Senior Counsel - AI, Privacy & Security Legal (Hybrid)

Responsibilities:

• Work on complex legal issues where analysis requires identification and evaluation of multiple factors.

• Manage legal matters provided to a number of in-house constituents within practice area(s).

• Exercise independent judgment regarding legal advice with limited supervision of more senior attorneys.

• Negotiate discrete disputes within practice area(s).

• Review and draft documents and templates within practice area(s).

• Serve as the primary legal advisor for enterprise AI guidance and governance, counseling on responsible AI, AI risk management, and legal/regulatory compliance across the AI lifecycle (use case intake, development, procurement, deployment, monitoring, and retirement).

• Advise on AI-related risk issues, including automated decision-making, bias/fairness, transparency/notice, explainability, human oversight, and consumer disclosures, and help establish legally appropriate guardrails.

• Negotiate and advise on contracts and provisions related to AI, privacy, and cyber security, including AI and cloud services, software licensing, data processing agreements, and AI development contracts.

• Develop and maintain guidance and governance documentation related to AI, privacy, and cyber security, including policies, standards, procedures, frameworks, playbooks, and approval workflows for AI and privacy use cases.

• Conduct legal research, monitor, review and analyze proposed legislation, assess applicability and operational impacts, and assist business in understanding the requirements and impact.

• Coordinate legal matters handled by outside counsel. May provide input into the selection of outside counsel from preselected counsel list.

• Participate in and may lead departmental and cross-functional working groups in identified areas of legal expertise or development.

• May manage and/or mentor junior attorneys or paralegals and help scale legal support for AI, privacy and cybersecurity legal reviews and governance.

Examples of responsibilities within specific practice areas: develop template agreements; develop and deliver training and job aids to various groups throughout the business; advise on AI and privacy use case reviews and impact assessments; respond to regulatory inquiries or examinations; manage litigation or regulatory actions of moderate complexity, and other activities to support legal, compliance and business groups.

Qualifications:

• JD from an ABA accredited law school

• Five years of relevant legal experience, including significant experience advising on technology, privacy/security, and AI or automated decision-making matters

• Demonstrated ability to build, implement, or operate governance programs

• Licensed or eligible to practice in the applicable state

• Certified Information Privacy Professional (CIPP), AI Governance Professional (AIGP) or comparable certifications and experience

• Ability to effectively communicate, both written and oral, with the intended audience

• Ability to exercise sound judgment in a fast-paced environment

• Ability to exercise agility and adaptability in providing legal advice

• Extensive knowledge of privacy and security legal principles, laws and regulations, such as HIPAA, GLBA, NY DFS Cybersecurity rules and regulations, California Consumer Privacy Act (CCPA), etc.

• Strong understanding of AI legal principles, laws, and regulations, such as the EU AI Act, state AI/algorithmic accountability laws (including Colorado), FTC guidance, NAIC AI guidance, and other regimes related to automated decision-making and consumer transparency, etc.

• Comfortable in a rapidly changing corporate environment

• Proficient using MS Office

Preferred Qualifications:

• Experience building or leading an AI governance program (in-house, in a regulated industry, or at a law firm advising enterprise clients)

• Experience advising on generative AI use (including prompt governance, output review, human oversight, and IP/copyright considerations)

• Experience with third-party AI/vendor due diligence, including security and privacy assessments, audit rights, and model/data ownership terms

• Experience supporting regulatory inquiries/examinations related to technology, data, AI, or consumer protection

• Background partnering with data science/engineering teams or prior technical training (coursework, certifications, or equivalent experience)

Working Conditions:

• Hybrid office environment: 3 days in office (Baltimore/Cedar Rapids/Denver/Philadelphia)

Compensation:

• The Salary for this position generally ranges between $165,000 - $185,000 annually. Please note that the salary range is a good faith estimate for this position and actual starting pay is determined by several factors including qualifications, experience, geography, work location designation (in-office, hybrid, remote) and operational needs. Salary may vary above and below the stated amounts, as permitted by applicable law.

• Additionally, this position is typically eligible for an Annual Bonus based on the Company Bonus Plan/Individual Performance and is at the Company’s discretion. 

#LI-BD1

This job description is not a contract of employment nor for any specific job responsibilities. The Company may change, add to, remove, or revoke the terms of this job description at its discretion. Managers may assign other duties and responsibilities as needed. In the event an employee or applicant requests or requires an accommodation in order to perform job functions, the applicable HR Business Partner should be contacted to evaluate the accommodation request.

Disclaimer:
Beware of fake job offers!

We’ve been alerted to scammers impersonating Transamerica recruiters, particularly for remote positions. Please note:

• We will never request personal information such as ID or payment for equipment upfront.

• Official offers are sent via DocuSign following a verbal offer—not through text or email.