PRAHS

  • Cybersecurity Attorney

    Job Locations (All) | US-NC-Raleigh
    Posted Date 5 days ago(3/21/2019 4:33 PM)
    ID
    2018-51089
  • Overview

    Who We Are:

    We are PRA.  We are 15,000+ employees strong, operating in more than 85 countries.  We are committed to saving lives and we are constantly striving to be the best at what we do.  Our impact is real and we see it every single day.  We help get life-saving drugs into the hands of those who need them most. 

     

    What truly differentiates PRA Health Sciences from anyone else in the world, are our culture and the people who breathe life into it.  In an environment committed to growth, our people thrive.  They enjoy where they work and the work that they do.  Teams collaborate from across the hall and around the globe to work and find solutions.  There is a pervading sense of common purpose and camaraderie.  You can’t help but know it when you see it, and once you see it nothing else will do. 

     

    Who You Are:

    You are committed to protecting PRA Health Sciences from hackers and other criminals targeting businesses to steal valuable information or bring our computer networks to a halt.  You are passionate about understanding the intricacies and nuances of cyber security and data privacy laws and regulations. You enjoy staying up-to-date on the ever changing and evolving state, national and international cyber security and data privacy laws and cases.  You respect that you are entrusted and empowered to provide timely and accurate legal advice to PRA leaders, understand potential risks in client and third-party agreements and provide informed recommendations to appropriately shift and minimize risk.  Attention to detail and finding the win-win solution are key components to your success as well as your ability to amicably work with internal and external stakeholders.

    Responsibilities

    What You Will Be Doing:

    • Develop a comprehensive cyber security and data privacy client and third-party risk analyst team, process and program
    • Lead, develop, and manage a team of Client and Third-Party Risk Analysts
    • Provide legal advice, in collaboration with PRA Legal Affairs, on cyber security incidents and work with internal and external stakeholders to prepare for and rapidly respond to cyber and other information incidents (on-call requirement)
    • Develop, implement and manage procedures for vetting and auditing third parties for compliance with privacy and cybersecurity policies, legal requirements and client requirements
    • Draft, review and negotiate cybersecurity and data privacy contractual provisions for client and third-party relationships to minimize PRA exposure to liability
    • Respond within expected turnaround time to requests for client contracts and change orders as directed by the Senior Director of Cybersecurity and in consultation with Information Technology
    • Advise on cybersecurity and privacy related technology issues, including the systems, applications, network devices and network services
    • Prioritize daily activities according to importance and urgency
    • Stay current on CLE requirements

    Qualifications

    What Do You Need To Have:

    • Law degree from an accredited law school required
    • Bar membership in at least one jurisdiction required
    • Minimum 3 years work experience in law firm or in-house counsel focused on cyber security and data privacy
    • Working knowledge of international cyber security and privacy laws, particularly in the US and EU
    • Certified Information Privacy Professional, Certified Information Privacy Manager or Certified Information Privacy Technologist from the International Association of Privacy Professionals (IAPP) strongly preferred or required within one year of hire
    • Ability to analyze, review and draft contracts for PRA’s business development as a provider of services to life science and pharmaceutical companies
    • Capable of managing documents from creation to completion

     

    Preferred

    • Master Degree
    • Industry-relevant cyber security certification (e.g. Security+, CISSP)
    • Familiarity with International Organization for Standardization (ISO) 27001 Standard and National Institute of Standards and Technology (NIST)
    • Work experience in CRO, pharmaceutical, technology, software or other relevant area
    • Working knowledge of International Organization for Standardization (ISO) 27001 Standard and National Institute of Standards and Technology (NIST) 800 series.


    PRA is an EEO/AA employer and is committed to providing opportunities to minorities, women, veterans and individuals with disabilities.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? We get it! Click here to stay in touch for future opportunities, events and other happenings!