POSITION SUMMARY: The person in this role will be a member of the Global Data Privacy Team (GDPT) which is part of Milliman’s Legal and Compliance General Corporate Services. The person in this role will assist the Global Data Privacy Director with the implementation of the privacy program in the USA and Canada including processes, procedures and initiatives, and collaborate with other departments and practices in support of the US/Canadian privacy program. Although the primary focus will be the USA/Canada, this person will be involved in international projects and collaborate with Data Privacy Counsels in charge of other regions. The person in this role will be supervised by the Global Data Privacy Director based in Paris, France. This person will work with peers located in France, India and the USA (headquarters of Milliman’s General Corporate Services, or GCS). This role offers excellent growth opportunities and is ideal for a mid-level Counsel eager to advance to a Senior Data Protection Counsel position in the short term, and to a Head of Data Protection for the USA/Canada in the future. RESPONSIBILITIES: Conduct research and monitor new and revised federal and state privacy laws, regularly reporting findings to the Global Data Privacy Director. Provide legal advice on a day-to-day basis. Assist with the implementation of Milliman’s Global Data Protection Policy in the USA/Canada Prepare and present various data privacy trainings to Milliman’s U.S./Canadian practices Negotiate U.S. Data Sharing Agreements and collaborate with Milliman’s U.S. Legal Team. Assist with the creation of ad hoc S. Data Sharing Agreement templates Respond to requests for data privacy advice from the business, including assisting in responding to prospect and customer data protection questionnaires. Assist with identifying privacy risks in processes and systems and propose mitigations Identify any gaps in policies/procedures based on regulations and recommend prioritization of addressing gaps. Assist with the implementation of the international Vendor Management Program, participate in U.S./Canada vendor due diligence checks, and contract negotiations. Maintain a network of local DPCPs (Data Privacy Contact Persons) and providing them with advice and regular training when needed Assist with the drafting of employee notices/consent forms where required Maintain Milliman’s Records of Processing Activities/Review Milliman’s Data Mapping Questionnaires annually Assist with the management of Data Subject Access Requests (DSARs) and other requests from data subjects residing in the USA Assist with the drafting of Data Protection Impact Assessments where required Monitor implementation of data privacy recommendations made under Privacy Impact Assessments Assist with internal audits, privacy reviews and self-assessment analyses SKILL & QUALIFICATIONS REQUIRED: The ideal candidate must be a Juris Doctor or qualified lawyer in a relevant jurisdiction. Must have passed Bar Exam. The ideal candidate must have minimum 6 years of post-admission experience working in data privacy law (law firm or in-house legal practice). The ideal candidate must have working knowledge of US federal and state data privacy laws, including HIPAA/HITECH, GLBA, FCRA. The ideal candidate must have the International mindset and understanding of international data privacy laws, in particular GDPR. The ideal candidate must have the ability to deal with various laws across several states. The ideal candidate must be skilled in documenting compliance actions. The ideal candidate must have strong contract drafting and negotiating experience. The ideal candidate must have excellent organization and planning skills, with the ability to (i) report and draft summaries of action plans, (ii) create plans and diligence to follow through and (iii) monitor plans through execution and completion. Must be a native English speaker. Must have the ability to draft summaries and reports of legal analyses in a structured manner. Must possess collaborative workstyle and team-spirit. Must have the capacity to adapt to the working style and organization of the team and embrace different cultures and mentalities. Must have demonstrated experience in giving trainings. Must have demonstrated professionalism in interactions with external clients. Must have excellent written and communication skills. Ability to adapt to different cultures and communication styles. Must have exceptional interpersonal skills. SKILLS & QUALIFICATIONS PREFERRED: CIPP certification through the IAPP (CIPP/US) IT security knowledge LOCATION: This is a hybrid role out of Milliman's UK Office. ABOUT MILLIMAN: Independent for over 77 years, Milliman delivers market-leading services and solutions to clients worldwide. Today, we are helping companies take on some of the world’s most critical and complex issues, including retirement funding and healthcare financing, risk management and regulatory compliance, data analytics and business transformation. Through a team of professionals ranging from actuaries to clinicians, technology specialists to plan administrators, we offer unparalleled expertise in employee benefits, investment consulting, healthcare, life insurance and financial services, and property and casualty insurance. EQUAL OPPORTUNITY: All qualified applicants will receive consideration for employment, without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.