Data Privacy Jobs in Colorado (NOW HIRING)

The Assistant General Counsel, Compliance & Data Privacy is responsible for leading key enterprise compliance programs and advising the business on complex regulatory, investigation, and Incident response matters in a highly regulated, global environment.  The position serves as the primary legal advisor to the Compliance function and partners closely with business leaders to ensure compliance risks are identified, mitigated, and managed in alignment with applicable laws, regulations, and internal policies.

This position is both strategic and execution-focused and reports to the Vice President and Deputy General Counsel located in the UK. This role includes the management and supervision of an attorney supporting legal compliance matters who is based in Providence, Rhode Island.

• Own and lead legal compliance programs including anticorruption, data privacy, antitrust, anti-money laundering, internal investigations, government relations, and industry relevant regulations. Key activities include risk assessments, training, investigations, remediation, continuous improvement and the development and maintenance of relevant policies and procedures.
• Serve as the central point of coordination for compliance-related legal advice across the organization.
• Advise business leaders and the Compliance team, on applicable laws, regulations, and regulatory expectations impacting the business.
• Translate legal requirements into practical guidance to support compliance program design and execution.
• Own the enterprise data privacy program and is accountable for its overall effectiveness, regulatory compliance, and maturity.
• Provide legal leadership and direction for the global data privacy framework, including interpretation of applicable laws and regulatory expectation.
• Maintain accountability for data privacy outcomes and co-ordination of day-to-day privacy operations which are managed within the Compliance Department.
• Serve as legal lead for cybersecurity incident response, conduct regulatory analysis and support for notification decisions.
• Support engagement with data protection authorities, regulators, and internal stakeholders on privacy-related matters.
• Monitor changes in laws and regulations impacting compliance and data privacy.
• Assess legal and compliance risks and proactively advise on mitigation strategies.
• Support AI governance, risk assessments and related procedures to ensure the responsible use of AI.
• Build strong relationships with internal stakeholders including Cybersecurity, Compliance Operations, Internal Audit, Product and Technology teams, Government Relations, and Executive Leadership.
• Support internal investigations, audits, and regulatory inquiries related to compliance matters.
• Manage and coordinate external legal counsel on specialized compliance and data privacy matters.
• Support interactions with regulators and external stakeholders as required.
• Strong knowledge of compliance frameworks, regulatory environments, and data protection laws.
• Ability to apply legal expertise in a commercial, pragmatic manner aligned with business objectives.
• Successfully manage complex legal and regulatory issues with potential for significant business and reputational impact.
• Exercises independent judgment while balancing legal risk, business needs, and ethical considerations.
• Organization-wide impact across multiple functions and geographies.
• Influences compliance posture, risk exposure, and regulatory credibility of the company.
• Trusted advisor with strong influencing and stakeholder management skills.
• Ability to communicate complex legal concepts clearly to non-legal audiences.
• Ability to collaborate with multiple stakeholders across different geographies and matrix organizations.

Minimum experience:

• 10+ years of related professional legal experience

Education and Experience:

• Law degree (LLB / JD or equivalent) from an accredited university
• Experience with:
• White-collar crime / corporate compliance (strongly preferred)
• Data Privacy / Technology Law, including knowledge of EU GDPR (strongly preferred)
• Privacy operations exposure (e.g. DPAs and breach response) (strongly preferred)
• Managing and/or supervising other legal professionals (strongly preferred)

Bar Admission

• Active U.S. bar membership in good standing in at least one state.

 Leading Complexity
Leading People
Leading the Business
Leading Self

#LI-KM1 #LI-REMOTE