Corporate Counsel, Privacy

Profile

Corporate Counsel, Privacy
The candidate will serve as the privacy subject matter expert to the company and provide strategic and practical counsel to company-wide stakeholders on privacy and data governance principles and requirements. Will work with leaders within the legal, information security, product and marketing teams to develop, implement and improve our data privacy program. Develop, maintain and deliver privacy training, communication and awareness materials. Monitor privacy and data protection laws and enforcement activities and update the program and/or implement initiatives to maintain compliance with applicable laws. Assume a knowledge leadership role within the legal team on all privacy and data protection matters across the legal team. This includes training the legal team on the negotiation, drafting and review of privacy and data processing contract terms and acting as an escalation point for privacy-related matters. This also includes working with the legal team to maintain updated templates and playbooks and providing guidance on privacy standards applicable to Elastic’s delivery of products and services. Support marketing team with a focus on all aspects of data privacy associated with lead generation and management. This includes advising and counseling on relevant legal principles worldwide and collaborating with the marketing team to achieve lead generation goals while staying compliant with applicable data privacy and protection laws. Advise and support our engineering, products and services teams on the implementation of key data protection principles (e.g., purpose limitation, data minimization, transparency, etc.) consistent with the company focus on quality, responsiveness and continuous improvement of products and services. Serve as primary contributor for review of all data privacy matters related to vendor agreements. This includes participating in vendor privacy due diligence assessments and training the vendor legal team on the analysis and negotiation of data privacy matters related to vendor agreements and/or reviewing and negotiation vendor data privacy provisions and DPAs. Assume a knowledge leadership role within the legal team on all privacy and data protection matters across the legal team. This includes serving as the primary point of escalation for all privacy matters relating to deals as well as providing guidance on privacy standards applicable to Elastic’s legal templates and negotiation fallback positions. Develop a collaborative and trusted relationship with our information security team. This includes coordinating the escalation of contractual provisions that require InfoSec review and providing timely assistance in attaining and maintaining essential security credentials (SOC2, ISO 27001, FEDRAMP, etc.) and assisting in response to data security incidents. Maintain our public facing privacy statements. These include our general privacy statement, product privacy statement, cookie statement, candidate privacy statement and California and/or EU privacy statements. Work with HR and InfoSec team to develop, implement and communicate privacy policies relevant to our handling of personal data of applicants, employees and customers. This will include providing guidance and training based on regional privacy requirements and/or relevant operational roles.

Qualification and Experience

The candidate should have Juris Doctor degree from a top law school. Must have 5-7 years of related experience preferably including experience in a top law firm advising rapidly-growing technology companies and in-house at a rapidly-growing technology company supporting data privacy and protection functions. Must have solid understanding and ability to interpret and implement relevant data protection laws and regulations, including GDPR, PIPEDA, HIPAA, GLB and CCPA. Must have completion of one or more privacy and/or data protection related certification programs (e.g., CIPP/E. CIPM, etc.). Must have solid understanding and interest in information security principles and requirements and in integrating applicable security standards (SOC, ISO 27001, FEDRAMP) with the information security requirements of a privacy program. Experience and confidence with negotiating complex data privacy and information security issues and with teaching others how to do so; and A strong work ethic and the ability to prioritize and drive to results with a high emphasis on quality and professionalism is required.

Company info

Hiring Coordinator
Elastic
800 West El Camino Real
Suite 350
Mountain View, CA 94040