Senior Privacy & Security Commercial Counsel
New
G
GC AILegal AI SaaS
Remote - United StatesFull-TimeSenior
Salary170,000 - 225,000 USD per year
Apply NowOpens the employer's application page
Job Details
- Experience
- 5-10 years of privacy and security legal experience
- Required Skills
- SaaS
Requirements
- JD and active bar membership in at least one US jurisdiction.
- 5-10 years of privacy and security legal experience, including meaningful in-house time at a technology or SaaS company.
- Deep working knowledge of GDPR, CCPA/CPRA, and international data protection regulatory landscapes.
- Experience supporting sales processes at a B2B SaaS company, including security reviews and procurement questionnaires.
- Experience negotiating DPAs and data protection terms, including GDPR Article 28, SCCs, and transfer mechanisms.
- Demonstrated ability to work independently, prioritize demands, and deliver under pressure.
- Comfort working at a startup pace with ambiguity, shifting priorities, and limited precedent.
Responsibilities
- Own the legal framework for SOC 2, ISO 27001, and ISO 42001 compliance programs.
- Advise product and engineering on privacy-by-design, data protection impact assessments, and AI governance.
- Manage regulatory compliance for GDPR, CCPA/CPRA, EU AI Act, and emerging US state privacy laws.
- Serve as the escalation point for complex DPA and security addendum negotiations.
- Handle DPA and security addendum redlines for strategic and high-value customer deals.
- Maintain standard DPA, security addendum, and Information Security Addendum templates.
- Support enterprise sales by participating in security calls and responding to privacy inquiries.
- Manage relationships with external auditors, penetration testing firms, and privacy tooling providers.
- Advise on incident response, breach notification, and customer communications.
- Review Trust Center content, security marketing claims, and subprocessor disclosures.
View Full Description & ApplyYou'll be redirected to the employer's site