Privacy Counsel

At HUB International, we are a team of entrepreneurs. We believe in empowering our clients, and we do so by protecting businesses and individuals in our local communities. We help businesses evaluate their risks and develop solutions tailored to their needs. We believe in empowering our employees. As a global firm, we offer employees resources in both technology and industry expertise, but we still maintain the local flavor of our offices. Our structure enables our teams to maintain their own unique, regional culture while leveraging support and resources from our corporate centers of excellence.

HUB is the 5th largest global insurance and employee benefits broker, providing a boundaryless array of property, casualty, risk management, life and health, employee benefits, investment and wealth management products and services. With over 17,000 employees in more than 550 offices throughout North America, HUB has grown substantially, in part due to our industry leading success in mergers and acquisitions.

About the Position

This is a unique opportunity for an attorney with data privacy and security experience to join a multi-billion-dollar, high growth, dynamic company with a similarly dynamic and growing legal department and to perform critical work to support HUBs continued expansion. The ideal candidate for this position will have excellent communication and technical skills, the ability to thrive in a team environment, and work independently with initiative and drive. The ideal candidate will have both law firm and in-house experience in the privacy and compliance space.

This is also an opportunity for a motivated, pragmatic lawyer to advise HUB on privacy, data, digital, and information security issues impacting insurance, investment, and adjacent industries. Knowledge of various data privacy and security laws, including US state laws, Canadian data privacy laws, GLBA, NYDFS cybersecurity regulation, HIPAA, and GDPR will be needed (but not necessarily required prior to joining HUB), coupled with a practical, business-focused approach and a collaborative and approachable demeanor.

Principal Duties

• In conjunction with the Chief Compliance Officer, develop and implement data privacy policies and compliance plan to better ensure compliance with applicable laws and regulations.
• Continuously update privacy policies, guidelines, and best practices for the enterprise in the U.S. and Canada.
• Team with Governance, Risk and Compliance teams to enforce privacy policies.
• Provide pragmatic legal analysis related to privacy, data protection, compliant responses to privacy requests and information security issues.
• Advise top leadership cybersecurity events and issues.
• Provide practical and forward-thinking legal advice and leadership on projects relating to privacy, data, digital, AI and information security.
• Draft, review, and negotiate data protection agreements and addenda (domestic and international).
• Coordinate with interdisciplinary teams to conduct privacy impact assessments.
• Counsel on potential emerging areas of risk and regulation related to privacy, security and data.
• Respond to privacy and security incidents and breaches, including providing guidance on notification and reporting requirements.
• Work with a cross-functional team to build new and enhance existing privacy and security training and awareness programs.
• Maintain current knowledge of relevant legal and regulatory changes in privacy and security law, anticipate possible impacts on HUB.
• Evaluating current and future marketing and outreach programs to ensure compliance with current privacy laws.
• Interface with data privacy and security regulators as needed.
• Collaborate with legal colleagues to identify legal issues with potential cross-functional impact.

The essential duties contained in this job description reflect general details as necessary to describe the principal functions of this job, the level of knowledge and skill typically required and the scope of responsibility. It should not be considered an all-inclusive listing of work requirements.

Requirements/Preferences

• Active membership in a state bar.
• Five years (minimum) of experience working as an attorney in private practice with a law firm or in a corporate in-house legal department required.
• Relevant certification such as CIPP/E, CIPP/US, CIPM, or CIPT preferred.
• Experience with privacy by design and privacy impact assessments strongly preferred.
• Experience with SOC (System and Organization Controls) audits and responses strongly preferred.
• Experience with application of ISO 27001, NIST and other industry standards in cybersecurity audits strongly preferred.
• Attention to detail and an ability to organize is a must.
• Excellent, clear, and concise verbal and written communication skills and drafting skills.
• Demonstrated experience with Microsoft Office products.
• Ability to work in a fast paced, rapidly growing, and ever-changing company.
• Ability to work both independently and collaboratively across varied organizational functions.
• Proactive and able to prioritize.

Employment Type:

Full-time.

Department: Legal.

Required Experience: 5+ years (minimum) of relevant experience.

Required Education: Juris Doctor.

Compensation: Competitive compensation and benefits package commensurate with experience that includes both cash and equity-based compensation and generous vacation.

Position Location: This position is preferably based out of our Chicago office (with hybrid/remote work flexibility), but permanent remote candidates will also be considered; light travel requirements. HUB office accommodations on a hybrid basis would also be an option in most major cities.

JOIN OUR TEAM

Do you believe in the power of innovation, collaboration, and transformation? Do you thrive in a supportive and client focused work environment? Are you looking for an opportunity to help build and drive change in a rapidly growing and evolving organization? When you join HUB, you will be part of a community of learners and doers focused on helping our leaders maximize the potential of their employees.

Disclosure required under applicable municipal regulations in NY and NJ, as well as the law in Colorado: The expected salary range for this position is $165K to $183K and will be impacted by factors such as the successful candidates skills, experience and working location, as well as the specific positions business line, scope and level. HUB International is proud to offer comprehensive benefit and total compensation packages which could include health/dental/vision/life/disability insurance, FSA, HSA and 401(k) accounts, paid-time-off benefits, and eligible bonuses, equity and commissions for some positions.

HUB International Limited is an equal opportunity and affirmative action employer that does not discriminate on the basis of race/ethnicity, national origin, religion, age, color, sex, sexual orientation, gender identity, disability or veteran's status, or any other characteristic protected by local, state or federal laws, rules or regulations. The EEO is the Law poster and its supplement is available here at http://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm .

EEOAA Policy

E-Verify Program

We endeavor to make this website accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the US Recruiting Team toll-free at (844) 300-9193 or [email protected]. This contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.