Skip to main content
Search

Director, Counsel, Data Protection & Policy

Apply Job ID R4370 Date posted 07/16/2021

At CrowdStrike we’re on a mission - to stop breaches. Our groundbreaking technology, services delivery, and intelligence gathering together with our innovations in machine learning and behavioral-based detection, allow our customers to not only defend themselves, but do so in a future-proof manner. We’ve earned numerous honors and top rankings for our technology, organization and people – clearly confirming our industry leadership and our special culture driving it. We also offer flexible work arrangements to help our people manage their personal and professional lives in a way that works for them. So if you’re ready to work on unrivaled technology where your desire to be part of a collaborative team is met with a laser-focused mission to stop breaches and protect people globally, let’s talk.

About the Role

This is a newly created cross-functional position on our privacy team. As Privacy Counsel, you will work remotely, reporting into our Privacy & Policy team to facilitate and maintain CrowdStrike’s data protection and public policy initiatives, with a particular focus on applicable Japanese and broader APAC laws, ideally those in Australia, New Zealand, and Singapore. Your responsibilities include providing practical legal advice on data protection compliance and best practices related to internal business operations, including marketing campaigns, website development, vendor selection, and employee privacy. Additionally, you will contribute to public comments, engage with government leaders, trade associations, and policy advisory groups to promote CrowdStrike’s thought leadership on cybersecurity, data protection, and issues that may impact CrowdStrike and the customers it works hard to protect.

Additional responsibilities

  • Maintain records of personal data processing activities and respond to data subject requests.

  • Develop and conduct privacy training and interact with employees at all levels of the organization and relevant third parties to build awareness on the importance of data protection compliance.

  • Conduct data protection impact assessments, assist our security compliance team as needed with vendor assessments, audits, and investigations.

  • Assist with monitoring of compliance with applicable data protection requirements.

  • Monitor legal and regulatory changes that impact CrowdStrike’s business and regularly update the data protection program based on emerging risks and best practices.

  • Evaluate regional cross-border data flow frameworks, such as ASEAN Data Management Framework (DMF), ASEAN Cross Border Data Flows (CBDF), and APEC Cross-Border Privacy Rules (CBPR) System

  • Serve as a knowledgeable internal data protection, employee privacy, and consumer protection resource with subject matter expertise in Japanese, APAC regional, and other laws on a wide range of key areas, including APPI, GDPR, telecommunications, anti-spam laws, and cybersecurity regulations.

  • Draft privacy policies and notices, data protection agreements, and practical legal guidance.

  • Proactively identify opportunities for improvement and create data protection solutions across various areas of the business.

  • Collaborate with CrowdStrike’s Legal team as needed to assist with negotiations, improve agreements, and share knowledge.

  • Interact with customers to facilitate understanding of CrowdStrike’s data protection compliance.

What You’ll Need

  • Full qualification as a Japanese attorney, including university degrees and successful passage of national bar examination.

  • You must have experience of data protection law with experience working with a law firm or as in-house counsel.

  • Experience designing and promoting public policy initiatives.

  • Professional fluency in English.

  • Awareness of global privacy laws, data localization laws, and best practices.

  • Understanding of cloud-based SaaS technologies, cybersecurity, digital marketing, big data analytics, and general business operations.

  • Knowledge of Data Protection Authorities, international data transfer mechanisms, and regulatory obligations.

  • Ability and willingness to tackle other areas of privacy and cybersecurity law as needed.

  • Team player who welcomes responsibility and thrives in an intense, fast-paced environment.

  • Resourceful self-starter who enjoys wearing multiple hats and digging into challenging projects, big and small.

  • Experience in operationalizing data protection programs and implementing practical solutions across departments.

  • Ability to effectively communicate legal and compliance issues verbally and in writing in a clear and understandable manner; strong interpersonal skills.

  • Demonstrated ability to be proactive, exercise independent judgment and strong work ethic.

  • Ability to travel and work varying hours to accommodate global workforce, as needed.

  • Team player who collaborates, welcomes responsibility, and thrives in an intense, fast-paced environment.

  • Resourceful self-starter who enjoys wearing multiple hats and digging into challenging projects, big and small.

  • Ability to effectively communicate legal and compliance issues verbally and in writing in a clear and understandable manner; strong interpersonal skills.

  • Demonstrated ability to be proactive, exercise independent judgment and strong work ethic.

  • Ability to work varying hours to accommodate global workforce, as needed within a Legal Team that is remote (pre-COVID).

  • You must love our business. CrowdStrike is a leader in cybersecurity.  We don’t have a mission statement.  We are on a mission to protect our customers from breaches. You must be genuinely committed to our mission and eager to learn the details of our business.

Bonus Points:

  • Experience working with diverse cultures.

  • Knowledge of APPI, Australian Privacy Principles, Singapore Personal Data Protection Act, GDPR, anti-spam and other workplace privacy and consumer protection laws.

  • Experience working remotely.

  • Experience working in a startup environment, in cybersecurity, in technology, or in a SaaS company.

  • Experience interacting with data protection regulators.

  • Fluency in additional languages.

#LI-DC1

#LI-SA1

Benefits of Working at CrowdStrike:

  • Market leader in compensation and equity awards
  • Competitive vacation policy
  • Comprehensive health benefits
  • Paid parental leave, including adoption
  • Flexible work environment
  • Wellness programs
  • Stocked fridges, coffee, soda, and lots of treats

We are committed to building an inclusive culture of belonging that not only embraces the diversity of our people but also reflects the diversity of the communities in which we work and the customers we serve. We know that the happiest and highest performing teams include people with diverse perspectives and ways of solving problems so we strive to attract and retain talent from all backgrounds and create workplaces where everyone feels empowered to bring their full, authentic selves to work.

CrowdStrike is an Equal Opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex including sexual orientation and gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.
Apply