StorageCraft Technology CorporationISO/Associate General Counsel
Jan. 2013 - Dec. 2016Draper, UtahServed as the company expert on information security and privacy matters regarding the secure storage, availability, integrity, and confidentiality of data, including personally identifiable information, obtained from employees, partners, customers, leads and other third parties. Provided legal services to the company in a variety of legal areas including litigation, human resources, insurance, compliance, and intellectual property. Drafted, led, and implemented global data privacy and security policies and procedures. Developed a written information security program for the company. Led discussions with senior management and provided advice and recommendations on matters related to strategic development, risk management and compliance. Advised the company on contractual obligations as well as state, federal and global data privacy and security laws/regulations (such as HIPAA, PCI-DSS, FAR, and the European Directive 95/46/EC) as they related to the company’s products, services, and cloud-based offerings. Assisted the General Counsel in drafting product distribution agreements, managed service provider agreements, and licensing agreements. Negotiated vendor agreements for various business units, including marketing, sales, and engineering.