Healthcare Data Privacy Associate Attorney

Company nameBCG Attorney SearchExperience3-8 yrs requiredPosted onFeb 01, 2024Valid ThroughMar 02, 2024ProfileA law firm is seeking a Healthcare Data Privacy Associate Attorney to join its leading global Data Privacy, Cybersecurity, and Digital Assets Practice Group. The candidate will play a crucial role in advising clients on digital healthcare privacy, data protection, cybersecurity, and compliance matters, with a focus on the healthcare industry.Work directly with partners worldwide in the global Data Privacy, Cybersecurity, and Digital Assets Practice Group.Lead or significantly contribute to projects, interfacing directly with clients on digital healthcare privacy, data privacy, and cybersecurity issues.Conduct compliance gap assessments and implement remediation plans.Draft policies and procedures, including privacy policies, privacy statements, incident response plans, and vendor contracting templates.Advise on contract and M&A negotiations in the healthcare industry.Assist clients in determining compliance risks, priorities, and implementing data protection compliance and information governance programs.Provide incident response support and defense in regulatory actions.Stay informed about industry developments and changes in privacy and security laws.Possess a working understanding of international, federal, state, and local privacy and security laws.Requirements:J.D. degree or equivalent.Admission to practice and in good standing in any U.S. state.4+ years of experience with meaningful knowledge of healthcare industry data privacy and security issues.Incident response experience is desirable.Healthcare industry experience is necessary.Digital healthcare and privacy experience are strongly preferred.Certifications:Certified Information Privacy Professional (CIPP) designation is strongly preferred.Specific certifications required: CIPP-US, CIPP-EU, and CIPM.Skills:Strong understanding of international, federal, state, and local privacy and security laws.Experience with FDA, FTC, and State AG guidance, best practices, and enforcement.Familiarity with GLBA, HIPAA, HITECH Act, CAN-SPAM, TCPA, COPPA, FCRA, FERPA, VPPA, Cable Act, Privacy Act, Cal-OPPA, Shine the Light, state breach notification and security laws, US-EU and US-Swiss Privacy Shield, and state consumer privacy laws (CCPA/CPRA/CDPA/CPA).Ability to draft privacy and security policies and procedures for compliance.

#J-18808-Ljbffr