Apply on Employer Site

Morrison Foerster · 18 hours ago

Privacy & Data Security Analyst

San Francisco, CA

Full-time

Onsite

Mid Level

$164K/yr - $229K/yr

3+ years exp

Morrison Foerster is a law firm that values collaboration and innovation. They are seeking a Privacy & Data Security Analyst to manage day-to-day privacy operations, integrating privacy requirements into security workflows and ensuring compliance with governance initiatives.

Law Practice

Comp. & Benefits

H1B Sponsor Likely

Responsibilities

Operate the Firm’s privacy intake process, including monitoring mailboxes/queues, acknowledging requests, gathering required context, and routing to appropriate reviewers

Track requests through completion with clear ownership, timelines, and closure documentation

Maintain organized records of requests, decisions, approvals, and supporting evidence for audit and client readiness

Escalate novel or high-risk matters to InfoSec and Legal using defined triggers

Coordinate workflow artifacts (DSARs, PIAs, DPIAs, TIAs), ensuring inputs, documentation, approvals, and follow-ups are completed

Support privacy-by-design within Security-by-Design reviews by gathering key inputs (data categories, purpose, retention, sharing, access)

Prepare decision-ready summaries outlining processing context, risk considerations, and required approvals

Promote repeatable standards and playbooks to improve consistency and efficiency

Coordinate privacy components of vendor onboarding and system changes, emphasizing data minimization, appropriate use, retention, and sharing constraints

Partner with Procurement and business stakeholders to gather inputs and document outcomes

Maintain review artifacts and track remediation actions to closure

Route matters to Legal for review/approval when required

Conduct structured data inventory activities using standardized templates

Maintain accurate, defensible processing records as systems, vendors, and processes evolve

Coordinate documentation and evidence for privacy assessments (including DPIAs)

Support audits and client inquiries by organizing and presenting privacy documentation

Coordinate updates to privacy notices and disclosures, including stakeholder input, version control, and Legal review

Maintain repositories of approved language, rationale, and change history

Support maintenance of internal privacy guidance (FAQs, templates, standards)

Coordinate privacy-related inputs for the InfoSec training program (topics, audiences, review requirements)

Track training completion and coverage metrics; prepare summary reporting for leadership

Coordinate Legal review of training content as needed

Support documentation and routing of privacy-related incidents in coordination with InfoSec

Ensure appropriate escalation, tracking, and record retention

Maintain incident documentation for audit and regulatory readiness

Qualification

Privacy-by-design principlesInfoSec/GRC coordinationVendor onboardingMicrosoft 365 proficiencyDocumentation trackingTraining administrationPrivacy certificationsOrganizational skillsClear written communicationCollaboration skills

Required

Bachelor's degree required

3-5 years of experience in privacy, compliance, governance/risk support, InfoSec/GRC coordination, or a similar operational role

Experience managing structured workflows (intake, triage, documentation tracking, and closure) across multiple stakeholders

Strong organizational, documentation, and follow-through skills; able to manage multiple parallel requests and deliverables across stakeholders

Clear, concise written communication, including summaries, decision logs, and audit/client-ready documentation

Sound judgment with appropriate escalation of risks or uncertainties; high discretion in handling sensitive information

Ability to collaborate effectively with business, procurement, security, and compliance teams

Proficiency in Microsoft 365 (Outlook, Teams, SharePoint, Excel) and familiarity with task/ticket tracking and evidence management tools

Working knowledge of privacy-by-design principles (data minimization, appropriate use, retention, transparency, and sharing constraints)

Experience supporting vendor onboarding, system/security reviews, procurement/TPRM processes, and data inventories/ROPA-style records

Experience with training administration and completion reporting, preferably within professional services or regulated environments

Preferred

Privacy and/or Information Security certifications are a plus

Benefits

A variety of options for medical, dental, vision, life and disability coverage to meet the needs of you and your family.

Industry-leading parental leave and family benefits including adoption and fertility treatment options and backup child and elder care.

Global wellness program, including free access to Talkspace and Calm apps.

Annual community service day to make an impact on your community and a birthday holiday just for fun.

Education reimbursement annually.

Dedicated Talent Development team.

Competitive annual profit-sharing contribution.

Company

Morrison Foerster

Glassdoor3.8

Morrison Foerster transforms complexity into advantage.

Founded in 1883

San Francisco, California, US

1001-5000 employees

http://www.mofo.com

H1B Sponsorship

Morrison Foerster has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (7)

2024 (16)

2023 (10)

2022 (21)

2021 (13)

2020 (6)

Funding

Current Stage

Late Stage

Leadership Team

Aaron Fountain

Partner

Aaron Rubin

Partner

Recent News

Crunchbase News

IPO Market Insiders ‘Cautiously Optimistic’ That Current Trickle Will Get Stronger

2024-04-25

bloomberglaw.com

Morrison Foerster’s Global Finance Group Adds New York Partner

2024-04-17

Reuters

Morrison Foerster adds 5-lawyer cybersecurity team with Goodwin hires

2024-04-09

Company data provided by crunchbase