Healthcare Data Privacy Associate Attorney

A law firm is seeking a Healthcare Data Privacy Associate Attorney to join its leading global Data Privacy, Cybersecurity, and Digital Assets Practice Group in Houston. The candidate will play a crucial role in advising clients on digital healthcare privacy, data protection, cybersecurity, and global compliance strategies. The position requires collaboration with partners worldwide and direct client interaction, leading or taking significant responsibility for various projects.

Job Details:

• Advise clients on digital healthcare privacy, data privacy, cybersecurity, and digital assets counseling and transactions.
• Develop and implement global compliance strategies for privacy, data protection, international data transfers, and cybersecurity.
• Lead or significantly contribute to projects within the Data Privacy, Cybersecurity, and Digital Assets Practice Group.
• Conduct compliance gap assessments and implement remediation plans.
• Draft policies and procedures, including privacy policies, privacy statements, incident response plans, and vendor contracting templates.
• Provide guidance on contract and M&A negotiations.
• Assist clients in determining compliance risks and priorities, implementing data protection compliance, and developing information governance programs.

Requirements:

• J.D. degree or equivalent.
• Admission to practice and in good standing in any U.S. state.
• 4+ years of relevant experience.
• Familiarity with healthcare industry data privacy and security issues, including info blocking.
• Working understanding of international, federal, state, and local privacy and security laws.
• Essential: Healthcare industry experience.
• Desirable: Incident response experience.
• Preferred: Digital healthcare and privacy experience.

Certifications:

• Certified Information Privacy Professionals are strongly preferred.
• Desired certifications: CIPP-US, CIPP-EU, and CIPM.

Skills:

• Experience with FDA, FTC, and State AG guidance, best practices, and enforcement.
• Knowledge of GLBA, HIPAA, HITECH Act, CAN-SPAM, TCPA, COPPA, FCRA, FERPA, VPPA, Cable Act, Privacy Act, Cal-OPPA, Shine the Light, state breach notification, and security laws.
• Understanding of US-EU and US-Swiss Privacy Shield and state consumer privacy laws (CCPA/CPRA/CDPA/CPA).
• Familiarity with technologies supporting privacy and security compliance.

The Houston office of this very large firm practices in the areas of commercial litigation as well as environmental and energy law and intellectual property. The firm has offices around the world and has an impressive client list that includes many large national and international corporations. Associates receive significant formal and informal training as well as meaningful feedback on their work. The firm tries to give all attorneys interesting assignments in practice areas of their choice. A strong commitment to pro bono work is also present, and the firm handles a large number of pro bono matters for individuals and organizations.