Corporate Counsel, Information Security & Privacy
Massachusetts, United StatesCorporate Legal Counsel
Position SummaryWe are seeking a Legal Counsel with a focus on information security, data privacy, and compliance to join our global legal team.The position is collaborative and customer-facing, working closely with commercial legal, information security, sales, and technical teams. The primary responsibility is negotiating security, privacy, and compliance-related provisions in customer agreements, particularly in the context of software development, delivery, and professional services in the Telco/ISP industry, with customers across the globe, primarily in North America, Europe Middle East, and APAC.This role is intended for an experienced individual contributor with strong hands-on experience in information security, privacy, and compliance.
Role and Responsibilities
- Negotiate and advise on information security, data protection, and compliance provisions in customer contracts, including MSAs, DPAs, Support and Maintenance agreements, and security annexes.
- Act as a legal liaison between commercial legal, information security, sales, compliance, and other corporate and internal stakeholders.
- Serve as a customer-facing legal contact for security, privacy, data protection, and related compliance discussions during contract negotiations and the project lifetime.
- Support contracting for Telco/ISP software and professional services, including AI/SaaS/cloud and managed services offerings.
- Advise internal teams on regulatory, contractual, and customer-specific requirements related to data protection, cybersecurity, and related compliance.
- Ensure contractual commitments align with internal security controls, policies, and related compliance frameworks.
- Track and interpret relevant global laws, regulations, and industry standards impacting telecom customers.
- Contribute to the development and maintenance of standard contractual language, negotiation playbooks, and internal guidance.
Skills and Experience Required
- 5–10 years of relevant legal experience focusing on information security, privacy, and compliance.
- Demonstrated experience negotiating security and privacy terms in software and/or services agreements.
- Strong understanding of data protection and security frameworks such as GDPR, ISO 27001, SOC 2, NIST, and similar standards.
- Ability to communicate complex legal and regulatory concepts clearly to technical, sales, and customer stakeholders.
- Experience working in a global, cross-functional environment
- Experience in the telecommunications industry or supporting telecom operators, vendors, or service providers
- In-house or firm legal experience at a technology, telecom, SaaS, or managed services company
- Familiarity with regional regulatory requirements across North America, Europe, the Middle East, and APAC
- Exposure to telecom-related regulatory or security obligations (e.g., critical infrastructure, lawful access, data localization, network security)
- Strong negotiation and drafting skills with a practical, business-oriented approach.
- Ability to balance legal risk with commercial objectives.
- Excellent stakeholder management and communication skills.
- Comfortable operating in a customer-facing and fast-paced commercial environment.
Education
- Law degree from an accredited institution and authorization to practice law in at least one jurisdiction.
Base Salary Range:$200,00 - $250,000, plus bonus
#LI-GP1