Privacy Counsel

Hungry, Humble, Honest, with Heart.

The Opportunity

At Nutanix, we’re not just building leading hybrid multicloud technology, we’re redefining how enterprises harness the power of data, AI, and automation. As a Privacy Counsel, you’ll be at the forefront of shaping the future of privacy and responsible AI in a dynamic, fast-paced environment. This is your opportunity to join a legal team known for driving change, embracing bold ideas, and architecting scalable, forward-thinking privacy and AI programs.

We’re looking for a strategic thinker and collaborative team player who thrives on cutting-edge technology, loves solving complex challenges, and is passionate about building trust. If you’re ready to make a meaningful impact and grow with a company that values curiosity, creativity, and innovation—this is the role for you.

About the Team

You will join the dynamic Legal team at Nutanix, a group known for being a competitive advantage to Nutanix. This team's culture is centered around curiosity, collaboration, and empowerment, where team members are encouraged to innovate and drive impactful solutions while adhering to privacy standards. 

You will report to the Director, Privacy Legal, who is known for a collaborative and empowering leadership style, valuing open communication and team input to guide strategic initiatives. This position offers a hybrid work setup, requiring you to work from the office in Durham, NC a few days per week, providing the flexibility to balance on-site work effectively.

This role may involve approximately 5-10% travel for team gatherings to foster team collaboration.

Your Role

• Lead with Vision: Drive global privacy, AI, and data governance initiatives that shape how Nutanix builds and delivers cutting-edge technology.
• Be a Trusted Advisor: Partner cross-functionally with product, engineering, HR, marketing, procurement, and compliance teams to embed privacy into everything we do.
• Innovate with Purpose: Design and implement scalable privacy-by-design frameworks, AI risk assessments, and governance tools that enable responsible innovation and minimize risk.
• Empower Through Enablement: Create engaging training, playbooks, and resources that de-mystify privacy and empower teams to make informed decisions.
• Navigate Complexity: Provide strategic legal guidance on evolving U.S. and global privacy laws, emerging AI regulations, and ethical data use.
• Drive Operational Excellence: Support audits (such as ISO 27001, 27701, and SOC II), Records of Processing and Data Mapping, PIAs, DPIAs, AI risk assessments, DSARs, and incident response with precision and agility.

What You Will Bring

• J.D. from an accredited law school and admission to practice law in at least one U.S. jurisdiction
• 5+ years of relevant privacy law experience in-house and/or at a top-tier law firm, ideally within enterprise technology
• Deep expertise in U.S. and international privacy laws and frameworks, AI governance, and data ethics, including trends and practical applications related to each
• Proven ability to lead cross-functional initiatives and influence stakeholders at all levels
• Strong understanding of cloud computing, software development, and data lifecycle management
• Exceptional communication skills and a knack for translating legal complexity into actionable guidance
• Demonstrated project management and prioritization skills to develop, launch, and maintain processes and procedures for privacy compliance and data governance, both autonomously and as part of a team in a fast-paced environment
• Demonstrated expertise in conducting privacy and AI risk assessments, data mapping, and records of processing activities
• In-depth expertise in understanding, drafting, and negotiating privacy and AI contract provisions, including analyzing the potential impact and risks to business operations 
• Strategic problem-solving skills with excelling legal and business judgment and the flexibility to take on a variety of tasks and challenges
• A growth mindset, superior work ethic, sense of humor, and passion for building something that matters

Not Required, but Highly Desired:  Experience with privacy tech tools like OneTrust, Experience with works councils, Familiarity with DORA, security principles, and the application of privacy issues to employment law, AI legal and ethical advisory experience, One or more IAPP or other industry-recognized privacy or security certification(s) (such as CIPP/US, CIPT, or similar), Internal and external audit experience (ISO/SOC), Fluency in  foreign languages are a plus

Work Arrangement

Hybrid: This role operates in a hybrid capacity, blending the benefits of remote work with the advantages of in-person collaboration. For most roles, that will mean coming into an office a minimum of 3 days per week, however certain roles and/or teams may require more frequent in-office presence. Additional team-specific guidance and norms will be provided by your manager.

The pay range for this position at commencement of employment is expected to be between USD $ 160,000 and USD $ 320,400 per year.

However, base pay offered may vary depending on multiple individualized factors, including market location, job-related knowledge, skills, and experience. The total compensation package for this position may also include other elements, including a sign-on bonus, restricted stock units, and discretionary awards in addition to a full range of medical, financial, and/or other benefits (including 401(k) eligibility and various paid time off benefits, such as vacation, sick time, and parental leave), dependent on the position offered. Details of participation in these benefit plans will be provided if an employee receives an offer of employment.

If hired, employee will be in an “at-will position” and the Company reserves the right to modify base salary (as well as any other discretionary payment or compensation program) at any time, including for reasons related to individual performance, Company or individual department/team performance, and market factors. Our application deadline is 40 days from the date of posting. In good faith, the posting may be removed prior to this date if the position is filled or extended in good faith.

--