Senior Counsel, Privacy & Cybersecurity

About The Position

Requirements

• Juris Doctor (JD) from an accredited law school.
• Member in good standing of the California state bar, either as a licensed attorney or California Registered In-House Counsel.
• 12+ years of experience as a practicing attorney, with a significant focus on corporate compliance and privacy within the tech industry.
• Proven track record in managing corporate compliance programs, data privacy issues, and risk management in a senior legal role.
• Experience working in or advising private technology companies.
• In-depth knowledge of global privacy statutes and regulations (including GDPR and CCPA) and US corporate compliance regulations.
• Strong understanding of technology and data security issues relevant to the tech industry.
• Excellent written and verbal communication skills, with the ability to effectively present complex legal issues to non-legal stakeholders.
• An entrepreneurial mindset, with the ability to orient and navigate in an unstructured environment.
• High level of integrity and ethical judgment, with a commitment to upholding the company’s values and legal responsibilities.
• Willingness to be flexible and learn new skills.
• A true team player with a demonstrated record of mentoring and supporting others.

Responsibilities

• Compliance and Risk Management:
• Develop, implement, and oversee comprehensive compliance programs that ensure the company’s adherence to all relevant laws and regulations, including import/export and supply-chain, FCPA, employment, and global data privacy (GDPR, CCPA).
• Oversee and implement corporate policies related to compliance and privacy, ensuring they align with legal requirements and industry best-practices.
• Monitor changes in laws and regulations, advising the company on necessary adjustments to policies and practices.
• Assess and mitigate legal and compliance risks associated with the company’s operations, products, and services.
• Conduct regular audits and assessments to ensure compliance with internal policies and external regulations, to identify potential weaknesses and non-compliance situations and take corrective action when necessary.
• Work closely with Product Legal to ensure commercial practices align with internal policies and external regulatory requirements.
• Report regularly to management concerning the company’s compliance with laws and regulations.
• Privacy and Incident Response:
• Lead the implementation and management of the company’s privacy program, including data protection strategies, breach response protocols, and employee training.
• Serve as the primary point of contact for all privacy-related inquiries and issues, both internally and externally.
• Lead the company’s response to data breaches or other compliance incidents, coordinating with internal teams and external stakeholders. Conduct post-incident analyses and implement improvements to prevent future occurrences.
• Serve as the company’s GDPR Data Protection Officer
• Legal Advisory:
• Develop and maintain a code of ethics.
• Develop and deliver training programs to educate employees on compliance, employment, ethical, and privacy obligations.
• Provide legal counsel to senior management.
• Foster a culture of compliance and ethical behavior across the organization.

Benefits

• Free snacks and drinks
• Fully paid medical, dental, and vision insurance (partial coverage for dependents)
• Contributions to 401k funds
• 1 1 paid holidays/ 15 days accrued vacation
• Health and wellness benefits, including free gym membership
• Quarterly team-building events