General Counsel

Our employees are our most valuable resource, pivotal to our success. OITS is dedicated to fostering a work environment that values work-life balance. With the states generous paid time off, including holidays, this ensures our employees have the time they need to rejuvenate. We actively support our team's professional growth through tuition and certification reimbursement, empowering them to pursue their career aspirations. With ample opportunities for continued learning, we prioritize career and leadership development and mentorship. OITS is a great place to work, come join our team!

Verification of identity and employment eligibility to work in the United States is required by federal law. For a list of acceptable documents that establish these criteria, please refer to the federal form I9.

OITS does not provide sponsorships for this position.

E-Verify: The Office of Information Technology Services (OITS) participates in E-Verify and will provide the federal government with your information to confirm that you are authorized to work in the U.S. For additional information regarding E-Verify, please click. For additional information regarding Immigrant and Employee Rights (IER) please click .

About the Position:

• Who can apply: Anyone
• Classified/Unclassified Service: Unclassified
• Full/Part-time: Full-time
• Regular/Temporary: Regular
• Eligible to Receive Benefits: Yes
• Veterans Preference Eligible: Yes
• This position is eligible for OITS's hybrid work program. The candidate must work in the office three days a week. The supervisor and business needs will determine the hybrid schedule.

Compensation:

• Annual Salary/Hourly Rate: $120,000 - $130,000 / annual

Note: Salary can vary depending upon education, experience, or qualifications

Position Summary:

The State Chief Privacy Officer and General Counsel (CPO) is responsible for establishing and maintaining an enterprise-wide information privacy management program to ensure that Kansas information assets are adequately protected. The CPO is responsible for identifying, evaluating and reporting on information privacy risks in a manner that meets compliance and regulatory requirements. The CPO position requires a visionary leader with sound knowledge of business management and a working knowledge of information privacy practices. The CPO will proactively work with state business units to implement practices that meet defined policies and standards for information privacy. The CPO will also serve as the primary legal counsel for OITS. General Counsel will regularly review contracts, review policies and regulations, as well as serve as the legal advisor to agency leadership.

Essential Job Functions:

• Maintain, develop, and implement the State s information privacy program and facilitate the development of agency level privacy programs
• Assure that the use of technologies sustains, and do not erode, privacy protections relating to the use, collection, and disclosure of personal information.
• Provide direction and oversight in the development and maintenance of State information privacy policies, standards, and guidelines.
• Work directly with State agencies to facilitate privacy impact assessments and work with stakeholders throughout the enterprise on identifying privacy risk.
• Work with procurement to ensure that third-party suppliers' contracts and operating-level agreements meet privacy and cybersecurity requirements.
• Support the creation of an inventory that documents how and why the State collects, shares and uses personal data.
• Conduct or oversee privacy awareness campaigns, training and orientation for all employees.
• Provide regular reporting on the current status of the information privacy programs to senior business leaders and agency executives as part of a strategic enterprise risk management program.
• Provide strategic privacy guidance for IT projects, including the evaluation and recommendation of technical controls.
• Ensure that privacy programs are in compliance with relevant laws, regulations and policies to minimize or eliminate risk and audit findings.
• Serve as the internal advisor to the CITO and CISO to interpret privacy-policy-related questions.
• Serve as legal counsel to the agency
• Perform legal review of contracts, MOU/MOA, and statements of work
• Participate in contract negotiations
• Provide cyber incident response legal counsel
• Provide legal review of agency policies and regulations
• Perform related duties and fulfill responsibilities as required

Required Qualifications:

• An advanced degree in law (J.D.)
• Registered to practice law in the State of Kansas
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
• Must be a critical thinker, with strong problem-solving skills
• Exhibit excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives.
• Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals.

Preferred Qualifications:

• 5 to 10 years of experience in privacy, data protection, security, risk management, auditing and/or compliance, OR
• 5 to 10 years of legal experience in government, law firms or multinational corporations preferred, with at least the past 3 to 5 years focused on privacy
• Experience with information technology and cybersecurity related law to include advising clients during cybersecurity incidents
• Professional privacy certification, such as a Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Information Privacy Technologist (CIPT) or other similar credentials
• CISSP or similar cybersecurity certification

Necessary Special Requirements: Ability to obtain and retain an OITS Security and KCJIS clearances are requirement of employment and continued employment.

Disclaimer: Due to security requirements related to system access, the following will result in disqualification for this position: Felony Convictions, Felony Deferred Adjudication, Class A Misdemeanor Deferred Adjudication, Class B Misdemeanor Convictions less than 10 years, an Open Arrest for Any Criminal Offense (Felony or Misdemeanor).