Jobs · Legal · California

Privacy & Cybersecurity Counsel

Snap Inc. · Los Angeles, CA · 2 wk ago
Legal$209k–$313k/yrFull-time

About the role

The Legal Counsel will join Team Snap to support the company’s global privacy and cybersecurity programs. This role involves close collaboration with various teams including Engineering Security, Policy, Security, Engineering, Product, Design, and others.

Responsibilities

  • Partner closely with Snap’s Engineering Security team to provide legal and strategic advice on matters such as vendor due diligence, third-party privacy and security assessments, governance, risk and compliance, and privacy and security incident response.
  • Collaborate with stakeholders to help develop, improve, and enforce Snap’s data security policies, standards, and practices, ensuring they meet global legal requirements.
  • Ensure Snap’s data processing globally complies with all applicable privacy laws, including the EU General Data Protection Regulation (GDPR) and state and federal consumer protection and privacy laws.
  • Work with Product Counsel on complex issues that arise in the development of new products and technologies, including privacy, data security, and encryption.
  • Partner with Snap’s Privacy Engineering team to continually improve Snap’s privacy-by-design program.
  • Analyze potential legal risks and regulatory requirements for new products and technologies.
  • Conduct privacy due diligence reviews, privacy impact assessments, and integration plans for potential acquisitions and partnerships.
  • Help draft public-facing descriptions of new products and technologies.
  • Track and analyze proposed, pending, and new domestic and global privacy, data security, and consumer legislation that could impact the business and recommend necessary modifications to practices, as well as advise Snap’s Policy team on policy engagement priorities.
  • Conduct periodic privacy and security trainings across the company.

Requirements

  • Experience counseling and working closely with Security teams, including on-call rotation for security and privacy incident response, and security investigations.
  • Deep understanding of, and experience advising on, global cybersecurity laws, regulations and frameworks (e.g., EU NIS 2, EU Cyber Resilience Act, Executive Order 14117, and the Cybersecurity Information Sharing Act, and NIST frameworks).
  • Deep understanding of, and experience advising on, domestic and global privacy laws, regulations, and frameworks, including the GDPR, ePrivacy Directive, Section 5 of the FTC Act, anti-spam laws, cookies regulation, and U.S. State privacy laws.
  • Knowledge of existing and emerging artificial intelligence laws, regulations, and frameworks, and a passion for using AI responsibly to enhance legal work.
  • In-house or law firm experience counseling clients on privacy, cybersecurity and general product, technology and mobile app-related matters.
  • Excellent legal and business judgment and strategic thinking.
  • Strong communicator, collaborator, and problem-solver who thrives in cross-functional settings.
  • Detail-oriented, practical, business-minded, and a team player, with an ability to manage multiple priorities under tight deadlines.
  • Strong work ethic, able to work independently and collaboratively, and a sense of humor.

Qualifications

  • J.D. from a nationally recognized law school.
  • Active membership in at least one state bar.
  • 6+ years of experience practicing law.

Skills and Abilities

  • Experience counseling and working closely with Security teams, including on-call rotation for security and privacy incident response, and security investigations.
  • Deep understanding of, and experience advising on, global cybersecurity laws, regulations and frameworks (e.g., EU NIS 2, EU Cyber Resilience Act, Executive Order 14117, and the Cybersecurity Information Sharing Act, and NIST frameworks).
  • Deep understanding of, and experience advising on, domestic and global privacy laws, regulations, and frameworks, including the GDPR, ePrivacy Directive, Section 5 of the FTC Act, anti-spam laws, cookies regulation, and U.S. State privacy laws.
  • Knowledge of existing and emerging artificial intelligence laws, regulations, and frameworks, and a passion for using AI responsibly to enhance legal work.
  • In-house or law firm experience counseling clients on privacy, cybersecurity and general product, technology and mobile app-related matters.
  • Excellent legal and business judgment and strategic thinking.
  • Strong communicator, collaborator, and problem-solver who thrives in cross-functional settings.
  • Detail-oriented, practical, business-minded, and a team player, with an ability to manage multiple priorities under tight deadlines.
  • Strong work ethic, able to work independently and collaboratively, and a sense of humor.

Similar jobs