Data Privacy Officer, Counsel
Sanofi
12 hours ago
Remote friendly (Cambridge, MA)
United States
$161,250 - $232,916.66 USD yearly
Corporate Functions
Main Responsibilities:
- Serve as internal Privacy Counsel and Privacy Officer for the US market.
- Apply expertise in data protection, information security, breach notification, and data privacy policies/procedures to ensure compliance with GDPR, HIPAA, and current US state privacy laws.
- Conduct data privacy impact assessments for in-scope projects/products.
- Manage privacy and breach requirements, including investigation, reporting, and remediation, in accordance with regulatory requirements.
- Liaise with regulatory bodies and internal stakeholders to address data privacy concerns or compliance issues.
- Provide training and support to business unit teams on data privacy best practices and implementation of new state laws.
- Maintain accurate documentation and records of data processing activities for audit purposes.
Basic Qualifications:
- Juris Doctorate (JD) from an accredited law school (preferably data privacy-focused) and a valid US law license.
- In-depth knowledge of US state and federal privacy laws/regulations (e.g., CCPA, HIPAA), data breach notification regulations, and familiarity with AI regulations.
- Legal/regulatory/policy analytical skills, including experience analyzing proposed privacy laws/regulations.
- Prior privacy/AI/breach notification/cybersecurity law and data loss prevention experience in a law firm.
- Healthcare experience, including providing product counseling to Product Management in pharma/biotech.
- Relevant privacy certifications (e.g., CIPP-US).
- Minimum 5 years of legal experience.
- Strong relationship-building, collaboration, and cross-functional work.
- Excellent written/verbal communication; ability to explain complex legal concepts to non-experts.
- Proficiency with Word, PowerPoint, and other standard corporate software.
Preferred Qualifications:
- Counsel pharma/biotech companies on FDA or other healthcare-related government agencies.
- Counsel large enterprises on privacy compliance.
- Experience with privacy compliance management software.
Benefits (explicitly stated): At least 14 weeksβ gender-neutral parental leave; health and wellbeing benefits.
Desirable Requirements:
- Product management and project management experience.
- Ability to speak French.
- AI law knowledge and/or familiarity with current state AI regulations.
- Serve as internal Privacy Counsel and Privacy Officer for the US market.
- Apply expertise in data protection, information security, breach notification, and data privacy policies/procedures to ensure compliance with GDPR, HIPAA, and current US state privacy laws.
- Conduct data privacy impact assessments for in-scope projects/products.
- Manage privacy and breach requirements, including investigation, reporting, and remediation, in accordance with regulatory requirements.
- Liaise with regulatory bodies and internal stakeholders to address data privacy concerns or compliance issues.
- Provide training and support to business unit teams on data privacy best practices and implementation of new state laws.
- Maintain accurate documentation and records of data processing activities for audit purposes.
Basic Qualifications:
- Juris Doctorate (JD) from an accredited law school (preferably data privacy-focused) and a valid US law license.
- In-depth knowledge of US state and federal privacy laws/regulations (e.g., CCPA, HIPAA), data breach notification regulations, and familiarity with AI regulations.
- Legal/regulatory/policy analytical skills, including experience analyzing proposed privacy laws/regulations.
- Prior privacy/AI/breach notification/cybersecurity law and data loss prevention experience in a law firm.
- Healthcare experience, including providing product counseling to Product Management in pharma/biotech.
- Relevant privacy certifications (e.g., CIPP-US).
- Minimum 5 years of legal experience.
- Strong relationship-building, collaboration, and cross-functional work.
- Excellent written/verbal communication; ability to explain complex legal concepts to non-experts.
- Proficiency with Word, PowerPoint, and other standard corporate software.
Preferred Qualifications:
- Counsel pharma/biotech companies on FDA or other healthcare-related government agencies.
- Counsel large enterprises on privacy compliance.
- Experience with privacy compliance management software.
Benefits (explicitly stated): At least 14 weeksβ gender-neutral parental leave; health and wellbeing benefits.
Desirable Requirements:
- Product management and project management experience.
- Ability to speak French.
- AI law knowledge and/or familiarity with current state AI regulations.