Job Description

Group / Team

General Counsel & Risk

Working pattern

Full Time

The opportunity

The Opportunity:

Reporting To:

• Senior Manager, Data Privacy

Role / Primary Responsibilities:

• This is a new and exciting opportunity within the General Counsel & Risk team as part of our global Data Privacy team.

The individual will work closely with the UK and Australia-based teams in the following primary areas of responsibility, focusing on the UK, US and EMEA offices:

• Providing assurance to external stakeholders, including:
• Client information requests
• Client site audits
• Negotiating client and supplier agreements
• Supplier due diligence
• Supporting the delivery of the privacy management framework, in particular:
• Conducting risk assessments and data protection impact assessments
• Managing and maintaining privacy tools, documentation and registers
• Supporting internal audit activities
• Monitoring compliance with global privacy laws
• Assisting with framework certification activities
• Assisting with data subject rights requests, such as data subject access requests.
• Supporting the delivery and management of privacy education and awareness.
• Providing privacy advice to the business.
• Ensuring privacy is built into the firm\'s data handling operations.
• Assisting with day-to-day operational privacy issues and personal data incidents.
• Building lasting and valuable relationships with internal stakeholders, especially Risk, IT, HR and of course lawyers.
• Monitoring evolving privacy risks together with associated laws and regulation.

Please note this role is concerned with governance, risk and compliance elements of privacy; it is not a technical role albeit a strong appreciation of IT and information security concepts is undoubtedly required for this role to be successful.

Skills, experience and qualifications

Qualifications / Skills / Experience:

• Degree educated (technical degree or similar).
• We would expect the successful candidate to have around two to three years\' experience in privacy but may consider those with less experience providing they can demonstrate they meet the required competencies.
• Strong knowledge of global data protection requirements and legislation, especially those applicable to the UK and EMEA.
• CIPP/E certification or similar preferable.
• Professional Services experience preferable.
• Ability to identify and analyse complex privacy risks and controls.
• Adaptable, diligent and works with initiative.
• Strong relationship builder - internal and external.
• Experience working as part of a global team.

Group / Team description

Group/Team Description:

General counsel and risk is a multi-disciplinary legal and analytical team. It consists of an internal legal services team, risk and compliance lawyers, internal audit, information security, enterprise risk and new business intake. These disciplines work together globally to ensure that we fulfil all our governance, contractual regulatory and compliance obligations. The general counsel and risk team also advises on the firm\'s risk profile and risk-based decisions.

The team also supports the executive and governance boards, manages the firm\'s insurance matters and has responsibility for implementing the firm\'s client and matter selection strategy.

It advises our partners and lawyers to ensure that Herbert Smith Freehills remains a highly trusted advisor in a constantly changing world, and works with our Business Services professionals in managing risk on behalf of the firm and enabling high quality strategic and risk-based decisions to be made.

Role type

Business Services

Contract type

Permanent

-

Herbert Smith Freehills

Herbert Smith Freehills