Healthcare Data Privacy Associate Attorney

Recruiter

Washington, DC

Healthcare Data Privacy Associate Attorney

Attorney

3-8 yrs required

Full-time

No

A law firm is seeking a Healthcare Data Privacy Associate Attorney to join its global Data Privacy, Cybersecurity, and Digital Assets Practice Group. The candidate will play a key role in advising clients on digital healthcare privacy, data protection, cybersecurity, and global compliance strategies.

Job Details

Duties:

• Assist and advise clients on digital healthcare privacy, data privacy, cybersecurity, and digital assets counseling and transactions.
• Lead or assume significant responsibility for projects, working directly with partners worldwide.
• Conduct compliance gap assessments and implement remediation plans.
• Draft policies and procedures, including privacy policies, privacy statements, incident response plans, vendor contracting templates, and DPAs.
• Advise on contract and M&A negotiations.
• Assist clients in determining compliance risks and priorities, implementing data protection compliance, and managing information governance programs.
• Provide incident response support and defense in regulatory actions.

Requirements:

• . degree or equivalent.
• Admission to practice and in good standing in any . state.
• 4+ years of experience with meaningful knowledge of healthcare industry data privacy and security issues.
• Incident response experience is desirable.
• Healthcare industry experience is necessary.

Certifications:

Certified Information Privacy Professional (CIPP-US, CIPP-EU, CIPM) strongly preferred.

Skills:

• Strong understanding of international, federal, state, and local privacy and security laws.
• Familiarity with technologies supporting compliance.
• Experience in drafting privacy and security policies for compliance with FDA, FTC, State AG guidance, GLBA, HIPAA, HITECH Act, and other relevant regulations.
• Working knowledge of US-EU and US-Swiss Privacy Shield and state consumer privacy laws (CCPA/CPRA/CDPA/CPA).
• Familiarity with privacy-related regulations such as FIPPs, CAN-SPAM, TCPA, COPPA, FCRA, FERPA, VPPA, Cable Act, Privacy Act, Cal-OPPA, Shine the Light, and state breach notification and security laws.