Job Details

Privacy and Data Security Attorney (LAW FIRM)

Raleigh, NC, United States
  • Employment Type: Direct Hire
Our client, an entrepreneurial law firm, is looking for a Privacy and Data Security Attorney to join their growing practice in Raleigh, North Carolina. The firm’s Privacy and Data Security group represents diverse clients from a variety of industries and addresses all aspects of privacy and data security law focusing on areas such as operationalizing legal requirements, data security breach response, vulnerability, risk, and compliance assessments. This attorney will directly advise clients on regulatory compliance, and will handle most aspects of data breach response, draft privacy and data security policies and procedures as well as supervise client assessment activities by third-party vendors. Must have excellent attention to detail, demonstrated leadership ability, strong project and client management skills, and be team-oriented. A CIPP, CIPM, CIPT or other relevant certifications offered by the International Association of Privacy Professionals (IAPP) preferred. Send resumes to [email protected].

Position Description    
The firm’s Privacy and Data Security group is interested in hiring an attorney with experience in privacy and legal data security; portable business is welcome but not required; relevant in-house or outside counsel experience are both welcome.
  • Directly advises clients (with minimal supervision) on compliance with and enforcement of some, but not necessarily all of the following legal regimes: CCPA, GDPR, HIPAA and state equivalents, GLBA and state equivalents, FCRA and state equivalents, TCPA and state equivalents, CAN-SPAM, 42 CFR Part 2, miscellaneous state privacy laws (such as biometric privacy statutes), and miscellaneous state security laws (such as the Massachusetts data security regulations, 201 CMR 17)
  • Handles most aspects of data breach response, such as guidance to clients and forensic investigators, drafting notification letters and filings, and interfacing with insurance carriers seeking budgets or updates
  • Conducts diligence pertaining to privacy, data security, and direct marketing in a variety of corporate deals including mergers and acquisitions
  • Negotiates contract terms regarding privacy and data security in corporate or commercial matters, including services agreements
  • Drafts privacy and data security policies and procedures
  • Supervises client assessment activities by third party-vendors, such as compliance assessments, risk analyses, and vulnerability assessments
  • Supports client responses to regulatory inquiries, such as state attorney general inquiries and HIPAA compliance reviews by OCR


Interested in this job? Get in touch.

(Accepted file formats are PDF, DOC, DOCX, TXT, RTF and ZIP. File size maximum is 2 MB.)