Essential Duties and Responsibilities:
- Distill complex, fast-evolving technology, cybersecurity, data-privacy, AI/ML, and IP laws and regulations worldwide into clear, actionable guidance for business leaders and product teams.
- Serve as a cross-functional leader defining technology & AI governance principles and implementing scalable processes for data governance, cybersecurity controls, privacy, consumer protection, trust & safety, and IP management.
- Identify and communicate legal, regulatory, and reputational risks for existing and planned technology initiatives—including AI/ML development, cloud deployments, SaaS integrations, and cybersecurity programs—and craft pragmatic mitigation strategies.
- Drive enterprise guidelines, training, and document controls to ensure all technology solutions (AI/ML, software, networks, data analytics, and IoT) meet company and legal/industry standards.
- Monitor and communicate global legislative trends and best practices in technology, cybersecurity, data-privacy, and AI/ML governance to keep products and services compliant as laws evolve. (20%)
- Provide timely advice on legal, regulatory, and governance questions for software, cloud, cybersecurity, and AI/ML solutions. Review technology contracts, subcontracts, and licenses to flag privacy, IP, cybersecurity, and compliance obligations and negotiate risk-appropriate terms.
- Deliver engaging trainings on emerging technology-law topics—AI/ML policy, cybersecurity regulations, privacy by design, IP strategy, and contract risk—to executives, engineers, and business stakeholders.
- Partner with outside counsel, cybersecurity experts, IP counsel, and academic thought leaders to refine governance frameworks and proactively address multi-disciplinary technology risks.
- Respond to inquiries on legal, regulatory, and governance matters related to development and use of AI/ML systems, or other similar technologies.
- Assist teams on FAR/DFARS flow downs, FedRAMP ATO pathways, FISMA baselines, state cooperative contracts, and cybersecurity supply chain (C SCRM) obligations.
- Use large language model platforms (e.g. Harvey, CoCounsel, MS Copilot or GPT Enterprise) for clause comparison and redlining.
- Juris Doctor (JD) from an accredited law school and admission to one or more State Bars is required.
- 8+ of technology-focused legal practice (in-house or law-firm) with demonstrable experience across cybersecurity, data-privacy, IP/technology transactions, and AI/ML governance.
Preferred Skills and Qualifications:
• Background in US, UK, EU, and Canadian technology & cybersecurity regulations (e.g., NIS2, EU AI Act, UK Online Safety Act) and related AI/ML or sector-specific rules. • Expert knowledge of US federal and state privacy + cybersecurity frameworks (HIPAA, GLBA, CISA incident-reporting rules, FTC data-security orders, state consumer-privacy and breach-notification laws). • Experience educating internal stakeholders, translating complex concepts, and advising on risk-mitigation strategies. • Proficiency in using Generative AI to streamline work and deliver highly effective and efficient outcomes. • Background in Government Contracts (State and Federal) preferred but not required. • Strong research, analytical, communication, technical-fluency, and drafting skills. • Ability to navigate legal and regulatory ambiguity and explain impacts in plain language. • Superior interpersonal and cross-functional collaboration skills, with a proven record of consensus building. • Motivated self-starter who can juggle multiple priorities in a dynamic environment. • Ability to engage and influence senior leaders (internal and external to the organization). • Proven ability to draft, redline, and close complex technology agreements including MSAs, SOWs, EULAs, DPAs, SLAs, reseller/OEM, escrow, and source code licenses, negotiating SaaS, PaaS, IaaS agreements. • Skilled in managing end-to-end negotiations using structured issue lists, playbook fallback positions, and clause library precedents through to executive signature. • Experience tracking deal metrics such as cycle time, concessions, and risk flags, with a focus on continuously refining templates and improving negotiation efficiency.
EEO Statement Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics. Pay Transparency Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.