Type of Employee: Full-Time
Druva enables cyber, data and operational resilience for every organization with the Data Resiliency Cloud, the industry’s first and only at scale SaaS solution. Customers can radically simplify data protection, streamline data governance, and gain data visibility and insights as they accelerate cloud adoption. Druva pioneered a SaaS-based approach to eliminate complex infrastructure and related management costs, and deliver data resilience via a single platform spanning multiple geographies and clouds.
Druva is trusted by thousands of enterprises, including 60 of Fortune 500, to make data more resilient and accelerate their journey to the cloud. Visit druva.com and follow us on LinkedIn, Twitter and Facebook.
The Role & The Team:
You will be an integral part of Druva’s dynamic legal team, interacting with business leaders in our product, engineering, security, and sales teams. You will have broad expertise in global privacy regulations and compliance so that you can design, implement and manage a global privacy compliance program for Druva. You will have immediate impact on Druva’s business as you work day-to-day with cross-functional colleagues as we transform the data protection and management industry. You will report to the Chief Legal Officer.
What You Will Do:
- Design, implement and manage a global privacy compliance program, including monitoring regulatory requirements in the U.S. and EMEA
- Manage privacy program compliance, including data subject rights requests, data inventory, records retention, privacy by design
- Counsel and advise our sales team on data protection provisions in commercial contracts, including updating templates and negotiating data processing addendums and business associate agreements
- Support internal security teams on incident response, threat detection, containment, and mitigation
- Provide practical advice regarding how products and features are designed, how users sign up to use them, and how we collect and use customer data
- Partner with marketing, sales, go-to-market and procurement teams to assess potential privacy and security risks and regulatory requirements, including lead generation and marketing outreach activities
- Drive awareness on data privacy and security issues, including development of training, policies, and guidelines that help business stakeholders spot and address data security and privacy issues as they emerge
What We Are Looking For:
- 3-5 years of substantive legal experience in data security and privacy
- Familiarity with cloud and/or software, and a strong desire to work on legal issues in these areas
- Experience with information security standards, frameworks, risk assessments, and certification processes (e.g., SOC 2, ISO 27001, NIST, FedRAMP)
- Experience in working with product, data analytics, and engineering teams to advise on legal and regulatory aspects of product development and protection
- Experience in working with outside counsel on legal matters such as incident response and breach disclosures
- Ability to prioritize and manage time, and client expectations, in the face of competing demands
- Ability to exercise good judgment in raising issues and when collaborating with others
- Outstanding written and verbal communication skills, including concise contract redlining
- CIPP certification is strongly preferred
- J.D. and admitted to practice law in at least one state, or eligible for in-house counsel registration status
- Remote candidates will be considered, but preference for candidate to be based in our Santa Clara headquarters
Company Perks:
- New office space
- Tons of free parking
- Free weekday lunches with great options
- Variety of coffees & teas and coffee-making machines
- Multiple kitchens stocked with healthy snacks and a variety of beverages
- Game Room (game console, ping pong table, foosball table)
- Restaurants nearby
- Gym & Shower
The pay range for this position is expected to be between $168,000 and $224,000/year; however, base pay offered may vary depending on multiple individualized, non-discriminatory factors, including market location, job-related knowledge, skills, and experience. The total compensation package for this position may also include other incentive compensation opportunities in the form of discretionary annual bonus or commissions, and equity. Additionally, full-time employees are eligible to participate in our comprehensive benefits program, including health and wellness benefits, 401(k) retirement plan, life and disability insurance coverages, and other benefits the Company may offer from time to time.