Associate Manager, Global Privacy and Data Protection

About The Position

Requirements

• Deep understanding of general privacy principles and major data protection laws across the U.S. and Canada.
• Proven track record in managing privacy issues, compliance processes, and data inventories.
• Advanced user of the OneTrust platform for building and preparing data inventories; skilled at rapidly mastering new online compliance tools.
• Strong analytical mindset with a passion for conducting in-depth privacy research and data analysis.
• Skilled in planning and prioritizing multiple complex projects simultaneously within a fast-paced, dynamic environment.
• Extensive experience supporting and leading cross-functional teams to achieve high-level compliance goals.
• Ability to influence and manage cross-functional stakeholders.
• Strong oral and written communication skills, capable of translating complex privacy concepts for various audiences.
• Self-motivated with a commitment to continuous improvement and exceeding organizational expectations.
• Highly organized with a focused work ethic and the ability to maintain productivity in a remote setting.
• Bachelor’s degree plus 5 years of audit, privacy, legal, compliance or other relevant experience in life sciences or combination of education and relevant experience.

Nice To Haves

• IAPP- CIPP certificate with any designation
• Masters degree/Law degree or paralegal certification preferred.

Responsibilities

• Lead the day-to-day administrative operations of the privacy program, including strategic meeting planning, agenda development, and documentation of action items.
• Manage the end-to-end Data Protection Impact Assessment (DPIA) process, evaluating new business initiatives and technologies to ensure 'privacy by design' and regulatory compliance.
• Serve as a subject matter expert for the OneTrust GRC platform, utilizing the tool to automate workflows, manage data mapping, and track tasks.
• Act as a primary point of contact for triaging Data Subject Access Requests (DSARs) and potential privacy incidents, ensuring timely investigation and resolution.
• Aggregate and present privacy metrics and Key Performance Indicators (KPIs) to leadership to track program health and maturity.
• Maintain and update the internal Privacy Intranet site, ensuring employees have access to current policies, training materials, and compliance resources.
• Execute additional privacy-related tasks and special projects as assigned by management.

Benefits

• medical, dental, vision, and retirement savings plans
• short- and long-term incentives