Job Closed
This listing is no longer active.
CrowdStrike has redefined security with the world’s most advanced cloud-native platform that protects and enables the people, processes and technologies that drive modern enterprise. Tested and proven, the world's largest organizations trust CrowdStrike to stop breaches with unparalleled protection against the most sophisticated cyberattacks. The CrowdStrike culture has been built upon our Core Values since the day we began. We are Fanatical About the Customer, Relentlessly Focused on Innovation and believe that our Limitless Passion drives Unlimited Potential for every CrowdStriker. As a purpose-built remote-first company, we believe cultivating a connected culture for every employee, no matter where they are in the world, is a key ingredient in building a high-performing, diverse team. We don’t have a mission statement. We’re on a mission—to stop breaches. Ready to join a mission that matters?
Assistant General Counsel, Privacy Transformation, Trust & Operations
Location
United States
Posted
39 days ago
Salary
$210K - $300K / year
Seniority
Senior
Job Description
Assistant General Counsel, Privacy Transformation, Trust & Operations
CrowdStrike
• Lead the strategy for AI transformation across the privacy function, including AI-enabled workflows, automation, knowledge management, legal review controls, and responsible use of approved AI tools • Create legally reviewed guardrails for AI-assisted privacy work, including regulatory monitoring, customer-facing content generation, DSAR triage support, DPIA routing, contract comparison, incident summaries, and privacy knowledge management • Ensure AI-enabled privacy workflows preserve human ownership, legal judgment, privilege protection, source traceability, auditability, data classification rules, and appropriate escalation • Partner with Product Legal, Security, GRC, IT, Legal Operations, and other stakeholders to identify privacy workflows, including vendor reviews, that can be safely automated, delegated, or enhanced through AI • Own the privacy function’s Data Subject Rights operating model, including DSAR governance, workflow design, service levels, templates, quality controls, escalation thresholds, reporting, and continuous improvement • Directly manage the Privacy Operations Specialist, who will remain responsible for day-to-day DSAR execution, operational coordination, tooling, reporting, and alternative legal provider workflow management • Own the strategic relationship with Factor Law and other legal service delivery partners, including scope definition, expansion opportunities, escalation criteria, quality review, performance metrics, and regular business reviews • Partner with the Privacy Operations Specialist, alternative legal provider, IT, and Legal Operations to improve DSAR tooling, automation, intake routing, deadline tracking, case documentation, metrics, and reporting • Develop DSAR playbooks, templates, decision trees, and escalation matrices that enable standard matters to be handled efficiently while preserving attorney control over higher-risk issues • Own the legal strategy for customer-facing privacy trust materials, including white papers, FAQs, trust center content, data processing explainers, AI/privacy narratives, privacy notices, certification summaries, and external privacy claims • Translate CrowdStrike’s privacy posture into clear, accurate, business-friendly materials that support Sales, Customer Success, Commercial Legal, Product, Security, GRC, Marketing, and executive stakeholders • Create a formal review and sign-off model with Marketing Legal and other relevant teams to ensure that customer-facing privacy materials are legally accurate, commercially useful, and supportable • Build a reusable library of privacy trust assets to reduce one-off escalations and help customers understand CrowdStrike’s approach to data protection, AI, telemetry, subprocessors, cross-border transfers, retention, privacy-by-design, security data, and incident handling • Support strategic customer engagements where privacy, AI, incident response, certifications, international transfers, or data-use questions are material to the relationship • Ensure that all external privacy and data-practice claims are accurate, consistent, current, and aligned with CrowdStrike’s contractual, regulatory, and operational reality • Partner with Privacy Leadership, GRC, Security, Compliance, Product, Engineering, and Legal stakeholders to support privacy-related certifications, attestations, audits, customer assurance requests, and control frameworks • Own certifications specific to Privacy, including the Data Privacy Framework, Global CBPR, APEC CBPR/PRP, and related privacy assurance programs, as applicable • Develop a privacy evidence strategy that connects internal controls to external commitments, customer diligence, regulatory expectations, and certification requirements • Create legally reviewed privacy narratives for certification and assurance topics, including cross-border transfers, BCRs, SCCs, APEC CBPRs, subprocessor governance, retention, access controls, incident response, privacy-by-design, consent, and AI governance • Help ensure that customer-facing certification statements and privacy assurance materials are accurate, current, and consistent with internal controls and legal obligations • Serve as a senior privacy legal lead for incidents with actual or potential privacy implications • Partner with CSIRT, Security, Legal, Compliance, Product, Communications, and outside counsel as needed to assess privacy impact, notification obligations, customer commitments, regulatory risk, and remediation requirements • Develop and maintain privacy incident response playbooks, escalation criteria, privilege protocols, documentation standards, decision trees, and post-incident remediation workflows • Advise on whether an incident triggers privacy notification, customer notice, regulator engagement, contractual reporting, or additional investigation • Ensure privacy incident records are accurate, defensible, privilege-aware, and aligned with applicable regulatory and contractual obligations • Lead post-incident privacy reviews to identify control improvements, policy updates, training needs, process changes, product changes, or customer communication improvements
Job Requirements
- J.D. and active bar membership
- Significant experience in privacy, data protection, cybersecurity, technology, AI governance, or a related field
- Strong working knowledge of global privacy laws and regulatory expectations, including GDPR, CCPA/CPRA, ePrivacy, breach notification laws, cross-border transfer requirements, and emerging AI governance obligations
- Experience advising on privacy incident response, including legal assessment, documentation, notification analysis, remediation, and cross-functional escalation
- Experience with Data Subject Rights / DSAR operations, including workflow design, templates, identity verification, exceptions, escalation criteria, and SLA management
- Experience managing legal operations professionals, privacy operations specialists, alternative legal providers, outside counsel, or other legal service delivery partners
- Experience creating or reviewing customer-facing privacy materials, white papers, FAQs, trust center content, privacy notices, certification narratives, or external data-practice claims
- Excellent writing skills for customer-facing, executive-facing, and regulator-sensitive materials
- Ability to partner effectively across Privacy, Security, GRC, Marketing Legal, Product Legal, Commercial Legal, Product, Engineering, Sales, Customer Success, IT, Legal Operations, and executive stakeholders
- Strong program-building instincts, including playbook creation, governance design, metrics, escalation paths, and operating-model development
- Bonus Points: CIPP/E, CIPP/US, CIPM, AIGP, or similar privacy, data protection, or AI governance credential.
- Experience with OneTrust or similar privacy management platforms.
- Experience with consent management platforms, cookie scanning tools, trust centers, privacy automation tools, or DSAR automation.
- Experience with privacy-related certifications, assurance programs, BCRs, SCCs, APEC CBPRs, ISO/SOC support, or GRC control frameworks.
- Experience in cybersecurity, cloud, SaaS, enterprise technology, threat intelligence, endpoint security, or security products.
- Experience implementing AI-enabled legal, privacy, compliance, or operational workflows with appropriate human review and governance controls.
Benefits
- Market leader in compensation and equity awards
- Comprehensive physical and mental wellness programs
- Competitive vacation and holidays for recharge
- Paid parental and adoption leaves
- Professional development opportunities for all employees regardless of level or role
- Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
- Vibrant office culture with world class amenities
- Great Place to Work Certified™ across the globe
Related Guides
Related Categories
Related Job Pages
More General Counsel Jobs
Responsible Managing Officer RMO General Building B License
Infinite Home SolutionsCalifornia — Central Valley & Bay Area roofing company (RoofMaxx + full-service roofing)
Role Description Our established California roofing and contracting company is seeking a licensed General Building Contractor ("B") to serve as our Responsible Managing Officer (RMO) — the legal and operational qualifier on our corporate license. This is a genuine supervisory role: you'll exercise direct supervision and control over our construction operations as required by California law, in exchange for a monthly fee. Qualifications - A current, clean, active California "B" General Building Contractor license, in good standing with no disciplinary history or unresolved complaints - At least 4 years of journeyman-or-higher experience in the classification (CSLB requirement) - Willingness to be named as a corporate officer on the license - Capacity to actively qualify and supervise — this is not a name-only arrangement Requirements - Exercise direct supervision and control of construction operations per B&P §7068.1 - Review and make technical and administrative decisions as the qualifier - Conduct periodic compliance and workmanship oversight (can be largely remote: document/permit review, project check-ins, scheduled oversight calls) - Be reachable for licensing and code-compliance questions - Help ensure the company operates within CSLB rules Benefits - Contractual officer role, not full-time employment — a defined, manageable time commitment - Formal RMO agreement drafted by our attorney spells out duties, pay, and term - We handle CSLB filings and carry the required $25,000 Bond of Qualifying Individual - You can qualify a maximum of 3 firms total at any time — tell us how many you currently hold - Compensation: $800/month, paid per the signed agreement, plus reimbursement of any agreed expenses. Company Description This is a remote position.
Legal Counsel
SpaceliftSpacelift is a sophisticated CI/CD platform for Terraform, CloudFormation, Pulumi, and Kubernetes.
• Manage contract templates (draft, update, and implement processes for effective use). • Draft, review, and negotiate a variety of complex agreements. • Support the sales team in contract negotiations, risk assessment, and strategic decision-making. • Assist the finance team with contract-related debt recovery and risk mitigation. • Oversee compliance, privacy, and regulatory matters, ensuring adherence to applicable laws. • Monitor new regulations and proactively update internal policies and business practices. • Support HR and internal governance, contributing to policies, employment-related legal matters, and training. • Provide quick, practical, and commercially focused legal advice to all teams. • Act as a trusted business partner for different teams, ensuring legal and compliance needs are met. • Draft internal policies and guidelines tailored to different departments. • Develop training materials and workshops on key legal, compliance, and privacy topics.
Provide comprehensive IP legal support for small molecule radiotherapy programs, develop advanced IP strategies, prepare and prosecute patent applications globally, and lead cross-functional collaboration to achieve project milestones.
General Interest - Psych Nurse Practitioner Roles
FamilyWellFamilyWell Health is an AI-enabled mental health start-up dedicated to solving the women’s mental health crisis by seamlessly embedding high quality, equitable, & affordable mental health care into OB/Gyn practices. FamilyWell provides comprehensive virtual mental health services designed specifically for integration into women’s health practices and health systems. With 95% of patients experiencing clinical improvement within four months, we're addressing one of healthcare's most underserved areas while creating a financially sustainable model for our provider partners. Following our recent $8M Series A funding, we're expanding nationwide and seeking exceptional talent to join our mission-driven team.
Title: General Interest - Psych Nurse Practitioner Roles Location: Remote, USA Job Description: General Nurse Practitioner Interest Form (Outside of our current partner states) At FamilyWell Health, we’re always excited to connect with passionate clinicians who share our commitment to supporting women's mental health. If you’re a licensed PMHNP who has specialized in women's health and who believes in compassionate, evidence-based care, we’d love to hear from you. Submit a general interest application and we will reach out to connect once we are expanding to your state of licensure! Background: Are you passionate about making a meaningful impact in women’s mental health care? Here's your chance to be a vital part of FamilyWell's mission to enhance access to high-quality, equitable, and affordable mental health services for pregnant, postpartum, and menopausal individuals across the U.S. FamilyWell Health is an AI-enabled mental health start-up dedicated to solving the women’s mental health crisis by seamlessly embedding high quality, equitable, & affordable mental health care into OB/Gyn practices. FamilyWell provides comprehensive virtual mental health services designed specifically for integration into OB/Gyn and Family Medicine practices utilizing the psychiatric collaborative care model. FamilyWell’s virtual care team model delivers evidence-based coaching, therapy, care coordination, and psychiatric services with specialized expertise in perinatal mental health and perimenopause/menopause. Please be aware of recruitment scams. FamilyWell will never ask candidates to pay money, request sensitive personal information early in the process, or conduct interviews over unsecured platforms.


