Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!Job DetailsPosition Summary: Cencora seeks an attorney with significant experience in the areas of data governance, privacy, cybersecurity, and emerging artificial intelligence issues to provide strategic legal advice in addressing Cencora's data risk management and innovation priorities. This role will report to the Assistant General Counsel - Data Governance, Privacy, and Cybersecurity and will collaborate with other legal, business, and functional teams across the enterprise. While part of a global team, this particular role will also require expertise in and frequent counseling with regards to US, Canada, and LA-relevant privacy, cybersecurity, and AI laws, regulations, and regulatory/self-regulatory guidance. Significant analysis and legal advice regarding HIPAA and state-relevant healthcare privacy laws and regulations is also a routine expectation for this role. This position thus requires a lawyer with strong analytical skills and the ability to deliver business-oriented, pragmatic, and efficient legal services in a fast-paced, changing technology environment. The successful candidate will also have strong prioritization and project management skills. This suite of skills includes the ability to provide strategic insights to compliance partners tasked with operationalizing privacy and cybersecurity compliance along with developing governance mechanisms for emerging areas of data and technology law. Primary Duties and Responsibilities:- Advise clients on complex legal, regulatory, and policy questions in the areas of data privacy and protection (including federal and state laws and regulations in the general privacy and healthcare arena, particularly focusing on HIPAA, state privacy laws, Canadian provincial laws, etc.), cybersecurity (e.g., CMMC, NIST cybersecurity frameworks, ISO 27001, HITRUST, etc.), and artificial intelligence (including the NIST RMF, the growing body of state and local AI laws, etc.).- Draft, review, and/or negotiate various contracts, including healthcare- and HIPAA-related agreements and contract provisions dealing with privacy, cybersecurity, AI, and other data protection and operational continuity issues. This work also envisions creating template agreements and associated playbooks to expedite contracting issue management in privacy, cyber, and AI law arenas.- Assess and help mitigate harms associated with privacy and cybersecurity incidents through clear communication, disciplined issue escalation, and partnership with other privacy, cybersecurity, and business stakeholders.- Conduct reviews of new customer- and/or vendor- related technology proposals entailing privacy, cyber, and/or AI risks and offer pragmatic, creative solutions reflecting privacy and security by design concepts.- Demonstrate strong and calm decision-making capability and communication skills in the midst of time-sensitive incidents or high-risk business proposals requiring escalation to senior levels of leadership.- Manage competing projects and reviews with agility, effectively multi-tasking and prioritizing work to ensure that high value and/or high-risk business needs and projects are addressed in an efficient and strategically stream-lined way.Experience and Education Requirements** A minimum of 5-7 years of experience as a lawyer, particularly with a focus on privacy, data governance and cybersecurity substantive areas. Prior in-house experience and cross-functional collaboration working for a multi-national company/companies is preferred. Additionally, substantial legal work with or for healthcare compani
