Assistant General Counsel – Privacy and Cybersecurity, DaVita, Denver, CO

This position requires at least five years of related experience and ten years’ total experience, and will support DaVita’s comprehensive privacy programs and provide legal advice on privacy and cybersecurity issues.

RESPONSIBILITIES:

  • Support DaVita’s comprehensive privacy program
  • Provide legal advice on privacy and cybersecurity legal matters
  • Negotiate privacy and security-related terms in vendor and client agreements
  • Partner with the IT security organization to serve as a valued advisor on IT security matters
  • Work with engineering and IT security teams to ensure privacy and security-by-design is embedded in products and solutions
  • Review and provide guidance on privacy and security practices, including applicable controls and certifications
  • Serve as the key legal lead in responding to potential data breaches and other cybersecurity matters
  • Support developing cybersecurity policies, processes (including for incident response), products, assessments, and reports
  • Work closely with DaVita Intl to ensure integration and consistency of cybersecurity programs and compliance with GDPR and other laws and requirements outside the US
  • Provide ongoing legal advice regarding legal implications of specific terms and conditions in existing contracts.
  • Assist in the development and review of privacy and security training
  • Maintain familiarity with privacy and information security laws, regulations, case law, standards, best practices and trends
  • Manage projects and initiatives
  • Communicate effectively and succinctly privacy and security legal issues to other leaders and non-legal audiences

MINIMUM QUALIFICATIONS

  • Juris Doctor and membership to at least one U.S. state bar
  • 10 years of attorney experience with a minimum of 5 years working in the field of cybersecurity and privacy
  • Technical knowledge and experience related to cybersecurity and investigations
  • Experience handling incident response, including regulatory inquiries and managing interactions with outside counsel
  • Contract negotiations experience, including negotiating privacy and security terms
  • Strong presentation and communication skills

PREFERRED QUALIFICATIONS

  • People management experience
  • Bachelor’s degree in a technical, business or healthcare discipline
  • Employee privacy experience
  • Privacy engineering experience
  • Experience with IT and security vendor contracting
  • Experience with consumer privacy and data governance
  • Demonstrated ability to work independently on diverse matters, successfully lead cross-functional projects, and comfortable finding creative and practical solutions.

To apply please send your resume to patricia.festa@davita.com

Application Submission Information:

To apply please send your resume to patricia.festa@davita.com