Spanish-Speaking Privacy Officer

TRU Staffing Partners

  • Full Time

Our client, an international healthcare organization, is seeking a Privacy Officer to support their LATAM efforts from the United States. Se busca un especialista en privacidad, que sea bilingue, ambicioso y con experiencia en la industria de cuidado a la salud, o en areas altamente reguladas. We’re looking for an ambitious, bilingual privacy subject matter expert with experience in healthcare or other highly regulated industries. The Privacy Officer will draft and review contracts in both English and Spanish and therefore should be fluent in both languages. This person will work closely with the legal team that sits in Miami, FL and will be expected to travel into the office occasionally. Experience with OneTrust and/or HIPAA regulations is a plus. J.D. preferred.

Job Introduction
Provide leadership and direction across the company on managing data privacy and information governance issues consistent with its Privacy Principles and Requirements (including regulatory compliance, risk management, record retention and management, and data quality) with support from attorney colleagues, to advise management and staff on data privacy law, regulation and best practices relevant to its business (including HIPAA, GDPR, and local equivalents).
He/she works with Regional staff to coordinate a consistent framework and approach to data privacy and information risk and governance to ensure that plans are consistent and coordinated across the company and with International Markets, including oversight and delivery of self-assessments and/or reporting requirements to ensure that information handling policies, procedures, processes, training, etc. used across the company are appropriate for the business and consistent with its Privacy Policy to keep senior management appraised of material weaknesses in or failings of internal controls or non-compliance with regulatory requirements and Group policies in relation to information management. He/she will deliver, in conjunction with the Risk function, effective, relevant, and timely reports on findings from any information handling incidents.

Role Responsibility

  • Addressing Privacy risk in the business operations, the jobholder will be required to look at information governance issues facing the companies, and the impact of data handling on our partnerships around the world. This will include:
    • Working with the businesses to appropriately address compliance with applicable laws, regulatory requirements, its Privacy and Information Security policies and industry practice such as NYMITY, ISO 27001and PCI-DSS.
    • Setting direction on matters related to notice, data handling, data-sharing and cross-border data transmission, in line with Privacy Policy and Strategy, as part of an effective first line of defence function
    • Responsibility for reporting and assurance to appropriate internal governance groups and meetings within the company and International Markets
  • The jobholder will also have direct responsibility for carrying out all necessary compliance monitoring activity on the Information Security framework and arrangements – this compliance monitoring activity shall be carried out in line with any applicable direction from the company, International Markets, and the Risk and Compliance Director. To the extent that any such compliance monitoring activity involves the review of privacy controls established directly by the jobholder, the jobholder shall discuss with the Risk and Compliance Director the most appropriate way to ensure that any review/monitoring is carried out with the requisite degree of 2nd Line of Defence independence.

Governance

  • Actively manage relationships with colleagues at all levels to understand its compliance with relevant legal, regulatory and Group policies relating to information management. Acting as subject matter expert with regard to any Privacy initiatives.
  • Represent the company in Latin America on any Corporate Centre, Market unit or cross-business committees/forums relating to Privacy and Information Governance (as required)
  • Be accountable for facilitating implementation and embedding of the required Privacy program policies and procedures for staff, third parties, temporary staff

Consultancy & Advice

  • Provide guidance and subject matter expertise to ensure the potential impact of solutions in respect of the Privacy framework are understood at all levels across the business unit
  • On discovery of any actual or suspected breaches of legislation, regulatory requirements or policies relating to information risk:
    • To take leadership of the investigation and delegate investigative and remedial action where appropriate, keeping senior management informed; and
    • Ensure that recommendations are produced regarding follow-up actions to prevent any recurrence
    • Ensure the business takes ownership for and effectively delivers on relevant follow up actions
    • To act as a subject matter expert and provide specialist advice to the Executive Team and Risk Management Committee, if required, particularly in relation to any breaches of its Privacy practices
    • Play an active role in the communication, development and explanation of Privacy requirements to first-line management and staff
    • Drafting guidance material on information handling for use by managers and staff.

The Ideal Candidate

  • Significant experience in Privacy, Information Governance, or records management
  • Bachelor’s degree required, Master’s or Juris Doctorate preferred
  • CIPP, CIPM, and/or CIPT certification
  • External accreditation/ certification in Information Risk and/or Information Governance related initiatives
  • Extensive and proven experience in development of policies and procedures within the financial services and or healthcare sector
  • Excellent oral and written communications
  • Excellent organization, time management and initiative

#LI-LS1

Job Overview
Your subscription could not be saved. Please try again.
Your subscription has been successful.

Receive job alerts twice per week:

We use Sendinblue as our marketing platform. By Clicking below to submit this form, you acknowledge that the information you provided will be transferred to Sendinblue for processing in accordance with their terms of use