Lead Counsel, Privacy

Facebook | Menlo Park, CA

Posted Date 12/07/2018
Description Privacy and security is central to everything we do at Facebook. The legal department works across the company to develop and implement practices and procedures that ensure the personal information of our users is safe, secure, and used in accordance with their settings and choice. To help us with our objectives, Facebook is seeking a talented, self-motivated experienced attorney that is excited by taking on and leading complex privacy projects, thrives in a fast-paced environment and can seamlessly drive success working with multiple cross-functional stakeholders to accomplish bold things. This is a full-time position.
In this role, you will help develop and execute a global legal privacy program with a focus on compliance, operations, monitoring and risk management, primarily in North and South America, but including involvement in global privacy work. In doing so, you will assist in managing our compliance with state, federal and other regulations, while applying leading practices to our most critical privacy program focus areas, which impacts our monitoring, assurance, testing, training and awareness initiatives across Facebook.


  • Lead in the management, monitoring and evolution of Facebook's Privacy Program, including developing and executing a comprehensive privacy governance, including but not limited to monitoring, assurance, risk management and operations by working with cross-functional partners across the organization

  • Support the management of global privacy projects and initiatives, particularly focused on Facebook's legal obligations related to protecting personal data of customers, employees, non-employees and other third parties

  • Manage and lead discussions on privacy regulations with regard to Facebook's privacy program controls, as well as preforming risk assessments, identifying gaps, developing and implementing critical mitigation and remediation efforts

  • Manage and support Facebook's ongoing privacy monitoring and assurance efforts, including biennial assessment conducted by our independent assessors under the requirements of the FTC Consent Order

  • Support the development, implementation and management of our privacy and data protection controls across areas including, but not limited to, coordination with various cross-functional groups to upgrade privacy controls involving governance and certifications, data inventory, training and awareness, incident response, third parties, service providers, data sharing, and risk management

  • Advise Privacy Legal Managers and business partners as changes to legal obligations occur, incident and related notifications, third party service provider management/oversight, regulatory inquiries and other initiatives impacting user information

  • Assist in day-to-day incident response operations in coordination with other Privacy Legal attorneys, including data breach escalation and notification, identifying and reporting on material risks, lessons learned, trends, and continuous improvement of our Incident Response Program


  • J.D. degree (or foreign equivalent) and membership in at least one U.S. state bar

  • 5+ years of experience on privacy legal and/or privacy program design, oversight and management for internal/external clients

  • Experience building and implementing global privacy compliance, operations and risk programs

  • Experience testing, monitoring and assessing privacy programs

  • Experience working with external auditors and/or regulatory inquiries involving privacy or information security

  • Experience managing teams of 4 or more, along with dotted reporting lines

  • Experience working with senior level officials across key functions critical to a privacy organization

  • Experience prioritizing and managing multiple projects with varying deadlines

  • Experience explaining topics and gaining support and consensus from multiple stakeholders

  • Experience with program management practices, tools, and methodology


  • Privacy and data protection, Information technology/information security experience

  • Experience with emerging technologies and devices

  • Knowledge of Facebook products

  • Consulting or advisory experience on privacy matters

  • Privacy certification (e.g. CIPP or CIPM or similar)

Share this job


This job board is currently inactive.

Please contact us if you have any questions.