GitHub is looking for a highly skilled and experienced privacy and data protection professional to join its growing Corporate, External, and Legal Affairs (CELA) team. GitHub is looking for a privacy leader with the energy and passion to lead our Privacy team in implementing our privacy and data protection program in a manner that always puts our developer customers first, safeguards trust in our platform, and leads our industry on privacy.

The Head of Privacy is responsible for designing, operationalizing, and overseeing GitHub’s Privacy Program. The Head of Privacy is also responsible for managing, growing, and developing our team of privacy professionals (legal and non-legal personnel), who are responsible for influencing the privacy awareness and privacy-impacting behaviors of all 3000 Hubbers

Our company

GitHub is the world’s largest platform for software developers and software development. Over 80 million people use GitHub to build amazing things together, and trust GitHub to host their software code, their personal information, and their collaboration with others. GitHub makes it easier for developers to work together, solve challenging problems, and create new technologies to advance human progress.

GitHub also continues to grow its product innovation, user base, and global presence. GitHub is the home for open-source software developers and is becoming more social to help developers easily communicate, collaborate, and connect with each other. With software development becoming a vital function at every organization on the planet, larger enterprise customers and the public sector are also increasingly turning to GitHub to participate in developer innovation on the platform and digitally transform their own internal software development.

GitHub's impact and customers are global, and its vision is to be the home for all developers. Earning and maintaining developer trust is critical to this vision and our business, and this includes elevating developer privacy in our company's policies, practices, and products.

Our team

GitHub CELA is an innovative team of professionals, located across the U.S. and around the world, who collaborate closely together and with the business. The CELA team operates on the cutting edge of legal practice, developer policy, and social impact. Like the rest of the software world, we use GitHub itself to work more collaboratively, transparently, and efficiently. We believe strongly in working from first principles, practicing kindness and helping make each other and the team better, and being careful stewards of the unique GitHub culture we are developing together. We value diversity of thought and experience, excellence and rigor in our work, a commitment to growth mindset and continuous improvement, developing a deep understanding of our products and services, intellectual curiosity, and innovation in our practice. We require strong bias for driving results, and a commitment to putting developers first and building customer trust in our platform.

Responsibilities

You will bring your experiences of leading legal and operational teams that work together to build and implement a strategic and comprehensive privacy program. You will guide your team to create and implement privacy policies and processes, and advise senior leaders in our business and software engineering teams on the full spectrum of privacy and data protection issues facing software platforms and social media companies like GitHub.  Our ideal candidate has deep knowledge of current privacy and data protection issues that our users - whether individual developers, enterprise customers, or government organizations - are likely focused on when considering or using our offerings. You will apply this experience and customer-centric thinking to setting privacy strategy for GitHub, getting ahead of new developments in global privacy and data protection law, and continuing to build out a privacy compliance program for GitHub offerings, newly acquired companies, and our internal systems. Finally, and importantly, you should also have a passion for people management and fostering professional growth for your reports.

Your primary responsibilities will be to:

  • Serve as GitHub’s leader for privacy compliance, managing a team that ensures that GitHub’s privacy policies, requirements, and processes meet or exceed industry standards.
  • Stand up and lead the Privacy team in the legal and operational aspects of GitHub’s privacy program, working with organization senior management in the business, engineering, and security teams to establish governance for the privacy program, and with embedded privacy program managers and privacy engineers in these teams to review privacy implications of strategic initiatives and drive desired privacy outcomes throughout the GitHub organization.
  • Develop scalable resources to help GitHub’s legal teams and Privacy Program Managers to oversee privacy reviews of product launches and business practices, and focus on opportunities to improve GitHub’s policies and procedures.
  • Oversee development and delivery of ongoing privacy training to GitHub employees.
  • Manage GitHub’s privacy and data protection compliance to ensure GitHub stays compliant with emerging policies, regulations, and industry practices.
  • Deliver strategic privacy legal advice and insights to the GitHub executive team
  • Work closely with others on the CELA team on privacy and security incidents, government engagements, law enforcement demands, and internal investigations
  • Provide privacy legal expertise to (a) the Product Legal team on product offerings, (b) the Commercial Legal team on customer engagements, and (c) the Policy team on privacy-related public policy for developers and software development
  • Stay on top of applicable global privacy laws, regulatory developments, and accreditation standards and translate them into clear, concise, and actionable guidance for business and engineering teams.
  • Engage with the privacy legal community, including coordinating with our privacy colleagues at Microsoft and LinkedIn, to understand evolving issues and to help GitHub provide an industry leading privacy program for developers and our customers.
  • Lead and cultivate professional growth of a small but growing team of privacy professionals, including fostering an environment where members of your team are empowered to do the best work of their lives.

Minimum Qualifications

  • At least 10 years’ experience focusing on global privacy/data protection law
  • At least five years experience in developing and managing both legal and operational aspects of privacy compliance programs for technology companies
  • A wonkish interest in global privacy and data protection law, as well as technology law and policy more broadly
  • A passion for people management, strong management skills, and a commitment to fostering diversity, inclusion, and a strong sense of belonging across the CELA team
  • A commitment to provide high quality client service and a strong desire to build trusted advisor relationships with key clients and executives
  • A joy and passion for drafting policies, advice, and recommendations that are clear, concise, and human readable, including the ability to simplify complex legal and technical scenarios
  • High standards of integrity, a commitment to personal excellence, strong judgment, and intellectual curiosity that takes your understanding, work product and client relationships to the next level
  • Demonstrated growth mindset and the ability to thrive in a dynamic, fast-paced, and remote-first workplace
  • Legal authorization to work in the United States

Preferred qualifications 

  • JD or equivalent, with five + years providing privacy counseling
  • A license to practice law in the United States
  • IAPP certification (CIPP-EU, CIPP-US, CIPM, CIPT, or similar)
  • Strong understanding of software technology and cloud services, associated business models, and technology industry trends
  • Software engineering skills aren't required, but a basic understanding of software coding is a definite plus. GitHub CELA has technical acumen, deep understanding of the GitHub product, platform, and ecosystem, and is able to quickly learn new business and technology concepts

(Colorado only*) Minimum salary of $122,500 to maximum $260,000 + bonus + equity + benefits.
· Note: Disclosure as required by sb19-085 (8-5-20) of the minimum salary compensation for this role when being hired in Colorado. 

Who We Are:

GitHub is the developer company. We make it easier for developers to be developers: to work together, to solve challenging problems, and to create the world’s most important technologies. We foster a collaborative community that can come together—as individuals and in teams—to create the future of software and make a difference in the world.

Leadership Principles:

Customer Obsessed - Trust by Default - Ship to Learn - Own the Outcome - Growth Mindset - Global Product, Global Team - Anything is Possible - Practice Kindness

Why You Should Join:

At GitHub, we constantly strive to create an environment that allows our employees (Hubbers) to do the best work of their lives. We've designed one of the coolest workspaces in San Francisco (HQ), where many Hubbers work, snack, and create daily. The rest of our Hubbers work remotely around the globe. Check out an updated list of where we can hire here: https://github.com/about/careers/remote

We are also committed to keeping Hubbers healthy, motivated, focused and creative. We've designed our top-notch benefits program with these goals in mind. In a nutshell, we've built a place where we truly love working, we think you will too.

GitHub is made up of people from a wide variety of backgrounds and lifestyles. We embrace diversity and invite applications from people of all walks of life. We don't discriminate against employees or applicants based on gender identity or expression, sexual orientation, race, religion, age, national origin, citizenship, disability, pregnancy status, veteran status, or any other differences. Also, if you have a disability, please let us know if there's any way we can make the interview process better for you; we're happy to accommodate!

Please note that benefits vary by country. If you have any questions, please don't hesitate to ask your Talent Partner.

Apply for this Job

* Required
resume chosen  
(File types: pdf, doc, docx, txt, rtf)
cover_letter chosen  
(File types: pdf, doc, docx, txt, rtf)
When autocomplete results are available use up and down arrows to review
+ Add Another Education


Voluntary Self-Identification (US)

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

GitHub is committed to non-discrimination and regardless of whether an employee chooses to self-identify their ethnicity or race, no negative consequences will occur due to that decision.


Veteran Status

 

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Disclosure of this information is completely voluntary and refusing to provide it will not subject you to any adverse treatment. The information will be used only in ways that are consistent with Section 4212 and will be kept confidential.


U.S. Armed Forces Status

In addition to our affirmative action obligations for protected veterans, for our Diversity efforts, Microsoft offers you the opportunity to share on a voluntary basis whether you have served in the U.S. military (including the Reserves and National Guard).


Why are you being asked to complete this form?

We are a federal contractor or subcontractor required by law to provide equal employment opportunity to qualified people with disabilities. We are also required to measure our progress toward having at least 7% of our workforce be individuals with disabilities. To do this, we must ask applicants and employees if they have a disability or have ever had a disability. Because a person may become disabled at any time, we ask all of our employees to update their information at least every five years.

Identifying yourself as an individual with a disability is voluntary, and we hope that you will choose to do so. Your answer will be maintained confidentially and not be seen by selecting officials or anyone else involved in making personnel decisions. Completing the form will not negatively impact you in any way, regardless of whether you have self-identified in the past. For more information about this form or the equal employment obligations of federal contractors under Section 503 of the Rehabilitation Act, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at  http://www.dol.gov/ofccp.


How do you know if you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition. Disabilities include, but are not limited to:

  • Autism
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, or HIV/AIDS
  • Blind or low vision
  • Cancer
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or hard of hearing
  • Depression or anxiety
  • Diabetes
  • Epilepsy
  • Gastrointestinal disorders, for example, Crohn's Disease, or irritable bowel syndrome
  • Intellectual disability
  • Missing limbs or partially missing limbs
  • Nervous system condition for example, migraine headaches, Parkinson’s disease, or Multiple sclerosis (MS)
  • Psychiatric condition, for example, bipolar disorder, schizophrenia, PTSD, or major depression

1Section 503 of the Rehabilitation Act of 1973, as amended. For more information about this form or the equal employment obligations of Federal contractors, visit the U.S. Department of Labor's Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

Gender (Select one) *



Ethnicity/Race (Select one) *








Veteran Status (Select one) *



U.S. Armed Forces Status (Select one) *



Voluntary Self-Identification of Disability (Select one) *