Privacy Counsel (remote) at CrowdStrike

What you'd actually do

Review, draft, and negotiate Data Processing Agreements (DPAs) with customers.

Conduct privacy-focused vendor onboarding reviews and structured risk assessments.

Identify and assess data protection risks in customer and vendor constellations.

Integrate successfully into existing legal and privacy processes.

Skills

Required

Law degree and qualification to practice in at least one jurisdiction (EU or US preferred).
5-10 years of experience in data protection law (law firm or in-house).
Demonstrated experience reviewing and negotiating Data Processing Agreements.
Strong knowledge of GDPR.
Familiarity with international transfer mechanisms and global privacy frameworks.
Experience supporting vendor onboarding, or privacy questionnaires, and use of privacy management and collaboration platforms (e.g., enterprise privacy governance tools used for RoPA, DPIAs, vendor risk assessments, and regulatory documentation).
Strong technical curiosity and affinity for SaaS, cloud infrastructure, cybersecurity, and AI.
Interest in legal innovation, legal tech, and AI-enabled process optimization.
Excellent written and verbal English skills.
Ability to communicate complex legal issues clearly and pragmatically.
Strong organizational skills and ability to manage competing priorities in a global environment.

Nice to have

CIPP/E, CIPP/US, or similar certification.
Experience in cybersecurity, SaaS, or AI-driven companies.
Experience working in distributed global teams.
Exposure to AI governance frameworks.

What the JD emphasized

AI-related privacy and regulatory questions

Assess privacy implications of AI tools used internally by vendors or embedded in products

AI-driven automation in legal or compliance workflows

AI agents or structured AI tools to reduce repetitive tasks

deploy AI responsibly, ensuring confidentiality, security, and regulatory compliance

AI governance frameworks

As a global leader in cybersecurity, CrowdStrike protects the people, processes and technologies that drive modern organizations. Since 2011, our mission hasn’t changed — we’re here to stop breaches, and we’ve redefined modern security with the world’s most advanced AI-native platform. Our customers span all industries, and they count on CrowdStrike to keep their businesses running, their communities safe and their lives moving forward. We’re also a mission-driven company. We cultivate a culture that gives every CrowdStriker both the flexibility and autonomy to own their careers. We’re always looking to add talented CrowdStrikers to the team who have limitless passion, a relentless focus on innovation and a fanatical commitment to our customers, our community and each other. Ready to join a mission that matters? The future of cybersecurity starts with you.

About the Role:

CrowdStrike is seeking a highly motivated Privacy Counsel to join our global Privacy & Public Policy team.

This role combines commercial contracting, vendor onboarding, AI-related legal assessment, and operational privacy governance. You will work at the intersection of law, cybersecurity, SaaS infrastructure, and emerging AI technologies.

Beyond legal excellence, we are looking for someone who wants to actively contribute to the evolution of our global Privacy Compliance Program — including process optimization, automation, and the responsible integration of AI into legal workflows.

This is a high-impact, cross-functional role within a fast-moving, innovation-driven environment.

What You’ll Do:

1. Customer-Facing Privacy & Contract Negotiation

Review, draft, and negotiate Data Processing Agreements (DPAs) with customers.
Clearly articulate CrowdStrike’s role as a cybersecurity platform provider.
Support customer negotiations relating to international data transfers (SCCs, transfer impact assessments, localization requirements), sub-processor governance and transparency, security measures and audit rights, AI-related privacy and regulatory questions.
Support responding to customer privacy questionnaires and due diligence requests.
Partner with Commercial Legal and Sales to enable efficient deal closure while maintaining compliance integrity.

2. Vendor Onboarding & Sub-Processor Governance

Conduct privacy-focused vendor onboarding reviews and structured risk assessments.
Identify whether vendors qualify as subprocessors.
Review and negotiate vendor-side DPAs and privacy clauses.
Lead structured information gathering to ensure legally compliant onboarding.
Assess privacy implications of AI tools used internally by vendors or embedded in products.
Conduct and document DPIAs and related risk documentation.

3. Privacy Risk Assessment & Compliance Documentation

Identify and assess data protection risks in customer and vendor constellations.
Develop sensible mitigation strategies in collaboration with internal stakeholders and vendors.
Maintain and enhance our register of processing activities (RoPA) and other documentation.
Support ongoing monitoring of global privacy compliance obligations.

4. Process Optimization, Automation & Program Development

We are looking for someone who not only works within established structures — but helps improve them.

Integrate successfully into existing legal and privacy processes.
Identify opportunities to streamline workflows and reduce operational friction.
Design process improvements aligned with our global compliance management system.
Develop structured, scalable workflows that strengthen our privacy operations.
In addition, we are particularly interested in candidates who:
Have explored or implemented AI-driven automation in legal or compliance workflows.
Have designed or experimented with AI agents or structured AI tools to reduce repetitive tasks.
Can identify legally repetitive, structured workstreams suitable for automation.
Understand how to deploy AI responsibly, ensuring confidentiality, security, and regulatory compliance.

We view thoughtful AI integration not as optional innovation — but as part of building the next generation of privacy operations.

What You’ll Need:

Law degree and qualification to practice in at least one jurisdiction (EU or US preferred).
5-10 years of experience in data protection law (law firm or in-house).
Demonstrated experience reviewing and negotiating Data Processing Agreements.
Strong knowledge of GDPR.
Familiarity with international transfer mechanisms and global privacy frameworks.
Experience supporting vendor onboarding, or privacy questionnaires, and use of privacy management and collaboration platforms (e.g., enterprise privacy governance tools used for RoPA, DPIAs, vendor risk assessments, and regulatory documentation).
Strong technical curiosity and affinity for SaaS, cloud infrastructure, cybersecurity, and AI.
Interest in legal innovation, legal tech, and AI-enabled process optimization.
Excellent written and verbal English skills.
Ability to communicate complex legal issues clearly and pragmatically.
Strong organizational skills and ability to manage competing priorities in a global environment.

You Will Be Successful If You:

Understand the commercial importance of DPAs in a processor-based SaaS model.
Can confidently distinguish between controllers, processors, and sub-processors.
Think in systems, workflows, and scalable solutions — not only in legal analysis.
Are comfortable engaging directly with customers and vendors.
Balance innovation with regulatory discipline.
Want to help shape how a modern global privacy team operates.
Are genuinely motivated by CrowdStrike’s mission to stop breaches.

Bonus Points:

CIPP/E, CIPP/US, or similar certification.
Experience in cybersecurity, SaaS, or AI-driven companies.
Experience working in distributed global teams.
Exposure to AI governance frameworks.
Additional language proficiency (e.g., German, French, Spanish, Japanese).

#LI-NA1

#LI-Remote

Benefits of Working at CrowdStrike:

Market leader in compensation and equity awards
Comprehensive physical and mental wellness programs
Competitive vacation and holidays for recharge
Paid parental and adoption leaves
Professional development opportunities for all employees regardless of level or role
Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections
Vibrant office culture with world class amenities
Great Place to Work Certified™ across the globe

CrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.

CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at recruiting@crowdstrike.com for further assistance.

Find out more about your rights as an applicant.

CrowdStrike participates in the E-Verify program.

Notice of E-Verify Participation

Right to Work

CrowdStrike, Inc. is committed to fair and equitable compensation practices. Placement within the pay range is dependent on a variety of factors including, but not limited to, relevant work experience, skills, certifications, job level, supervisory status, and location. The base salary range for this position for all U.S. candidates is $135,000 - $205,000 per year, with eligibility for bonuses, equity grants and a comprehensive benefits package that includes health insurance, 401k and paid time off.

For detailed information about the U.S. benefits package, please click here.

Expected Close Date of Job Posting is:05-25-2026