality healthcare
- Prevention and wellness programs
- 14 weeks’ gender-neutral parental leave
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
Ph.D. or professional degree
