Roche
Position
Senior Counsel, Digital – Roche Diagnostics North America Digital & Privacy team
Location & Compensation
Base: Pleasanton, California Salary range: $173,100 – $321,500 (SE8) or $187,700 – $348,700 (SE9) – additional benefits and discretionary bonus may apply.
The Opportunity
We believe in the potential of science, data, and insights to improve the standard of care for humankind. The Roche Diagnostics North America Digital & Privacy team works collaboratively to support customer areas, affiliates, and group colleagues on privacy and digital legal matters. In this high‑impact role you will advise on emerging technologies (AI, cybersecurity, data privacy) and help ensure compliance with a dynamic regulatory landscape.
Key Responsibilities Provide U.S. legal analysis and guidance on emerging technologies, including artificial intelligence, blockchain, the Internet of Things, and evolving digital health solutions, with a focus on U.S. legal and regulatory requirements.
Monitor and interpret U.S. cybersecurity regulations and industry standards to advise on how Roche can best assess and manage legal risks across digital products and enterprise systems.
Advise business leadership and cross‑functional stakeholders (Legal, IT Security, Digital, R&D, Privacy, and Compliance) on navigating legal risks and opportunities in support of Roche’s digital strategy.
Provide expert guidance on U.S. federal and state privacy laws, such as HIPAA, CCPA/CPRA, TCPA and others, including implications for data collection, use, and sharing. Guidance areas include: Cybersecurity compliance and risk mitigation strategies, including incident response and vendor assessments.
Reviewing and advising on Privacy Impact Assessments (PIAs) for innovative projects and technologies; developing practical strategies to mitigate legal and compliance risk.
Supporting the shaping and maintaining internal AI and privacy frameworks, policies, and training programs to drive consistent compliance and awareness across the organization.
Supporting contract negotiation and review, ensuring that data protection and privacy provisions in third‑party agreements align with Roche’s legal risk posture and values.
Serving as a key legal advisor in the incident response process for suspected data breaches, including investigations, risk assessments, regulatory notification obligations, and internal coordination.
Foster a network of collaboration across Legal, Compliance, IT Security, People & Culture, and other corporate functions to embed privacy, security, and data ethics into Roche’s digital transformation journey.
Who You Are
Program Eligibility (SE8)
A Juris Doctor (JD) from an ABA‑accredited law school, licensed to practice in one or more U.S. states in good standing.
At least five (5) years of experience practicing law at a large‑to‑medium firm or within a privacy, compliance, legal or contracting department in a life sciences company.
Experience advising on data privacy and digital matters, including federal, state and international information security and privacy laws, rules, regulations and industry standards (HIPAA, CCPA, GDPR).
Experience reviewing, drafting, and negotiating information security and privacy provisions in agreements, including Business Associate Agreements and data transfer or processing agreements.
Ability to establish and maintain open, candid, collaborative, and trusting working relationships.
Ability to exercise independent judgment and deliver a consistent message amid pressure, while maintaining confidential and sensitive information.
Positive can‑do attitude, flexible and adaptable approach, business acumen, professionalism, sound judgment and sense of urgency.
CIPP/US, CIPP/AIGP or similar certification, or willingness to obtain within six months of starting the role.
Program Eligibility (SE9)
A Juris Doctor (JD) from an ABA‑accredited law school, licensed in one or more U.S. states in good standing.
At least ten (10) years of experience practicing law at a large‑to‑medium firm or in a privacy, compliance, legal, or contracting department in a life sciences company.
Experience advising on data privacy and digital matters, including federal, state and international information security and privacy laws, rules, regulations and industry standards (HIPAA, CCPA, GDPR).
Experience reviewing, drafting, and negotiating information security and privacy provisions in agreements, including Business Associate Agreements and data transfer or processing agreements.
Ability to establish and maintain open, candid, collaborative, and trusting working relationships.
Ability to exercise independent judgment and deliver a consistent message amid pressure, while maintaining confidential and sensitive information.
Positive can‑do attitude, flexible and adaptable approach, business acumen, professionalism, sound judgment and sense of urgency.
CIPP/US, CIPP/AIGP or similar certification, or willingness to obtain within six months of starting the role.
Benefits
Relocation benefits are not available for this job posting.
About Roche
A healthier future drives us to innovate. With more than 100,000 employees worldwide, we advance science and ensure everyone has access to healthcare for generations to come. Our collaborations deliver life‑changing solutions across medicines, diagnostics and digital platforms.
Equal Employment Opportunity
Roche is an equal‑opportunity employer. We deliberately employ, promote, and treat all employees and applicants based on merit, qualifications, and competence. Our policy prohibits unlawful discrimination and protects applicants and employees based on protected veteran status, disability status, and all federally, state, and local law‑protected characteristics. If you need an accommodation in the online application process, please contact us by completing the
Accommodations for Applicants
form.
Seniority Level
Associate
Employment Type
Full‑time
Job Function
Legal
#J-18808-Ljbffr
Senior Counsel, Digital – Roche Diagnostics North America Digital & Privacy team
Location & Compensation
Base: Pleasanton, California Salary range: $173,100 – $321,500 (SE8) or $187,700 – $348,700 (SE9) – additional benefits and discretionary bonus may apply.
The Opportunity
We believe in the potential of science, data, and insights to improve the standard of care for humankind. The Roche Diagnostics North America Digital & Privacy team works collaboratively to support customer areas, affiliates, and group colleagues on privacy and digital legal matters. In this high‑impact role you will advise on emerging technologies (AI, cybersecurity, data privacy) and help ensure compliance with a dynamic regulatory landscape.
Key Responsibilities Provide U.S. legal analysis and guidance on emerging technologies, including artificial intelligence, blockchain, the Internet of Things, and evolving digital health solutions, with a focus on U.S. legal and regulatory requirements.
Monitor and interpret U.S. cybersecurity regulations and industry standards to advise on how Roche can best assess and manage legal risks across digital products and enterprise systems.
Advise business leadership and cross‑functional stakeholders (Legal, IT Security, Digital, R&D, Privacy, and Compliance) on navigating legal risks and opportunities in support of Roche’s digital strategy.
Provide expert guidance on U.S. federal and state privacy laws, such as HIPAA, CCPA/CPRA, TCPA and others, including implications for data collection, use, and sharing. Guidance areas include: Cybersecurity compliance and risk mitigation strategies, including incident response and vendor assessments.
Reviewing and advising on Privacy Impact Assessments (PIAs) for innovative projects and technologies; developing practical strategies to mitigate legal and compliance risk.
Supporting the shaping and maintaining internal AI and privacy frameworks, policies, and training programs to drive consistent compliance and awareness across the organization.
Supporting contract negotiation and review, ensuring that data protection and privacy provisions in third‑party agreements align with Roche’s legal risk posture and values.
Serving as a key legal advisor in the incident response process for suspected data breaches, including investigations, risk assessments, regulatory notification obligations, and internal coordination.
Foster a network of collaboration across Legal, Compliance, IT Security, People & Culture, and other corporate functions to embed privacy, security, and data ethics into Roche’s digital transformation journey.
Who You Are
Program Eligibility (SE8)
A Juris Doctor (JD) from an ABA‑accredited law school, licensed to practice in one or more U.S. states in good standing.
At least five (5) years of experience practicing law at a large‑to‑medium firm or within a privacy, compliance, legal or contracting department in a life sciences company.
Experience advising on data privacy and digital matters, including federal, state and international information security and privacy laws, rules, regulations and industry standards (HIPAA, CCPA, GDPR).
Experience reviewing, drafting, and negotiating information security and privacy provisions in agreements, including Business Associate Agreements and data transfer or processing agreements.
Ability to establish and maintain open, candid, collaborative, and trusting working relationships.
Ability to exercise independent judgment and deliver a consistent message amid pressure, while maintaining confidential and sensitive information.
Positive can‑do attitude, flexible and adaptable approach, business acumen, professionalism, sound judgment and sense of urgency.
CIPP/US, CIPP/AIGP or similar certification, or willingness to obtain within six months of starting the role.
Program Eligibility (SE9)
A Juris Doctor (JD) from an ABA‑accredited law school, licensed in one or more U.S. states in good standing.
At least ten (10) years of experience practicing law at a large‑to‑medium firm or in a privacy, compliance, legal, or contracting department in a life sciences company.
Experience advising on data privacy and digital matters, including federal, state and international information security and privacy laws, rules, regulations and industry standards (HIPAA, CCPA, GDPR).
Experience reviewing, drafting, and negotiating information security and privacy provisions in agreements, including Business Associate Agreements and data transfer or processing agreements.
Ability to establish and maintain open, candid, collaborative, and trusting working relationships.
Ability to exercise independent judgment and deliver a consistent message amid pressure, while maintaining confidential and sensitive information.
Positive can‑do attitude, flexible and adaptable approach, business acumen, professionalism, sound judgment and sense of urgency.
CIPP/US, CIPP/AIGP or similar certification, or willingness to obtain within six months of starting the role.
Benefits
Relocation benefits are not available for this job posting.
About Roche
A healthier future drives us to innovate. With more than 100,000 employees worldwide, we advance science and ensure everyone has access to healthcare for generations to come. Our collaborations deliver life‑changing solutions across medicines, diagnostics and digital platforms.
Equal Employment Opportunity
Roche is an equal‑opportunity employer. We deliberately employ, promote, and treat all employees and applicants based on merit, qualifications, and competence. Our policy prohibits unlawful discrimination and protects applicants and employees based on protected veteran status, disability status, and all federally, state, and local law‑protected characteristics. If you need an accommodation in the online application process, please contact us by completing the
Accommodations for Applicants
form.
Seniority Level
Associate
Employment Type
Full‑time
Job Function
Legal
#J-18808-Ljbffr