Job DescriptionJob Description - Counsel II - Privacy, AI, and Data Governance (Remote)Reporting to the Assistant General Counsel, Privacy, AI, and Data Governance, this Counsel II position provides legal and operational guidance to Omnicell's data privacy, information security, artificial intelligence, and data governance programs and stakeholders. Responsibilities include (i) developing and implementing comprehensive privacy, AI, and data governance frameworks; (ii) ensuring compliance with evolving data protection, security, and AI regulations across multiple jurisdictions; (iii) serving as a trusted business partner to engineering, security, compliance, IT, and other internal stakeholders; (iv) managing vendor risk assessments and leading negotiations on data processing agreements, security terms, and AI-related contracts; and (v) ensuring that Omnicell's Privacy by Design frameworks are maintained and continue to evolve in accordance with future business needs and regulatory developments. Successful candidates will be both results-driven and client-focused.
Responsibilities:- Develop, implement, and maintain privacy policies, procedures, and compliance programs in accordance with applicable global data protection laws
- Monitor emerging legislation and regulatory guidance related to privacy, cybersecurity, and AI; assess impact on business operations and recommend compliance strategies
- Formalize and maintain legal artifacts including policies, procedures, templates, playbooks, and guidance documents for privacy, cybersecurity, and AI governance
- Support cybersecurity legal initiatives, including contract negotiations for security terms, incident response planning, regulatory breach notifications, and coordination with information security teams
- Develop and advance Omnicell's AI governance framework, including conducting risk assessments and reviews for AI systems, ensuring compliance with emerging AI regulations, and implementing ethical AI principles
- Conduct Data Protection Impact Assessments, Algorithmic Impact Assessments, and security risk assessments for new technologies, systems, and business initiatives
- Provide strategic legal counsel on data governance initiatives, including data classification, retention, cross-border transfers, and data subject rights management
- Coordinate incident response activities for data breaches and security incidents, including regulatory notifications and customer communications
- Negotiate complex data and technology transactions, including data processing agreements, business associate agreements, security exhibits, and AI-related contractual provisions
- Collaborate with training teams to develop and deliver data privacy, security, and AI governance training programs for employees and stakeholders
Required Knowledge & Skills:- Strong initiative and willingness to learn and develop new skills
- Ability to identify complex legal and regulatory issues and offer pragmatic, actionable solutions
- Experience working within fast-growing technology companies and adaptability to evolving business policies and procedures
- Deep understanding of privacy laws and cybersecurity regulatory frameworks
- Knowledge of AI governance principles and emerging AI regulations
- Effective interpersonal and problem-solving skills
- Strong contract negotiation skills with specific experience in data processing agreements, security terms, and technology transactions
- Ability to translate complex technical and legal concepts for diverse audiences
- Ability to independently set and communicate prioritized goals and timelines to internal stakeholders
- Highly organized with strong attention to detail
Basic Qualifications:- J.D.; member in good standing of a state Bar
- CIPP/US or CIPP/E (both preferred)
- 5+ years of experience in either a law firm or in-house legal department providing counsel on data privacy, cybersecurity, and AI regulations, including regulatory compliance, complex data or technology transactions, and incident response
- Substantial experience collaborating with cross-functional teams including IT, security, engineering, and compliance
Preferred Qualifications:- CIPM, AIGP, or other relevant privacy/cybersecurity certifications
- Healthcare industry experience
- Knowledge of information security frameworks (NIST, ISO 27001, SOC 2)
- Familiarity with AI/ML technologies and their legal implications
- Experience with AI governance and emerging technology legal issues
- Experience with regulatory examinations and audits
Work Conditions:- Flexibility in working hours as needed
- Some travel, ~10%
Please note that Omnicell reserves the right to modify job roles and responsibilities as needed to meet our organization's evolving needs and drive our mission forward.
