Position: Agency Attorney (Privacy Counsel)
Location: Brooklyn, NY - Hybrid Project – (3days onsite and 2days remote)
Duration: 6 months
Client: Office of Information Privacy - Job# 7-858-0786A
35 hour work week
SCOPE OF SERVICES:
• Legal Advice & Counsel:
o Provide expert legal advice on complex, sensitive, and urgent privacy, data protection, and cybersecurity matters related to OIP and Administration priority initiatives.
o Advise on federal, state, and local privacy laws and regulations impacting City agencies and citywide initiatives.
o Prepare privacy impact assessments and advise on privacy implications of proposed technologies and data use initiatives.
• Policy & Legislation:
o Shape, draft, and review privacy-related policies, legislation, and citywide guidance.
o Monitor and provide legal analysis concerning legislative and regulatory developments in privacy, data security, and cybersecurity, briefing relevant stakeholders.
• Contracts & Agreements:
o Drive, review, and negotiate various legal documents and agreements, including Memoranda of Understanding (MOUs), non-disclosure agreements (NDAs), data sharing agreements, terms of service, multi-agency data integration agreements, and business use cases.
• Compliance & Training:
o Draft policies, guidance materials, templates, presentations, and training documents to support agency compliance with privacy laws and regulations.
o Develop and conduct privacy-related training programs for City agency personnel.
• Stakeholder Engagement & Representation:
o Represent OIP and the Chief Privacy Officer in national and international privacy organizations, leading collaborations, and at senior-level meetings or interagency/internal working groups as needed.
o Manage relationships and drive intergovernmental affairs with the Mayor’s Office, City Council, and other key government stakeholders regarding privacy matters.
o Engage with the public on privacy matters, including potentially speaking on panels, contributing to publications, and working with media (as directed by OIP leadership).
• Strategic Support:
o Prepare legal briefs and provide strategic support and advice to government officials and city leadership on privacy matters.
o Handle special projects and initiatives, as assigned by OIP leadership.
MANDATORY SKILLS/EXPERIENCE
Note: Candidates who do not have mandatory skills will not be considered.
1. At least 12 (twelve) years of legal experience, including experience in NYC government and intergovernmental affairs or implementing and supporting an enterprise privacy program.
2. Bar Admission:
o Admission to the New York State Bar and in good standing.
3. Demonstrated Experience in Key Privacy Legal Tasks: Verifiable experience within the specialized privacy law experience must include substantial, hands-on proficiency in:
o Providing legal advice on a range of complex U.S. privacy and data security laws and regulations (e.g., NYC Identifying Information Law, GDPR implications for US entities, CCPA/CPRA, HIPAA, state breach notification laws, and other relevant federal, state, and local statutes).
o Drafting, reviewing, and negotiating a variety of privacy-related legal documents and commercial agreements (e.g., MOUs, NDAs, data sharing/processing agreements, terms of service, master service agreements with privacy implications).
o Developing and drafting organizational privacy policies, internal/external legal guidance, compliance materials, and templates.
o Conducting or providing significant legal support for privacy impact assessments, data protection impact assessments, or similar privacy risk analyses.
o Advising on the privacy and data security implications of new or emerging technologies, digital services, or data use initiatives.
o Supporting the implementation or operation of components of an enterprise-level or significant organizational privacy program.
o Monitoring, analyzing, and advising on privacy-related legislative and regulatory developments and their impact.
4. Communication, Advisory & Collaboration Skills:
o Demonstrated experience in providing strategic legal counsel and clear advice on complex privacy matters to senior leadership, government officials, or equivalent executive-level stakeholders.
o Proven ability to communicate complex legal and policy concepts clearly, concisely, and effectively (both written and verbal) to diverse audiences, including non-legal and technical stakeholders.
o Verifiable experience collaborating effectively within interdisciplinary teams (e.g., with IT, policy, operations, other legal counsel) to develop and implement privacy solutions.
5. Possession of at least one active IAPP (International Association of Privacy Professionals) certification (e.g., CIPP/US, CIPP/E, CIPM, CIPT, AIGP).
Never miss an opportunity! Create an alert based on the job you applied for.
