Data Privacy Counsel, US/Canada
New York, New York, United States
POSITION SUMMARY:
The person in this role will be a member of the Global Data Privacy Team (GDPT) which is part of Milliman’s Legal and Compliance General Corporate Services. The person in this role will assist the Global Data Privacy Director with the implementation of the privacy program in the USA and Canada including processes, procedures and initiatives, and collaborate with other departments and practices in support of the US/Canadian privacy program. Although the primary focus will be the USA/Canada, this person will be involved in international projects and collaborate with Data Privacy Counsels in charge of other regions. The person in this role will be supervised by the Global Data Privacy Director based in Paris, France. This person will work with peers located in France, India and the USA (headquarters of Milliman’s General Corporate Services, or GCS). This role offers excellent growth opportunities and is ideal for a mid-level Counsel eager to advance to a Senior Data Protection Counsel position in the short term, and to a Head of Data Protection for the USA/Canada in the future.
RESPONSIBILITIES:
- Conduct research and monitor new and revised federal and state privacy laws, regularly reporting findings to the Global Data Privacy Director.
- Provide legal advice on a day-to-day basis.
- Assist with the implementation of Milliman’s Global Data Protection Policy in the USA/Canada
- Prepare and present various data privacy trainings to Milliman’s U.S./Canadian practices
- Negotiate U.S. Data Sharing Agreements and collaborate with Milliman’s U.S. Legal Team.
- Assist with the creation of ad hocS. Data Sharing Agreement templates
- Respond to requests for data privacy advice from the business, including assisting in responding to prospect and customer data protection questionnaires.
- Assist with identifying privacy risks in processes and systems and propose mitigations
- Identify any gaps in policies/procedures based on regulations and recommend prioritization of addressing gaps.
- Assist with the implementation of the international Vendor Management Program, participate in U.S./Canada vendor due diligence checks, and contract negotiations.
- Maintain a network of local DPCPs (Data Privacy Contact Persons) and providing them with advice and regular training when needed
- Assist with the drafting of employee notices/consent forms where required
- Maintain Milliman’s Records of Processing Activities/Review Milliman’s Data Mapping Questionnaires annually
- Assist with the management of Data Subject Access Requests (DSARs) and other requests from data subjects residing in the USA
- Assist with the drafting of Data Protection Impact Assessments where required
- Monitor implementation of data privacy recommendations made under Privacy Impact Assessments
- Assist with internal audits, privacy reviews and self-assessment analyses
SKILL & QUALIFICATIONS REQUIRED:
- The ideal candidate must be a Juris Doctor or qualified lawyer in a relevant jurisdiction. Must have passed Bar Exam.
- The ideal candidate must have minimum 6 years of post-admission experience working in data privacy law (law firm or in-house legal practice).
- The ideal candidate must have working knowledge of US federal and state data privacy laws, including HIPAA/HITECH, GLBA, FCRA.
- The ideal candidate must have the International mindset and understanding of international data privacy laws, in particular GDPR.
- The ideal candidate must have the ability to deal with various laws across several states.
- The ideal candidate must be skilled in documenting compliance actions.
- The ideal candidate must have strong contract drafting and negotiating experience.
- The ideal candidate must have excellent organization and planning skills, with the ability to (i) report and draft summaries of action plans, (ii) create plans and diligence to follow through and (iii) monitor plans through execution and completion.
- Must be a native English speaker.
- Must have the ability to draft summaries and reports of legal analyses in a structured manner.
- Must possess collaborative workstyle and team-spirit. Must have the capacity to adapt to the working style and organization of the team and embrace different cultures and mentalities.
- Must have demonstrated experience in giving trainings.
- Must have demonstrated professionalism in interactions with external clients.
- Must have excellent written and communication skills. Ability to adapt to different cultures and communication styles.
- Must have exceptional interpersonal skills.
SKILLS & QUALIFICATIONS PREFERRED:
- CIPP certification through the IAPP (CIPP/US)
- IT security knowledge
LOCATION:
This is a remote position. This job posting is expected to close on December 24th, 2024.
COMPENSATION:
The salary range for this role is $122,000 - $248,000, depending on a combination of factors, including, but not limited to, education, relevant work experience, qualifications, skills, certifications, location, etc.
BENEFITS:
At Milliman, we focus on creating an environment that recognizes – and meets – the personal and professional needs of the individual and their family. We offer competitive benefits which include the following based on plan eligibility:
- Medical, dental and vision coverage for employees and their dependents, including domestic partners.
- A 401(k) plan with matching program, and profit sharing contribution.
- Employee Assistance Program (EAP).
- A discretionary bonus program.
- Paid Time Off (PTO) starts accruing on the first day of work and can be used for any reason; full-time employees will accrue 15 days of PTO per year, and employees working less than a full-time schedule will accrue PTO at a prorated amount based on hours worked.
- Family building benefits, including adoption and fertility assistance and paid parental leave up to 12 weeks for employees who have worked for Milliman for at least 12 months and have worked at least 1,250 hours in the preceding 12-month period.
- A minimum of 8 paid holidays.
- Milliman covers 100% of the premiums for life insurance, AD&D, and both short-term and long-term disability coverage.
- Flexible spending accounts allow employees to set aside pre-tax dollars to pay for dependent care, transportation, and applicable medical needs.
ABOUT MILLIMAN:
Independent for over 77 years, Milliman delivers market-leading services and solutions to clients worldwide. Today, we are helping companies take on some of the world’s most critical and complex issues, including retirement funding and healthcare financing, risk management and regulatory compliance, data analytics and business transformation.
Through a team of professionals ranging from actuaries to clinicians, technology specialists to plan administrators, we offer unparalleled expertise in employee benefits, investment consulting, healthcare, life insurance and financial services, and property and casualty insurance.
EQUAL OPPORTUNITY:
All qualified applicants will receive consideration for employment, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Apply
Job Profile
Remote Remote position
Benefits/PerksCollaborative environment Competitive benefits Dental Disability coverage Discretionary bonus Discretionary bonus program EAP Employee Assistance Program Family building benefits Flexible Spending Accounts Growth Opportunities International projects Life Insurance Medical Medical, Dental and Vision coverage Paid holidays Paid parental leave Paid Time Off Profit Sharing Profit sharing contribution PTO Vision Vision coverage
Tasks- Assist with privacy program implementation
- Assist with vendor due diligence
- Communication
- Conduct research
- Conduct research on privacy laws
- Draft data protection impact assessments
- Identify privacy risks
- Manage data subject access requests
- Negotiate data sharing agreements
- Prepare and present training
- Provide legal advice
- Reporting
- Vendor management
Access Analytics Communication Compliance Consulting Contract drafting Data Mapping Data privacy Data Protection Data subject access requests Employee Benefits FCRA Financial GDPR GLBA HIPAA HITECH Implementation Insurance Internal Audits Interpersonal IT Legal Legal advice Negotiation Organization Privacy Law Regulatory Compliance Risk Assessment Risk Management Security Training Vendor Management
Experience6 years
EducationBusiness Data Analytics Juris Doctor
TimezonesAmerica/Anchorage America/Chicago America/Denver America/Los_Angeles America/New_York Pacific/Honolulu UTC-10 UTC-5 UTC-6 UTC-7 UTC-8 UTC-9