Possible expired job

This job was posted 2 years ago and may be expired now. If that's the case, you can browse similar jobs here. Apologies for the inconvenience.

Senior Counsel, Privacy – Vendor Negotiations

Sr. Counsel, Privacy (Vendor Negotiations), (Remote)

locations

USA – Remote

time type

Full time

job requisition id

R11599

#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a fanatical commitment to the customer to join us in shaping the future of cybersecurity. Consistently recognized as a top workplace, CrowdStrike is committed to cultivating an inclusive, remote-first culture that offers people the autonomy and flexibility to balance the needs of work and life while taking their career to the next level. Interested in working for a company that sets the standard and leads with integrity? Join us on a mission that matters – one team, one fight.

About the Role:

This is a newly created cross-functional position on our privacy team. As Privacy Counsel, you will work remotely, reporting into our Privacy & Public Policy team and partnering with CrowdStrike’s Legal team and other stakeholders to negotiate vendor terms applicable to privacy (including data protection agreements and business associate agreements) and identify legal issues relevant to privacy compliance. In addition, you will enhance CrowdStrike’s register of processing activities. Your responsibilities include providing practical legal advice to our commercial legal team on data protection compliance, interacting directly with vendors to articulate CrowdStrike’s positions, drafting data protection agreements, responding to privacy-related questionnaires, monitoring legal developments, and contributing to new vendor-focused resources, assessments, and terms.

Additional responsibilities:

  • Collaborate with CrowdStrike’s Legal team and negotiate data protection agreements with customers and vendors.
  • Assist with customer negotiations as needed.
  • Develop and conduct privacy training for internal legal and compliance stakeholders.
  • Conduct data protection impact assessments, assist our security compliance team as needed with vendor assessments, audits, and investigations.
  • Assist with monitoring of compliance with applicable data protection requirements.
  • Monitor legal and regulatory changes that impact CrowdStrike’s business and regularly update the data protection program based on emerging risks and best practices.
  • Serve as an internal data protection expert, with particular knowledge of GDPR, CCPA, PIPEDA, HIPAA, and potentially applicable cybersecurity regulations
  • Draft privacy policies and notices, data protection agreements, and practical legal guidance.
  • Proactively identify opportunities for improvement and reduction of friction.
  • Interact with vendors and partners to facilitate understanding of their data protection compliance.

What You’ll Need

  • Licensed to practice law in at least one US jurisdiction.
  • A Juris Doctor or equivalent.
  • Privacy certification (e.g., CIPP/E/US)
  • 5-10 years of data protection law experience working with a law firm or as in-house counsel, with specific experience reviewing a significant volume of DPA templates used in various industries.
  • Experience negotiating data protection agreements with customers and vendors.
  • Experience drafting customer-facing resources and vendor questionnaires.
  • Experience completing privacy questionnaires and data protection impact assessments.
  • Knowledge of HIPAA, GDPR, CPRA, PIPEDA, ASEAN Model Clauses and other workplace privacy and consumer protection laws.
  • Understanding of global privacy principles and standards to navigate needs of business units and vendors to negotiate compliant outcomes.
  • Solution-driven focus on getting deals done, focusing on what’s important without getting bogged down on inconsequential details.
  • Awareness of global privacy laws, data localization laws, and best practices.
  • Understanding of cloud-based SaaS technologies, cybersecurity, digital marketing, big data analytics, and general business operations.
  • Knowledge of Data Protection Authorities, international data transfer mechanisms, and regulatory obligations.
  • Ability and willingness to tackle other areas of privacy and cybersecurity law as needed.
  • Team player who welcomes responsibility and thrives in an intense, fast-paced environment.
  • Resourceful self-starter who enjoys wearing multiple hats and digging into challenging projects, big and small.
  • Ability to effectively communicate legal and compliance issues verbally and in writing in a clear and understandable manner; strong interpersonal skills.
  • Demonstrated ability to be proactive, exercise independent judgment and strong work ethic.
  • Ability to work varying hours to accommodate global workforce, as needed within a Legal Team that is remote (pre-COVID).
  • You must love our business. CrowdStrike is a leader in cybersecurity. We don’t have a mission statement. We are on a mission to protect our customers from breaches. You must be genuinely committed to our mission and eager to learn the details of our business.

Bonus Points:

  • Experience working with diverse cultures.
  • Experience working remotely.
  • Experience working in a startup environment, in cybersecurity, in technology, or in a SaaS company.
  • Experience interacting with data protection regulators.
  • Fluency in additional languages.

#LI-SC1

#LI-Remote

Benefits of Working at CrowdStrike:

  • Remote-first culture
  • Market leader in compensation and equity awards
  • Competitive vacation and flexible working arrangements
  • Comprehensive and inclusive health benefits
  • Physical and mental wellness programs
  • Paid parental leave, including adoption
  • A variety of professional development and mentorship opportunities
  • Offices with stocked kitchens when you need to fuel innovation and collaboration

We are committed to fostering a culture of belonging where everyone feels seen, heard, valued for who they are and empowered to succeed. Our approach to cultivating a diverse, equitable, and inclusive culture is rooted in listening, learning and collective action. By embracing the diversity of our people, we achieve our best work and fuel innovation – generating the best possible outcomes for our customers and the communities they serve.

CrowdStrike is committed to maintaining an environment of Equal Opportunity and Affirmative Action. If you need reasonable accommodation to access the information provided on this website, please contact Recruiting at crowdstrike.com, for further assistance.

CrowdStrike, Inc. is committed to fair and equitable compensation practices. The salary range for this position in the U.S. is $140,000 – $210,000 per year + bonus + equity + benefits. A candidate’s salary is determined by various factors including, but not limited to, relevant work experience, skills, certifications and location.

CrowdStrike participates in the E-Verify program.