Mid-Level Associate – Health Care & General Privacy Counseling

Locations: California, Washington, D.C., or New York

Position Type: Full-Time | #LI-HYBRID

About the Firm

This highly regarded law firm serves innovative companies in technology, digital health, and life sciences, guiding them through complex privacy, cybersecurity, and regulatory challenges. The firm is widely recognized for its strength in emerging industries—from AI to biotech to social media—and is known for its collaborative culture, free-market staffing model, and emphasis on early associate responsibility and client interaction.

About the Practice

The Privacy & Cybersecurity group is ranked by Chambers and known for advising on cutting-edge issues at the intersection of technology, health care, and consumer data. The team helps clients navigate federal and state privacy laws, develop compliant products and services, and respond to evolving regulatory and cybersecurity threats. Its work spans HIPAA, CCPA, GDPR, and other global privacy frameworks, making it a go-to practice for companies working with sensitive information.

What Associates Say

Associates highlight the practice’s intellectual rigor, strong mentorship, and direct client access, especially with emerging digital health platforms and tech clients. The team fosters a balance of sophisticated work and flexibility, with a reputation for thoughtful leadership and strategic thinking.

Job Description

We are seeking a mid-level associate (4–7 years) with experience in health care privacy and broader data privacy and cybersecurity counseling. This attorney will support a wide range of clients in industries like digital health, AI, fintech, and social media.

Ideal candidates will have knowledge of and experience with:

• U.S. federal and state health privacy laws (HIPAA, CMIA, Washington My Health My Data Act, Nevada SB 370)
• Consumer and general privacy frameworks (GLBA, COPPA, FTC Act, CCPA)
• International regimes like GDPR
• Privacy implications in product development and data use
• Drafting privacy policies, breach notifications, and consent forms
• Negotiating data processing agreements (BAAs, DPAs, DUAs)
• Conducting privacy compliance assessments
• Advising on adtech/privacy (a plus, but not required)

Qualifications:

• JD with strong academic credentials
• 4–7 years of privacy experience (preferably law firm and/or in-house)
• Excellent writing, interpersonal, and analytical skills
• Bar admission in California, New York, or D.C. (or eligibility to sit or waive in)

Compensation & Benefits

• Base salary range: $310,000 – $445,000
• Discretionary bonus based on individual and firm performance
• Comprehensive benefits including medical, dental, vision, HSA/FSA, life insurance, disability, and mental wellness resources

Actual salary may vary based on experience, location, and qualifications. Additional information on bonus eligibility and benefits available upon request.