LinkedIn Local Pays Basque Hiring! Full Time Data Privacy Officer - Cybersecurity Counsel in - Ricebowl

The Data Privacy Officer / Cybersecurity Counsel is responsible for overseeing data protection, privacy compliance, cybersecurity governance, and legal risk management initiatives to ensure organizational compliance with data privacy regulations and information security standards. This role focuses on privacy frameworks, cybersecurity advisory, regulatory compliance, incident response coordination, and governance activities while supporting secure and compliant business operations.

Key responsibilities include:

• Developing and managing data privacy, cybersecurity, and information governance programs
• Advising on compliance with data protection regulations, cybersecurity laws, and organizational security policies
• Conducting privacy impact assessments, cybersecurity risk evaluations, and compliance reviews
• Collaborating with IT, legal, compliance, HR, and business teams on data protection and security initiatives
• Supporting incident response, breach management, and cybersecurity investigation activities
• Drafting and reviewing privacy policies, data processing agreements, and cybersecurity-related legal documentation
• Monitoring regulatory developments, security standards, and operational risks related to data privacy and cyber governance
• Managing third-party vendor assessments, data sharing agreements, and cybersecurity compliance activities
• Preparing compliance reports, risk analysis, and governance updates for executive leadership review
• Supporting employee awareness programs, cybersecurity training, and privacy governance initiatives
• Driving process improvement, security optimization, and operational risk mitigation programs
• Ensuring confidentiality, ethical handling of data, and compliance with international privacy standards

• Bachelor’s degree in Law, Cybersecurity, Information Technology, Business Administration, or related field
• Professional certifications such as CIPP, CIPM, CISSP, CISM, or equivalent are advantageous
• 4–10 years of experience in data privacy, cybersecurity governance, legal compliance, risk management, or information security roles
• Strong understanding of privacy regulations, cybersecurity frameworks, and data governance practices
• Experience handling compliance reviews, incident response, and cybersecurity risk assessments
• Excellent analytical, problem-solving, and stakeholder management abilities
• Strong communication, policy drafting, and legal advisory skills
• Familiarity with GDPR, PDPA, HIPAA, ISO 27001, NIST, or other regulatory/security frameworks is advantageous
• Ability to manage multiple compliance priorities and organizational security initiatives effectively
• Experience in technology, finance, healthcare, telecommunications, SaaS, or multinational corporate environments is an advantage

• Data privacy and cybersecurity governance
• Regulatory compliance and risk management
• Incident response and security advisory
• Policy drafting and legal documentation
• Communication and stakeholder collaboration
• Analytical and strategic problem-solving
• Information governance and operational security
• Confidentiality and ethical compliance