Senior Counsel - Data Governance, Privacy, and Cybersecurity - Cencora : Job Details

Our team members are at the heart of everything we do. At Cencora, we are united in our responsibility to create healthier futures, and every person here is essential to us being able to deliver on that purpose. If you want to make a difference at the center of health, come join our innovative company and help us improve the lives of people and animals everywhere. Apply today!Job Details

Position Summary:Cencora seeks an attorney with significant experience in data governance, privacy, cybersecurity, and emerging AI issues to provide strategic legal advice on data risk management and innovation. This role reports to the Assistant General Counsel - Data Governance, Privacy, and Cybersecurity and collaborates with legal, business, and functional teams across the enterprise.The role requires expertise in US, Canada, and LA privacy, cybersecurity, and AI laws, regulations, and guidance, including HIPAA and healthcare privacy laws. The candidate should have strong analytical skills and deliver pragmatic, business-oriented legal services in a fast-paced tech environment, with good prioritization and project management skills.

Primary Duties and Responsibilities:

Advise on legal, regulatory, and policy questions related to data privacy, cybersecurity, and AI, including laws like HIPAA, state privacy laws, Canadian laws, CMMC, NIST frameworks, ISO 27001, HITRUST, and the NIST RMF.

Draft, review, and negotiate contracts, including healthcare and HIPAA-related agreements, and develop templates and playbooks for privacy, cyber, and AI law issues.

Assess and mitigate harms from privacy and cybersecurity incidents through communication and collaboration with stakeholders.

Review technology proposals involving privacy, cyber, and AI risks, and suggest pragmatic solutions with privacy and security by design principles.

Maintain calm and clear decision-making and communication during incidents or high-risk proposals requiring escalation.

Manage multiple projects efficiently, ensuring high-value and high-risk needs are addressed strategically.

Experience and Education Requirements

Minimum 5-7 years of legal experience in privacy, data governance, and cybersecurity, preferably with in-house and multi-national experience, especially in healthcare. Must have a law degree from an accredited school and be admitted to a US state bar. The role is suited for a seasoned professional capable of sophisticated counseling with limited supervision.

Skills, Knowledge, and Ability Requirements:

• Knowledge of privacy, cybersecurity, AI laws across NA and LA, including healthcare laws like HIPAA.
• Ability to communicate themes across jurisdictions for risk management in multi-country tech launches.
• Experience managing outside counsel and liaising with experts and specialists.
• Ability to understand and align legal requirements with evolving business models and technology trends.
• Experience advising senior management with clear risk assessments and solutions.
• Strong soft skills for incident management and risk escalation, projecting calm and confidence.
• Collaborative experience with compliance teams and operational planning.
• Privacy, AI, or security certifications (e.g., CIPP, CIPM, CISSP) are preferred.
• Excellent negotiation, prioritization, multitasking, and client management skills.

What Cencora Offers

We provide competitive compensation, inclusive culture, and resources supporting wellness—physical, emotional, financial, and social. Benefits include healthcare, family support, training, mentorship, employee groups, volunteer activities, and more. Details at

Employment Details

Full-time position with a salary range of $121,000 - $186,230, subject to regional variations. Ranges may be lower or higher depending on location.

Equal Employment Opportunity

Cencora values diversity and provides equal opportunity without discrimination. We support reasonable accommodations for individuals with disabilities. Contact [email protected] for accommodation requests.

#J-18808-Ljbffr