Cybersecurity & Data Privacy Associate

REQUIREMENTS
The ideal candidate should have experience with international, federal, state, and local privacy laws; industry standards such as the DAA Principles; privacy and security frameworks including the GDPR, the FTC's privacy and data security law, guidance, and enforcement; the CCPA (and the CPRA and regulations), the Colorado Privacy Act (and regulations), and the other privacy laws that are in effect now or that have been enacted but will take effect later this year and beyond; transactional privacy and data security, including due diligence and agreements; data breach response, including experience with the various data breach notice regimes; and key data security frameworks, including PCI-DSS, ISO, NIST, and the Center for Internet Security. To that end, the firm is seeking a candidate with experience preparing and reviewing privacy policies, as well as reviewing and revising data protection impact assessments, data transfer impact assessments, data p...