Product and Privacy Counsel

At Vanta, our mission is to secure the internet and protect consumer data. We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it. 

As Product and Privacy Counsel at Vanta, you will own Vanta legal’s relationship with the product and work closely with cross-functional teams to provide timely, thorough and strategic legal advice on data and privacy matters. 

In this role, you’ll support the broader product and business teams by counseling on product-related matters across the Company’s spectrum of enterprise product offerings and you’ll identify and protect Vanta’s IP. Reporting to our Head of Legal, you’ll also be Vanta’s dedicated privacy specialist to raise the bar for our privacy program as you counsel Vanta’s business and internal legal teams regarding various areas of privacy and data security law. You will work with a wide variety of business partners to provide timely, thorough and strategic legal advice on data and privacy matters.

What you’ll do as a Product and Privacy Counsel at Vanta:

• Proactively identify, analyze, and mitigate legal and regulatory risks at every stage of the product life cycle

• Provide daily legal and operational guidance to business and engineering stakeholders as issues arise

• Advise all internal clients on the development, collection, use, transfer and governance of data

• Assist Vanta’s ESP team with compliance efforts as needed as privacy laws continue to evolve

• Develop a deep understanding of Vanta’s product and data flows; conduct new product/ feature reviews and assist with technology integrations involving data

• Maintain partnerships with internal stakeholders, including Product, Marketing, People, Security, and Engineering, to educate and identify potential privacy or other regulatory concerns

• Assist with incident response and any regulatory inquiries or investigations

• Draft or enhance data governance policies, including guidelines on data retention, access, privacy-by-design reviews, data protection impact assessments, data transfers and vendor management

• Manage, draft and update privacy notices and work with customer-facing teams to respond to customer questions regarding Vanta’s privacy program

• Develop deep expertise with relevant US and international laws and regulations that enable you to effectively counsel our product teams

How to be successful in this role:

• 3+ years of experience and JD degree from an accredited school

• Experience in the areas of data privacy and protection, negotiating data privacy related agreements, understanding of the interplay between technology and data privacy 

• Top law firm and/or prior in-house experience strongly preferred

• CIPP/US, CIPP/E or CIPM privacy certifications are a significant plus

• Ability to independently drive accountability and influence outcomes

• Assertion when required; you’re able to challenge and be challenged in a constructive and respectful way

• Strong problem solving skills; you’re able to quickly digest a problem and evaluate solutions and then empower others to deliver

• Detail oriented, with the ability to produce work product that demonstrates subject matter expertise

• Demonstrated ability to handle a broad range of responsibilities and prioritize in a fast-paced environment

• Ability to balance legal risk mitigation against key business objectives and risks

What you can expect as a Vantan:

• Industry-competitive compensation

• 100% covered medical, dental, and vision benefits with dependents coverage

• 16 weeks fully-paid parental Leave for all new parents

• Health & wellness and remote workplace stipends

• 401(k) matching

• Flexible work hours and location

• Open PTO policy

• 9 paid holidays in the US

• Offices in SF, NYC, Dublin, and Sydney

To provide greater transparency to candidates, we share base pay ranges for all US-based job postings regardless of state. We set standard base pay ranges for all roles based on function, level, and country location, benchmarked against similar-stage growth companies. Final offer amounts are determined by multiple factors, including candidate location, skills, depth of work experience, and relevant licenses/credentials, and may vary from the amounts listed below. The salary or OTE range for this position is $173,000 - $204,000. This role may also be eligible for commissions/bonus, equity, medical benefits, 401(k) plan, and other company perk programs.

At Vanta, we are committed to hiring diverse talent of different backgrounds and as such, it is important to us to provide an inclusive work environment for all. We do not discriminate on the basis of race, gender identity, age, religion, sexual orientation, veteran or disability status, or any other protected class. As an equal opportunity employer, we encourage and welcome people of all backgrounds to apply.

About Vanta

We started in 2018, in the wake of several high-profile data breaches. Online security was only becoming more important, but we knew firsthand how hard it could be for fast-growing companies to invest the time and manpower it takes to build a solid security foundation. Vanta was inspired by a vision to restore trust in internet businesses by enabling companies to improve and prove their security.From our early days automating security monitoring for compliance standards like SOC 2, HIPAA and ISO 27001 to creating the world's leading Trust Management Platform, our vision remains unchanged. 

Now more than ever, making security continuous—not just a point-in-time check— is essential. Thousands of companies rely on Vanta to build, maintain and demonstrate their trust— all in a way that's real-time and transparent.

#LI-remote