Associate General Counsel Regulatory Legal

Job Summary:The Associate General Counsel, Regulatory Legal (the "AGC") leads the Regulatory Legal vertical within the Legal Affairs Team. This vertical manages healthcare and privacy regulatory legal issues and intellectual property for Surescripts. The AGC provides front-line regulatory legal counsel for current products and evolving product ideas. The AGC counsels cross-functional leaders on complex regulatory and privacy legal issues that may affect multiple business lines, drawing on and involving subject matter experts from other parts of the department or Company as appropriate and engages in the development and management of risk mitigation strategies. The AGC is expected to work with and manage outside counsel and direct or participate in business meetings regarding legal issues, as needed.Responsibilities:Oversee, train, hire, develop, and coach a team of attorneys, contracts specialists, or other legal professionals to drive outcomes and behaviors consistent with the Department's purpose and service delivery model.Assign responsibilities to team, delegate, and manage team to ensure appropriate coverage and back-up support to meet enterprise needs.Serve as a senior leader on the Legal Affairs Team to develop, implement, and execute strategic vision, to include overseeing team meetings, brainstorming sessions, trainings, and team building activities.Lead a vertical that ensures that the Company is in compliance with new or updated federal and state laws and regulations, privacy and data protection laws, including the Health Insurance Portability and Accountability Act, the California Privacy Rights Act, state breach notification laws, healthcare, data sharing technologies, and intellectual property and license agreements in its internal business practices as well as customer and vendor contracts.Manages complex projects as assigned regarding data usage rights associated with the handling of deidentified data and personal and sensitive health information, including PHI, data provenance development and architecture, risk assessment and analysis, risk mitigation, and drafting and negotiating provisions of agreements related to privacy and data protection.Stay up to date with, and report on, new and changing regulations and laws in the regulatory and privacy areas applicable to the Company and its business.Support the Senior Regulatory Counsel in the review and preparation of comments on behalf of the Company regarding proposed rules or regulations in coordination with the Government and Regulatory Affairs Team.Support the Senior Privacy & Data Protection Counsel in providing legal support for the Company's privacy and data protection initiatives.Review marketing materials for Surescripts products and business opportunities.Partner with subject matter experts in the Department on areas such as antitrust, litigation, and network access and ensure that the team acts accordingly.Partner cross-functionally and proactively to continuously improve upon existing processes and procedures to make regulatory and privacy legal support more efficient and achieve greater speed to value.Evaluate and advise senior management, the VP, Legal Affairs & Deputy General Counsel and the Chief Legal Officer on regulatory and privacy legal issues relating to Company products/services in conceptual or development phases to include data usage rights, as well as on appropriate legal courses of action to meet strategic Company goals for product deployment, revenue, and strategic initiatives.Qualifications:Juris Doctor Degree from an ABA-accredited law school and good standing member of at least one state bar.10+ years of experience as a practicing product counseling attorney or regulatory attorney at a law firm, or in-house, technology or healthcare related entity.7+ years of experience in healthcare technology regulatory counseling and directly advising businesses in healthcare regulatory matters (i.e., Fraud, Waste, and Abuse, healthcare information technology, Information Blocking Rule, interoperability, etc.).5+ years of experience working with product strategists, owners, developers, and architects, advising on privacy and data protection issues throughout the development lifecycle.5+ years of subject matter experience in privacy and data protection to include experience advising HIPAA regulated entities on legal risks associated with personal and sensitive health privacy and data protection issues information, including PHI.Preferred Qualifications:Proactive, practical, solution-oriented approach.Strong cross-functional partnering skills.3 + years of drafting and negotiating contracts related to data rights or data license agreements and other intellectual property.3+ years of people management experience or experience in roles showing progressive leadership.Experience advising internal business teams on data governance or provenance.Familiarity with intellectual property issues relating to software, databases, data rights, and related licensing matters.Professional certification in privacy, data governance, and/or risk assessment.Familiarity with published privacy and data protection standards, such as NIST, ISO, and/or HITRUST

#J-18808-Ljbffr