Healthcare Data Privacy Associate Attorney

A law firm is seeking a highly skilled Healthcare Data Privacy Associate Attorney to join its global Data Privacy, Cybersecurity, and Digital Assets Practice Group in Atlanta. The candidate will play a crucial role in advising clients on digital healthcare privacy, data protection, and cybersecurity matters, ensuring compliance with global regulations, and leading or contributing significantly to various projects.

Duties:

• Assist and advise clients on digital healthcare privacy, data privacy, cybersecurity, and digital assets counseling and transactions.
• Lead or assume significant responsibility for projects, working directly with partners worldwide in the global Data Privacy, Cybersecurity, and Digital Assets Practice Group.
• Carry out compliance gap assessments and implement remediation plans.
• Draft policies and procedures, including privacy policies, privacy statements, incident response plans, vendor contracting templates, and Data Processing Agreements (DPAs).
• Advise on contract and M&A negotiations.
• Assist clients in determining compliance risks and priorities, implementing data protection compliance, and developing information governance programs.
• Provide incident response and defense against regulatory actions.

Requirements:

• J.D. degree or equivalent.
• Admission to practice and in good standing.
• 4+ years of experience with meaningful knowledge of healthcare industry data privacy and security issues.
• Incident response experience is desirable.
• Healthcare industry experience is necessary.
• Working understanding of international, federal, state, and local privacy and security laws and technologies.

Certifications:

• Certified Information Privacy Professionals (CIPP) strongly preferred.
• Specific certifications, including CIPP-US, CIPP-EU, and CIPM are preferred.

Skills:

• Strong background in digital healthcare and privacy.
• Familiarity with FDA, FTC, State AG guidance, GLBA, HIPAA, HITECH Act, CAN-SPAM, TCPA, COPPA, FCRA, FERPA, VPPA, Cable Act, Privacy Act, Cal-OPPA, Shine the Light, state breach notification and security laws, US-EU, and US-Swiss Privacy Shield, as well as state consumer privacy laws (CCPA/CPRA/CDPA/CPA).
• Excellent communication and negotiation skills.
• Ability to work collaboratively with partners and clients.
• Detail-oriented with a focus on compliance.