Senior Privacy Manager

Abbott•Santa Clara, CA

About The Position

As part of the Medical Devices Privacy team in Abbott’s Office of Ethics & Compliance, the Senior Privacy Manager will be responsible for managing the HIPAA compliance program and driving operational excellence across the Medical Devices privacy program. This may include but is not limited to HIPAA compliance reviews, management of incidents and related metrics, focused privacy awareness and communications, standardization of privacy program controls, mechanisms and protocols across the Medical Devices organization and support global digital transformation initiatives. The Senior Privacy Manager will also work cross-functionally with the Global Privacy Operations Team, Compliance, Security, and relevant Divisional Teams and assist with ensuring data privacy solutions and technologies are properly supported, implemented, and sufficiently meets the needs for which they are deployed to protect confidential and proprietary data.

Requirements

Bachelor’s degree in computer science, Privacy Engineering, Information Technology, or a related technical field.
Experience implementing and managing applicable regulatory frameworks (e.g., GDPR, HIPAA, CPRA and other U.S. state laws).
6+ years of progressive privacy program management, compliance, and or program management experience (healthcare or tech preferred).
4 + years of experience with privacy in an engineering and or technical implementation context.
Professional certification in privacy (e.g., CIPP, CIPM, CIPT, CDPSE).
Strong verbal and presentation skills to facilitate communicating complex topics with diverse stakeholders during trainings or meetings.
Detail-oriented, highly organized and independent; capable of managing a wide range of diverse projects with minimal supervision.
Fluency and proficiency in privacy preserving methods and technology.
Familiarity with information governance standards, such as the National Institute of Standards and Technology (NIST) Privacy and Cybersecurity Frameworks.
Ability to identify stakeholders and points of view, bringing people together to agree on and execute a strategy.

Nice To Haves

Experience with privacy-enhancing technologies (PETs).

Responsibilities

Lead HIPAA compliance monitoring reviews and manage the HIPAA compliance program, policies, standards and related documentation across Medical Devices.
Drive standardization and operational excellence across Medical Devices for core privacy program operations.
Identify areas of improvement and standardization across Medical Devices relative to managing data privacy.
Increase privacy maturity in the technical and compliance teams by providing privacy education, training, and mentoring with a focus on enhancing HIPAA training and awareness materials across Medical Devices.
Inform and advise Abbott commercial teams of their obligations to comply with the U.S. and global data protection laws and requirements, including HIPAA and GDPR.
Assist with regular privacy assessments of operational processes, identifying, and mitigating risks through effective tools, training, and guidance.
Assist with tracking categories of privacy threats and vulnerabilities to proactively address potential future variances.
Communicate program progress, escalations, and issue analysis to key stakeholders.
Conduct technical and quantitative analysis to drive scalable, efficient, and data-driven privacy decision-making.
Advise and manage risk in ambiguous and complex situations.
Assess privacy risk assessments and identify potential risks.
Create and maintain privacy program documentation, including maintaining records of processing, DSAR requests, incidents, and other queries.
Gather, analyze, and prepare program metrics to track program effectiveness.
Perform other program tasks as required.