Why Ryan?
Global Award-Winning Culture
Flexible Work Environment
Generous Paid Time Off
World-Class Benefits and Compensation
Rapid Growth Opportunities
Company Sponsored Two-Way Transportation
Exponential Career Growth
**PLEASE NOTE: THIS HYBRID POSITION REQUIRES THREE (3) DAYS/WEEK WORKING IN OUR HYDERBAD OFFICE**
This Privacy Compliance Paralegal position is responsible for supporting the Firm’s global privacy operations and compliance program. The role focuses on administering privacy governance documentation, managing audit readiness, and coordinating privacy workflows across multiple jurisdictions, including the U.S., UK/EU, Brazil, Singapore, and India. The Privacy Compliance Paralegal will operationalize legal guidance provided by the VP, Cybersecurity, Data Governance, and Technology Law and support the Firm’s expanding regulatory obligations. This position reports directly to the VP, Cybersecurity, Data Governance, and Technology Law (USA).
Duties:
Developing and maintaining Records of Processing Activities (ROPAs), subprocessor inventories, and cross-border data transfer documentation across multiple jurisdictions.
Managing and administering HIPAA privacy compliance documentation, including Business Associate Agreements (BAAs), risk assessments, policy documentation, and annual compliance reviews.
Preparing and organizing documentation for HIPAA and other privacy audits, including evidence collection, metrics tracking, and remediation follow-up.
Maintaining privacy incident logs, data subject request registers, and compliance reporting dashboards, including notification tracking and multi-jurisdiction reporting timelines.
Managing Data Protection Agreements (DPAs), transfer impact assessments, and vendor privacy lifecycle documentation, including initial risk screenings and coordination of redlines for legal review.
Maintaining data subject request registers and supporting timely responses under GDPR, CCPA, and other applicable privacy laws.
Monitoring regulatory developments affecting operational compliance, including GDPR, CCPA and other U.S. state laws, LGPD, DPDP Act, and related frameworks.
Assisting in the maintenance of privacy notices, cookie disclosures, and transparency documentation to ensure alignment with evolving regulatory requirements.
Supporting the development and implementation of privacy program processes and performance metrics.
Education:
Bachelor’s degree required
Paralegal Certificate preferred
Minimum Experience Level:
Five (5) or more years of experience supporting compliance, privacy operations, legal operations, or governance functions within a corporate environment. Experience in a technology, SaaS, consulting, or professional services environment preferred.
Required Skills:
Active CIPP certification required (CIPP/E or CIPP/US).
Demonstrated experience supporting HIPAA Privacy Rule compliance and BAA administration.
Strong documentation discipline and attention to detail.
Ability to manage multiple compliance workflows simultaneously.
Project management and organizational skills.
Pro-active communication and ability to drive matters to closure.
Working knowledge of global privacy frameworks, including GDPR and U.S. state privacy laws.
Comfort operating in a Global Capability Center model with U.S.-based leadership.
Preferred Skills:
CIPM certification preferred.
Familiarity with privacy management tools such as OneTrust or similar GRC platforms.
Experience maintaining ROPAs, DPIAs, TIAs, and vendor privacy documentation.
Work Environment:
This is a hybrid role
based in Hyderabad, India,
with at least three (3) days per week working in the office.
Interaction with employees at all levels, external technology vendors, and outside law firms.
Travel requirement: less than 5%
Equal Opportunity Employer: disability/veteran
