Senior Counsel, Data Privacy, Cybersecurity and Consumer Compliance , NY

Senior Counsel, Data Privacy, Cybersecurity and Consumer Compliance Job Description

The mission of The New York Times is to seek the truth and help people understand the world. That means independent journalism is at the heart of all we do as a company. It’s why we have a world‑renowned newsroom that sends journalists to report on the ground from nearly 160 countries. It’s why we focus deeply on how our readers will experience our journalism, from print to audio to a world‑class digital and app destination.

And it’s why our business strategy centers on making journalism so good that it’s worth paying for.

The New York Times is looking for a highly motivated, collaborative, and experienced senior counsel to join our legal team. Reporting to our Vice President and Chief Privacy Officer, you will play a critical role in supporting our business and operations. You will be part of a team responsible for a wide array of consumer protection, privacy, digital governance, and related product legal matters.

You will be independently responsible for managing a wide array of compliance and contractual matters involving the entire portfolio of New York Times digital products and back‑end platforms. The relevant legal practice areas include data privacy, online safety, cybersecurity, advertising technology, subscription compliance (including pricing, cancellations, and auto‑renewals), consumer protection, marketing laws, and accessibility.

This is a hybrid role with the expectation of three days in‑office at our headquarters at 620 8th Ave.

You will work closely and collaborate with your manager, senior executives, and colleagues throughout the company, including consumer‑facing brand teams such as News, Games, The Athletic, Wirecutter and Cooking, as well as business‑wide Missions and Functions including Growth, Marketing, Product Engineering, Data Platform, App Platforms, New AI Products and Platforms, Cybersecurity, Human Resources, Strategic Sourcing and many more. You will report to the Vice President and Chief Data Privacy Officer, who sits within the Company’s Commercial Business and Legal Affairs group.

• Advise clients, including senior leadership, in consumer‑facing brand teams, as well as business‑wide missions and functions as a subject matter expert on the development, collection, use, transfer, governance, and protection of sensitive data, including personal information, both from a domestic and an international perspective.
• Counsel clients independently in a manner consistent with the Company’s goals and culture.
• Orchestrate and supervise the preparation of risk and data protection impact assessments and records of processing by the data privacy analyst and relevant internal clients.
• Serve as a legal liaison to engineering with respect to privacy tech and advertising tech management and development, including with respect to data inventory, data subject requests, and consent management.
• Serve as a member of the core team, alongside cybersecurity and communications representatives, who handle incident response matters and related legal obligations.
• In coordination with Data, Growth, Technology, and other functions, developing, drafting, and implementing privacy, cybersecurity, subscription, marketing, advertising, and other consumer compliance processes, policies, and procedures; managing privacy policies, terms of use, and self‑regulatory notices across digital properties.
• Develop a wide array of data‑ and consumer protection‑focused legal and compliance policies and procedures in coordination with other members of the Legal department.
• Review, draft, and negotiate the data provisions of a wide variety of commercial agreements.
• Advise internal clients on consumer protection laws, regulations, and best practices, including legal developments related to subscription matters such as renewals, cancellations, and price increases.
• Provide holistic risk advice with a view to the objectives of past and current internal stakeholders, specifically considering emerging legal trends, existing and past business practices and legal advice, company contracts, and public‑facing user interfaces…