BUSINESS UNIT AND ROLE OVERVIEW
The role sits within the Data Privacy and Cybersecurity Legal team and is based in our New York, Dallas or SLC office.
The successful candidate will join a small global team of lawyers responsible for counseling the firm on all issues pertaining to data protection, data governance, cybersecurity, cyber incident response and privacy, with particular emphasis on coverage of the firm’s compliance with data protection law and regulation in the Americas.
RESPONSIBILITIES
- Provide legal advice to company affiliates in the Americas and globally on the full range of privacy, data governance and cybersecurity issues.
- Review cyber and data exposure incidents and make determinations as to whether any regulatory and/or individual notifications are required. Draft / review and submit such notifications.
- Advise colleagues in the Employment Law Group on matters pertaining to employee privacy (including monitoring programs, data analytics issues, notice and consent requirements, etc.).
- Work closely with other colleagues in Legal, Compliance and Risk who focus on consumer and client related privacy matters.
- Assist in responding to requests to exercise data subject rights (e.g., access, deletion, etc.).
- Review, assist and advise on Data Protection Impact Assessments.
- Provide legal analysis and advice in relation to international transfers of personal data.
- Review and as needed uplift existing policies and procedures regarding privacy. Draft / review new policies, procedure, best practice documents, as needed.
- Review and negotiate data protection and information security terms in vendor agreements, confidentiality agreements, etc.
- Prepare data protection-related training materials for use online, via videoconference and in live sessions.
- Liaise with colleagues in Europe, the Middle East and Africa (“EMEA”) and APAC to promote consistent data protection / privacy practices globally.
- Monitor and respond to developments in privacy and information security (i.e., new laws, regulations, important case decisions, regulatory guidance, etc.).
- Advise on privacy issues arising from the full range of marketing efforts and Web-related advertising activities.
- Play a central role in compliance readiness programs to prepare for new privacy laws and regulations globally.
SKILLS / EXPERIENCE
- Licensed and Barred Attorney
- Significant experience counseling on privacy and data protection requirements in the Americas as a part of multinational business initiatives
- Experience in evaluating and responding to cyber and data exposure incidents
- In-house experience at financial institution or other relevant industry experience a plus
- Experience with digital privacy matters (e.g., on-line behavioral advertising, cookies) a plus
- Background or demonstrated interest in technology a plus
- Experience drafting policies, procedures, notices and consents
- Privacy Professional accreditation (e.g., CIPP/US) a plus
- Good leadership skills, demonstrated project management experience
- Effective communicator; team player; experience preparing and conducting data protection training
Salary Range
The expected base salary for this New York, New York, United States-based position is $170000-$270000. In addition, you may be eligible for a discretionary bonus if you are an active employee as of fiscal year-end.
Benefits
Goldman Sachs is committed to providing our people with valuable and competitive benefits and wellness offerings, as it is a core part of providing a strong overall employee experience. A summary of these offerings, which are generally available
to active, non-temporary, full-time and part-time US employees who work at least 20 hours per week, can be found here.