Job Description:
We are seeking a seasoned and strategic Director, Data Protection & Privacy Counsel to lead our global legal functions for Data Protection, AI, Privacy and Cybersecurity. This role will be instrumental in shaping and executing our data protection strategy, ensuring compliance with evolving AI, data protection and global privacy laws, and enabling innovation across our products and services. You will serve as a trusted advisor to senior leadership and collaborate cross-functionally with product, engineering, security, and compliance teams.
What You'll Be Doing:
Lead the development, implementation, and oversight of the company’s global privacy and data governance programing.
Provide expert legal advice on privacy, data protection, AI, cybersecurity, and emerging technologies.
Monitor and interpret global privacy laws (e.g., GDPR, CCPA/CPRA, PIPL, HIPAA, ePrivacy Directive) and advise on business impact.
Draft, negotiate, and maintain data protection agreements, privacy terms, and contractual provisions.
Guide privacy-by-design and data governance principles across product development and business operations.
Oversee privacy impact assessments (PIAs), data protection impact assessments (DPIAs), and incident response protocols. Key member of cyber incident response team.
Develop and deliver privacy training and awareness programs for internal stakeholders.
Represent the company in regulatory matters, audits, and external counsel engagements.
Collaborate with compliance, security, and risk teams to align privacy practices with business goals.
Lead and mentor a team of privacy professionals and legal staff.
What We Are Looking For
J.D. from an accredited law school and active membership in at least one U.S. state bar (CO bar or ability for reciprocity preferred).
7-10 years of legal experience, including in-house and/or law firm roles focused on privacy and data protection.
CIPP/E, CIPP/US, CIPM, or similar certification required.
Deep knowledge of European and U.S. and other international privacy laws and frameworks.
Experience advising on privacy issues in SaaS or consumer tech industries.
Strong contract negotiation and drafting skills.
Demonstrated ability to lead cross-functional initiatives and manage complex legal issues.
Excellent judgment, communication skills, and business acumen.
Ability to work independently and collaboratively in a fast-paced environment.
Work Arrangement:
CO Hybrid: Tuesday, Wednesday, Thursday required office days for Dry Creek/Panorama Office sites; Monday, Friday-work from home.
GA Hybrid: Tuesday, Wednesday, Thursday required office days for Sanctuary Parkway Office site; Monday, Friday-work from home.
What’s In It For You :
At Arrow, we recognize that financial rewards and great benefits are important aspects of an ideal job. That’s why we offer competitive financial compensation, including various compensation plans and a solid benefits package.
Medical, Dental, Vision Insurance
401k, With Matching Contributions
Short-Term/Long-Term Disability Insurance
Health Savings Account (HSA)/Health Reimbursement Account (HRA) Options
Paid Time Off (including sick, holiday, vacation, etc.)
Tuition Reimbursement
Growth Opportunities
Discounted RTD Passes, with convenient office location off RTD Light Rail (Dry Creek Exit)
On-site Café with Catering Option for Busy Lifestyles
24/7/365 On-site Gym and Lockers, Free for Use to All Employees!
Bike Racks
And more!
#LI-MV1
Annual Hiring Range/Hourly Rate:$157,500.00 - $247,500.00Actual compensation offer to candidate may vary from posted hiring range based upon geographic location, work experience, education, and/or skill level. The pay ratio between base pay and target incentive (if applicable) will be finalized at offer.
Location:US-CO-Denver, Colorado (Panorama Arrow Building)
Time Type:Full time
Job Category:LegalEEO Statement:
Arrow is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, gender, age, sexual orientation, gender identity, national origin, veteran or disability status. (Arrow EEO/AAP policy)
We anticipate this requisition will be open for a minimum of five days, though it may be open for a longer period of time. We encourage your prompt application.
In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.