Overview

As Data Protection Counsel, you will be part of our Global Trust team reporting to the Data Protection Officer and collaborate with members of the Legal Department to provide data protection, privacy, and security support to our Data Protection Officer and many of our international and domestic departments in support of InterSystems’ technology offerings worldwide. You will collaborate with our small team working cross-culturally to support the business from our global headquarters in Cambridge, MA.

Responsibilities

• Assist with drafting and negotiating data protection, privacy, and security provisions in both inbound and outbound commercial agreements, directly negotiating privacy-related terms and data protection agreements with vendors and enterprise customers.
• Assist with the review, drafting, negotiation, management, and tracking of foreign and domestic agreements in support of data protection, privacy, and security issues including new and existing:
• Business Associate Agreements
• Data Processing Agreements
• Data Transfer Agreements
• Consulting agreements
• Vendor agreements
• Partner agreements
• Professional service agreements
• Statements of work
• Non-disclosure and confidentiality agreements
• Anticipating and proactively solving contractual and privacy-related challenges for the business related to new product offerings, country-specific requirements, and evolving regulatory controls to support the execution of an accelerated and aggressive global growth plan.
• Collaborating cross-functionally with internal stakeholders to manage various data protection, privacy, and security-related projects and initiatives, providing practical, actionable advice.
• Supporting the application of privacy by design principles by managing the data protection impact assessment/privacy impact assessment process for new and existing product features as well as the mapping of internal data processing activities.
• Ensure compliance with internal processes regarding data protection, privacy, and security requirements in our customer and vendor relationships
• Assist in ensuring compliance with external requirements, such as HIPAA, GDPR, LGPD, GLBA, NIST, ISO, and other legislation, regulation, and standards related to data protection and information risk issues, including a supporting role in the implementation of the company’s data protection compliance initiatives including training of relevant staff
• Prepare drafts of security and risk assessments, including root cause analysis
• Review procurement requirements, requests for proposals, and other tenders for data protection, privacy, and security issues
• Process, review, and help manage requests and inquiries from various departments and regions concerning data protection, privacy, and security
• Partner with finance, operations, human resources, sales, marketing and other departments
• Keep stakeholders informed about work progress and outcomes
• Assist in completing, filing, and sourcing ancillary documents for transactions, such as insurance certificates, data protection registrations, certificates of destruction, apostilles, corporate registrations, etc.
• Assist Global Trust coordinator with document management, filing and corporate record keeping
• Provide legal research and other due diligence
• Work with outside counsel and privacy & security consultants

Qualifications

• Software or other high-tech experience preferred, healthcare interest a plus
• Ability to vary communication and presentation style to effectively communicate locally and with non-native English speakers
• Ability to triage multiple demands, shifting priorities and rapid change
• Self-motivated with ability to work proactively and independently in active, fast-paced environment
• Comfort developing strong relationships through partnership in day-to-day interactions
• Ability to articulate the role of the legal function to educate senior and junior business partners accordingly
• Creativity to seek non-traditional solutions to effectively solve problems
• Understanding of how your work impacts the "big picture"
• Self-starter, with a proven ability to identify issues, resolve problems, and take ownership to drive projects to completion with limited supervision.
• Flexibility and willingness to work on a broad variety of contract and related matters.
• Exceptional attitude, strong work ethic and the ability to work well in a team environment
• Sense of humor and commitment to professionalism.
• Strong written and verbal communication skills.
• Detail-oriented with proven organizational skills and analytical ability; Ability to prioritize, problem solve, and work well under time pressure under limited to zero oversight
• Ability to thrive in a high-paced, changing work environment.
• Willingness to travel occasionally.
• Able to effectively present information to groups of managers, clients, and customers (both internally and externally).
• Attention to detail, accuracy, and good follow-through skills necessary.
• Ability to distill the most critical information from a situation and apply the appropriate lens for developing solutions
• Multiple language competencies are a plus

Education and Training

• J.D. and state bar admission (pending admission may be considered)
• At least 1 year of relevant experience in data protection, privacy, and/or security law and issues required
• Recent law school graduate with related summer and internship experience may be considered
• Certification from the International Association of Privacy Professionals highly preferred

We are an equal-opportunity employer and do not discriminate because of race, color, religion, sex, national origin, ancestry, marital status, veteran status, age, disability, sexual orientation or gender identity or expression or any other legally protected category. InterSystems is an E-Verify Employer in the United States.