The positions offers front-line, meaningful (and increasing) responsibility to assist and advise clients on digital healthcare privacy, data privacy, cybersecurity and digital assets counseling and transactions, a range of global compliance strategies regarding privacy, data protection, international data transfers and cybersecurity, incident response and defense of regulatory actions.
Responsibilities will include: working directly with partners worldwide in our global Data Privacy, Cybersecurity and Digital Assets Practice Group, leading or assuming significant responsibility for projects and directly interfacing with clients; carrying out compliance gap assessments and implementing remediation plans; drafting policies and procedures (privacy policies, privacy statements, incident response plans, vendor contracting templates and DPAs, etc.); advising on contract and M&A negotiations; and assisting clients to determine compliance risks and priorities and implementing data protection compliance and information governance programs. Healthcare industry experience is necessary.
Academic and Professional Qualifications
- J.D. degree or equivalent
- Admission to practice and in good standing in the District of Columbia. We will also consider candidates who are actively licensed and in good standing in any U.S. state where a SPB office resides.
- Candidates with digital healthcare and privacy experience are strongly preferred
- Certified Information Privacy Professionals are strongly preferred, including the following certifications: CIPP-US, CIPP-EU, and CIPM
Knowledge, Skills & Experience
- At least 4-7 years’ of applied eExperience with data privacy, including specific health care privacy experience (such as HIPAA and state sensitive information laws). Incident response experience desirable but not essential.
- Industry experience and/or experience drafting privacy and security policies and procedures for compliance with at least several of the following: FDA, FTC and State AG guidancebest practices and enforcement (FIPPs), GLBA, HIPAA, HITECH Act, CAN-SPAM, TCPA, COPPA, FCRA, FERPA, VPPA, Cable Act, Privacy Act, Cal-OPPA, Shine the Light, state breach notification and security laws, US-EU and US-Swiss Privacy Shield and state consumer privacy laws (CCPA/CPRA/CDPA/CPA)
- Working understanding of international, federal, state and local privacy and security laws and technologies to support compliance
- Excellent research and organizational skills; strong verbal and written communication abilities
- A self-starter with the ability to prioritize workload with competing demands, display good judgment and work well under pressure
- Must be capable of working in a collaborative, congenial environment
- Proven ability to independently manage matters, or meaningful segments of large/complex matters, and to facilitate pushing projects to completion
Application Submission Information:
Be prepared to submit your resume. In order to be considered for a position at Squire Patton Boggs, you must formally apply on our website.