Data Privacy - Litigation Attorney in Kansas City, MO

Law Firm

Kansas City, MO

Data Privacy - Litigation Attorney in Kansas City, MO

Attorney

Min 12 yrs required

No

Job Title: Assistant General Counsel - Compliance

Job Responsibilities:

Legal Compliance:
- Identify applicable laws, regulations, and frameworks related to information security, privacy, retention, and disposition pertinent to the law firm's operations.
- Provide legal guidance on integrating these requirements into the Compliance Program and other firm operations.
- Support the firm's compliance efforts in alignment with applicable laws, regulations, ethics rules, and client requirements.
- Collaborate with other Compliance teams and corporate departments to draft, implement, and enforce policies and procedures regarding the law firm's Compliance Program.
- Engage with outside counsel to support compliance initiatives when necessary.
- Support the review and negotiation of client requirements related to privacy in client agreements.
- Advise on firm responses to client assessments and participate in client audits to affirm compliance obligations.
- Collaborate with applicable Technology Services contacts to understand the firm’s capabilities.

Incident Management and Breach Response:
- Manage the firm's incident response process and any required security breach notifications, including documenting investigations and recommending policy and process changes to address root causes.
- Engage with outside incident response counsel and forensics consultants to support incident and breach response activities.
- Collaborate with Compliance Operations and Tech Services Security Team to ensure timely execution of policy and procedure changes.

Policies Development and Annual Reviews:
- Draft policies and procedures regarding the law firm's compliance programs and facilitate their review and approval process.
- Coordinate annual reviews of policies and procedures regarding the law firm's security programs.
- Collaborate with the Compliance Operations and Tech Services Security Team to ensure security assessments are conducted as required by applicable laws or the firm’s policies and as part of the firm’s risk management processes.

Training and Awareness:
- Develop content for the firm’s information security awareness program for all staff and contractors, including onboarding training, annual awareness training, regular awareness bulletins, quick reference guides, and other materials appropriate for legal professionals.

Support Responsibilities:

Ethics Compliance:
- Track developing requirements in ethics rules, opinions, and litigation regarding an attorney’s obligations concerning the security and privacy of data related to client representation.

Client Requirements:
- Assist in reviewing and tracking client requirements related to information security in various client agreements.
- Assist in completing client assessments and audits related to the firm’s security obligations.

Governance, Risk & Compliance Tools:
- Coordinate with Compliance Operations to track all legal, regulatory, and framework requirements related to security within the firm’s Governance, Risk, and Compliance system.

Support Other Compliance Initiatives:
- Serve as additional legal counsel for all other Compliance team efforts.

Education and Experience Information:

- Minimum 12 years of experience working with clients to manage information security, privacy, or information management programs or requirements.
- Legal experience in compliance, privacy, security, and information retention and disposition.
- Demonstrated ability to analyze large volumes of data, recognize trends, identify security and privacy risks, and help define policy, process, special projects, budgets, and programmatic changes.
- Demonstrated ability to drive issues to resolution and implement programs and policies by identifying obstacles and working with clients, practice teams, and corporate groups to develop solutions.
- Demonstrated ability to manage multiple projects simultaneously, prioritize conflicting demands, and escalate issues as necessary.
- Ability to negotiate privacy and security agreements effectively.
- Working knowledge of IT systems/technologies, policies, and procedures used by large companies.
- Excellent presentation and communication skills to communicate technical concepts to non-technical personnel.
- Excellent writing and drafting skills.
- Strong organizational and communication skills.
- Experience with project management disciplines to manage projects to successful completion.
- Familiarity with applicable Compliance and security frameworks like ISO 27001/2, NIST Cybersecurity Framework, HiTrust framework, SSAE18 Trust Service Principles, etc.
- Experience with applicable information security, privacy, and information management laws and regulations, including HIPAA/HITECH, EU Data Privacy Directive, GDPR, CCPA, Mexico Data Protection laws, PIPEDA, etc.

Education & Certifications:

Required: Juris Doctor, Bar Admission
Preferred: Privacy or security certifications, including CISSP, CIPM, CISM, CIPP/E, CIPP/US, etc.

Salary Information:

Pursuant to Minnesota regulation, the annual salary range is $188,600 to $207,500, including eligibility for performance-based bonuses. Factors affecting starting pay may include geography/market, skills, education, experience, and other qualifications.

Pursuant to New York regulation, the annual salary range is $190,700 to $209,800, including eligibility for performance-based bonuses. Factors affecting starting pay may include geography/market, skills, education, experience, and other qualifications.

Benefits:

The law firm offers a generous benefits package, including comprehensive health, dental, and vision plans, a superior 401(k) plan, ample time off programs, mental health programs, family building and caregiving, paid parental leave, life insurance, disability insurance, a wellness program, flexible spending accounts, and an employee referral bonus program.

About the Law Firm:

The law firm is the largest global employment and labor law practice in the world, exclusively devoted to representing management. With over 1,800 attorneys in more than 100 offices worldwide, the law firm serves as a single-source solution provider to the global employer community. The law firm is recognized as a leading and innovative law practice, litigating, mediating, and negotiating influential employment law cases and labor contracts for over 75 years. The firm's commitment to labor and employment law helps clients navigate a complex business world with nuanced legal issues, building better solutions for clients’ toughest challenges. With a diverse team of the brightest minds, the law firm fosters a culture that celebrates original thinking and delivers groundbreaking innovation.