• J.D. and attorney licensed to practice in the US. Privacy certification (e.g., CIPP/E/US, CIPT)
• 7-10 years of data protection law and product development legal experience working at a law firm or as in-house counsel
• Strong technical background, especially with regard to cloud-based SaaS technologies, cybersecurity, artificial intelligence, machine learning, APIs, and general business operations
• Experience advising product and engineering teams from ideation to product launch, drafting customer-facing resources and completing privacy impact assessments
• Understanding of global privacy principles and standards with solid experience and knowledge of global privacy laws, and best practices, international data transfer mechanisms, and regulatory obligations
• Experience dealing with privacy supervisory authorities
• Significant breadth of knowledge in as many of the following areas as possible: data privacy and protection, mobile, cloud computing and cybersecurity, UX/UI design legal implications, IP, consumer protection with the ability and willingness to tackle other areas of privacy and cybersecurity law as needed
• Team player who welcomes responsibility and thrives in a fast-paced environment with demonstrated ability to be proactive, exercise independent judgment and strong work ethic
• Resourceful self-starter who enjoys wearing multiple hats and digging into challenging projects, big and small with the ability to effectively communicate legal and compliance issues verbally and in writing in a clear and understandable manner; strong interpersonal skills
• Ability to work varying hours to accommodate global workforce, as needed within an international operating privacy team that is remote (pre-COVID)
• You must love our business. CrowdStrike is a leader in cybersecurity. We don’t have a mission statement. We are on a mission to protect our customers from breaches. You must be genuinely committed to our mission and eager to learn the details of our business

Desirable

• This is a newly created cross-functional position on our global privacy team
• As a Senior Lead Product Privacy Counsel, you will work remotely, reporting into our Privacy & Public Policy team and partnering with CrowdStrike’s Legal team in order to advise and guide our Engineering, Data Science, Information Security, Threat Intelligence teams, and other stakeholders to implement privacy-by-design principles into development of CrowdStrike’s products and professional services
• Your responsibilities include engaging directly with technical staff to provide practical legal advice to ensure compliance with relevant privacy laws and regulation
• Moreover, you will serve as a subject matter expert, creating internal and customer-facing documentation, assisting with privacy and AI impact assessments and contributing to new legal terms
• Strong legal and technical knowledge, as well as excellent communication and collaboration skills, are essential for this role
• Provide practical legal advice on the engineering of CrowdStrike’s offerings to ensure privacy considerations are integrated into the design and development of products and professional services from the outset
• Help build an effective privacy product review function in order to improve CrowdStrike’s ability to identify and mitigate privacy risk throughout the product life cycle
• Collaborate with CrowdStrike’s Legal team on privacy to prepare, review, and negotiate complex agreements including inbound and outbound licensing and OEM agreements, software licensing, software-as-a-service, co-marketing, strategic alliances, professional and hosted services, services contracts, privacy notices, and customer-facing documentation on an as needed basis as part of a team
• Conduct AI, privacy, data protection and transfer impact assessments. Develop and conduct privacy training for internal technical, legal and compliance stakeholders
• Monitor legal and regulatory changes that impact CrowdStrike’s business and regularly update the data protection program based on emerging risks and best practices, implementing means to monitor compliance
• Serve as a knowledgeable internal data protection expert, with an expertise in GDPR, CCPA/CPRA, PIPEDA, EU AI Act, and other potentially applicable data protection and cybersecurity regulations
• Maintain detailed information repositories and help scale the Privacy team by developing innovative processes to support the fast-moving Engineering, Product/Design, Marketing and Sales teams
• Interact with customers to facilitate understanding of CrowdStrike’s data protection compliance
• Brief senior attorneys and business leaders on issues to provide sound guidance to decision makers
• Advise on legal aspects of UX/UI design and language considerations
• Conduct due diligence on, and participate in integration of acquired technologies and products including privacy due diligence reviews in M&A
• Manage outsourced legal vendors on projects as needed

• Expected Close Date of Job Posting is:08-03-2024