Reinsurance Group of America, Incorporated
VP, Data Privacy & Security Counsel (open to remote)
Reinsurance Group of America, Incorporated, Chesterfield, Missouri, United States, 63005
VP, Data Privacy & Security Counsel (open to remote)
Join to apply for the
VP, Data Privacy & Security Counsel (open to remote)
role at
Reinsurance Group of America, Incorporated
RGA ready. RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 500 Company and listed among its World’s Most Admired Companies, we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.
A Brief Overview
This experienced data privacy, cyber & data governance attorney provides strategic legal counsel on data protection, cybersecurity, and information governance matters. This role will support our worldwide reinsurance operations by ensuring compliance with evolving data privacy and AI regulations, managing cyber risk legal issues, and establishing robust data governance frameworks across multiple jurisdictions. This attorney should have prior experience creating, operationalizing, and integrating global data privacy and security compliance programs.
What You Will Do
Data privacy & protection: Provide expert legal advice on global data privacy laws including GDPR, CCPA, PIPEDA, PDPA, AI laws and regulations, and other emerging regional regulations. Oversee the development, implementation, and maintenance of comprehensive global data privacy compliance programs across all business units. Advise on data privacy impact assessments (PIAs) and data protection impact assessments (DPIAs). Develop standards, templates, and playbooks for drafting and negotiation of data processing agreements, data sharing arrangements, and cross-border data transfer mechanisms. Manage data subject rights requests and data privacy incident response procedures within the legal team. Advise on data privacy, legal risk identification and mitigation efforts and data privacy compliance efforts including data privacy-by-design in business operations, product development, data analytics and technology solutions. Manage a team and mentor junior attorneys, emerging subject matter experts, and legal professionals supporting global data privacy initiatives by overseeing work and providing guidance and professional development support.
Cybersecurity legal support: Provide legal guidance on cybersecurity risk management and incident response. Advise on cyber insurance coverage, claims, and regulatory reporting requirements. Support global breach notification obligations. Develop standards and playbooks for the review and negotiation of cybersecurity-related contracts and vendor agreements. Collaborate with IT security teams on legal aspects of security controls and frameworks. Advise on regulatory cybersecurity requirements for financial services and insurance sectors.
Data governance & information management: Develop and implement enterprise-wide data governance policies and procedures. Maintain legal frameworks for data classification, retention, and disposal. Advise on data and analytics product development and third-party data sharing arrangements. Support artificial intelligence and machine learning initiatives. Manage legal aspects of data analytics, modeling, and algorithmic decision-making. Ensure compliance with industry-specific data governance requirements.
Regulatory compliance & risk management: Monitor and interpret evolving data protection and cybersecurity regulations globally. Liaise with regulatory authorities on data protection and cyber matters. Conduct legal risk assessments for data-related business activities. Develop training programs and awareness initiatives for workforce members and business stakeholders. Support internal audits and regulatory examinations related to data practices. Advise senior management on emerging data privacy and cyber legal risks.
Cross-functional collaboration: Coordinate legal and compliance response to data privacy or security incidents (investigation, remediation, and communication, for example). Partner with IT, Risk Management, Compliance, and Business teams on data-related initiatives. Support M&A due diligence on data privacy and cybersecurity matters. Collaborate with external counsel and data privacy consultants as needed. Participate in industry associations and regulatory working groups. Contribute to enterprise risk management and business continuity planning.
Education and Experience
Required
JD Law Degree from a United States accredited law school or equivalent accredited institution
10+ years of legal experience with significant focus on data privacy and cybersecurity law
Experience with data governance principles and information lifecycle management
Deep understanding of global data protection laws and regulations
Extensive knowledge of cybersecurity legal frameworks and industry standards
Strong understanding of cloud computing, data analytics, and emerging technologies
Highly developed interpersonal skills with demonstrated ability to positively influence change among clients and working groups
Expert ability in implementing change within an organization, ensuring understanding, participation, and ownership
Highly advanced oral and written communication skills including presentation skills
Expert skills in managing multiple projects and/or sub-teams simultaneously
Highly advanced ability to make timely and effective decisions and to drive results through strategic planning and program implementation
Highly advanced ability to implement organizational, divisional and/or departmental vision and goals with strong leadership, collaboration, creative thinking, focus, and persistence
Expert ability to work well within and manage a team
Licensed to practice law in a major jurisdiction (US preferable, otherwise UK, EU, or other relevant markets)
Preferred
Advanced degree (LLM) in data privacy law, cybersecurity, or technology law
Big law firm experience with data privacy and cybersecurity practice groups
In-house counsel experience at a financial services, insurance, or technology company
Knowledge of U.S. reinsurance business operations and data flows
Experience with cross-border data transfers and international data privacy frameworks (China’s Network Security Law, European NIS2, DORA, and the Cyber Resilience Act), etc.
CIPP, CIPM, CIPT, CISSP, CISA or equivalent
What you can expect from RGA
Gain valuable knowledge from and experience with diverse, caring colleagues around the world.
Enjoy a respectful, welcoming environment that fosters individuality and encourages pioneering thought.
Join the bright and creative minds of RGA, and experience vast career potential.
Compensation
Range: $175,650.00 - $261,600.00 Annual. Base pay varies depending on job-related knowledge, skills, experience and market location. RGA provides an annual bonus plan and may offer participation in long-term equity incentive plans. RGA also maintains a full range of health, retirement, and other employee benefits.
RGA is an equal opportunity employer. Qualified applicants will be considered without regard to race, color, age, gender identity or expression, sex, disability, veteran status, religion, national origin, or any other characteristic protected by applicable equal employment opportunity laws.
Seniority level
Executive
Employment type
Full-time
Job function
Other, Information Technology, and Management
Industries
Insurance
Referrals increase your chances of interviewing at Reinsurance Group of America, Incorporated by 2x
O'Fallon, MO
Position: Vice President – Security (title shown in listings may vary)
#J-18808-Ljbffr
VP, Data Privacy & Security Counsel (open to remote)
role at
Reinsurance Group of America, Incorporated
RGA ready. RGA is a purpose-driven organization working to solve today’s challenges through innovation and collaboration. A Fortune 500 Company and listed among its World’s Most Admired Companies, we’re the only global reinsurance company to focus primarily on life- and health-related solutions. Join our multinational team of intelligent, motivated, and collaborative people, and help us make financial protection accessible to all.
A Brief Overview
This experienced data privacy, cyber & data governance attorney provides strategic legal counsel on data protection, cybersecurity, and information governance matters. This role will support our worldwide reinsurance operations by ensuring compliance with evolving data privacy and AI regulations, managing cyber risk legal issues, and establishing robust data governance frameworks across multiple jurisdictions. This attorney should have prior experience creating, operationalizing, and integrating global data privacy and security compliance programs.
What You Will Do
Data privacy & protection: Provide expert legal advice on global data privacy laws including GDPR, CCPA, PIPEDA, PDPA, AI laws and regulations, and other emerging regional regulations. Oversee the development, implementation, and maintenance of comprehensive global data privacy compliance programs across all business units. Advise on data privacy impact assessments (PIAs) and data protection impact assessments (DPIAs). Develop standards, templates, and playbooks for drafting and negotiation of data processing agreements, data sharing arrangements, and cross-border data transfer mechanisms. Manage data subject rights requests and data privacy incident response procedures within the legal team. Advise on data privacy, legal risk identification and mitigation efforts and data privacy compliance efforts including data privacy-by-design in business operations, product development, data analytics and technology solutions. Manage a team and mentor junior attorneys, emerging subject matter experts, and legal professionals supporting global data privacy initiatives by overseeing work and providing guidance and professional development support.
Cybersecurity legal support: Provide legal guidance on cybersecurity risk management and incident response. Advise on cyber insurance coverage, claims, and regulatory reporting requirements. Support global breach notification obligations. Develop standards and playbooks for the review and negotiation of cybersecurity-related contracts and vendor agreements. Collaborate with IT security teams on legal aspects of security controls and frameworks. Advise on regulatory cybersecurity requirements for financial services and insurance sectors.
Data governance & information management: Develop and implement enterprise-wide data governance policies and procedures. Maintain legal frameworks for data classification, retention, and disposal. Advise on data and analytics product development and third-party data sharing arrangements. Support artificial intelligence and machine learning initiatives. Manage legal aspects of data analytics, modeling, and algorithmic decision-making. Ensure compliance with industry-specific data governance requirements.
Regulatory compliance & risk management: Monitor and interpret evolving data protection and cybersecurity regulations globally. Liaise with regulatory authorities on data protection and cyber matters. Conduct legal risk assessments for data-related business activities. Develop training programs and awareness initiatives for workforce members and business stakeholders. Support internal audits and regulatory examinations related to data practices. Advise senior management on emerging data privacy and cyber legal risks.
Cross-functional collaboration: Coordinate legal and compliance response to data privacy or security incidents (investigation, remediation, and communication, for example). Partner with IT, Risk Management, Compliance, and Business teams on data-related initiatives. Support M&A due diligence on data privacy and cybersecurity matters. Collaborate with external counsel and data privacy consultants as needed. Participate in industry associations and regulatory working groups. Contribute to enterprise risk management and business continuity planning.
Education and Experience
Required
JD Law Degree from a United States accredited law school or equivalent accredited institution
10+ years of legal experience with significant focus on data privacy and cybersecurity law
Experience with data governance principles and information lifecycle management
Deep understanding of global data protection laws and regulations
Extensive knowledge of cybersecurity legal frameworks and industry standards
Strong understanding of cloud computing, data analytics, and emerging technologies
Highly developed interpersonal skills with demonstrated ability to positively influence change among clients and working groups
Expert ability in implementing change within an organization, ensuring understanding, participation, and ownership
Highly advanced oral and written communication skills including presentation skills
Expert skills in managing multiple projects and/or sub-teams simultaneously
Highly advanced ability to make timely and effective decisions and to drive results through strategic planning and program implementation
Highly advanced ability to implement organizational, divisional and/or departmental vision and goals with strong leadership, collaboration, creative thinking, focus, and persistence
Expert ability to work well within and manage a team
Licensed to practice law in a major jurisdiction (US preferable, otherwise UK, EU, or other relevant markets)
Preferred
Advanced degree (LLM) in data privacy law, cybersecurity, or technology law
Big law firm experience with data privacy and cybersecurity practice groups
In-house counsel experience at a financial services, insurance, or technology company
Knowledge of U.S. reinsurance business operations and data flows
Experience with cross-border data transfers and international data privacy frameworks (China’s Network Security Law, European NIS2, DORA, and the Cyber Resilience Act), etc.
CIPP, CIPM, CIPT, CISSP, CISA or equivalent
What you can expect from RGA
Gain valuable knowledge from and experience with diverse, caring colleagues around the world.
Enjoy a respectful, welcoming environment that fosters individuality and encourages pioneering thought.
Join the bright and creative minds of RGA, and experience vast career potential.
Compensation
Range: $175,650.00 - $261,600.00 Annual. Base pay varies depending on job-related knowledge, skills, experience and market location. RGA provides an annual bonus plan and may offer participation in long-term equity incentive plans. RGA also maintains a full range of health, retirement, and other employee benefits.
RGA is an equal opportunity employer. Qualified applicants will be considered without regard to race, color, age, gender identity or expression, sex, disability, veteran status, religion, national origin, or any other characteristic protected by applicable equal employment opportunity laws.
Seniority level
Executive
Employment type
Full-time
Job function
Other, Information Technology, and Management
Industries
Insurance
Referrals increase your chances of interviewing at Reinsurance Group of America, Incorporated by 2x
O'Fallon, MO
Position: Vice President – Security (title shown in listings may vary)
#J-18808-Ljbffr