Corporate Attorney

About NetApp

We are forward-thinking technology people with heart. We make our own rules, drive our own opportunities, and try to approach every challenge with fresh eyes. Of course, we can’t do it alone. We know when to ask for help, collaborate with others, and partner with smart people. We embrace diversity and openness because it’s in our DNA. We push limits and reward great ideas. What is your great idea?

At NetApp Legal, we believe our team should be a role model for the company’s values and culture, and can create competitive advantage for NetApp through partnership, service, and integrity.  We also believe in having fun while we are at it.

“At NetApp, we fully embrace and advance a diverse, inclusive global workforce with a culture of belonging that leverages the backgrounds and perspectives of all employees, customers, partners, and communities to foster a higher performing organization.” -George Kurian, CEO

Job summary

As Privacy Counsel for NetApp, you will be an integral part of NetApp’s global Data Privacy and Governance team.  You will act as subject matter expert in data protection, privacy, and data governance laws and assist in building and maintaining a data privacy and governance compliance program that builds trust with our customers and stakeholders. You will advise on data privacy compliance as it relates to NetApp’s products and services and actively engage with our global privacy champions program to direct and manage privacy operations in compliance with applicable laws.  You will be responsible for assessing privacy operations to determine regulatory risk and educating and advising our employees on privacy, cybersecurity, and data governance legal compliance. Our legal department is change and innovation-oriented and seeks to hire topnotch leaders around the world with deeply aligned values and a desire to win!

Job Requirements

• Act as subject matter expert in data protection, privacy, and data governance laws for broader legal team who advise product and services teams on legal compliance for the company’s products and services.
• Advise the business on legal compliance with privacy, data protection, and data governance legal requirements.
• Advise on and maintain documentation of data protection impact assessments, privacy assessments, transfer impact assessments, cross border data flows, data subject requests, and privacy incidents across a global organization.
• Perform privacy assessments of new and existing products and services, tools and processes using risk-based prioritization and automation tools.
• Support M&A activities related to privacy, cybersecurity, and data governance obligations.
• Advise on data protection terms in both revenue and procurement related contracts.
• Review privacy- and cybersecurity law-related blogs and sales materials.
• Develop and deliver privacy training across the organization.
• Develop content addressing legal and regulatory requirements of interest to our customers, partners, and stakeholders for Trust Center publication (SIG, CAIQ-lite, HIPAA, FinServ, etc).
• Develop and maintain policies, processes, playbooks, trainings, and reference materials relating to privacy requirements to support sales and sales operations.
• Support our global privacy champions program.
• Act as DPO for Germany and other EEA countries, as may be required.
• Remain up to date on global data privacy regulations related to the organization and update the business accordingly.

Education and skills:

• Law degree and 5-7 years post-qualifying experience in a combination of private practice and in-house counseling.
• Qualified to practice law in the U.S. or EEA and in good standing with the relevant qualifying authority.
• Expertise in global privacy laws, including frameworks and standards relied on by regulatory bodies.
• Expertise in global cybersecurity, data protection, and data governance laws.
• Experience in applying global privacy law to digital services.
• Keen business sense and ability to distill legal theory to pragmatic and risk-based action items.
• Highly analytical with strong attention to detail.
• Ability to communicate with intention both speaking and in writing.
• Ability to thrive in a high performance, fast-paced environment and to multitask, prioritize effectively and meet deadlines.
• Team-oriented, with a good sense of humor and high level of integrity, responsibility and professionalism, and the ability to build relationships and collaborate across functions.
• Commitment to diversity, inclusion, and belonging.

Education

• Familiarity with industry standards relating to information systems management and security controls, such as NIST Risk Management Framework, ISO 27001, NIST 800-53, and SOC 2.
• Experience in-house with an IT or technology company covering multiple jurisdictions, including at least the US and EEA.
• Knowledge and experience with enterprise cloud privacy risks.
• Understanding of legal risks in supply chains for software and cloud services.
• Familiarity with OneTrust platform.

NetApp has a flexible hybrid working model supporting working from home, the office or a combination of the two.

Did you know…

Statistics show women apply to jobs only when they’re 100% qualified. But no one is 100% qualified. We encourage you to shift the trend and apply anyway! We look forward to hearing from you.