Our client, an innovative corporation with a global reach, is seeking an experienced Senior Director of Data Privacy & Governance. This Director will lead the development, implementation, and maintenance of their comprehensive global privacy program. This role will be responsible for creating and maintaining an effective privacy program that identifies, prevents, detects, responds to, and corrects privacy-related non-compliance. The ideal candidate will have a JD, privacy certifications, and significant experience in a privacy compliance-related discipline. They must have strong critical thinking skills, excellent communication skills, and the ability to make difficult decisions and escalate as needed. This is a fantastic opportunity to join a global company and make a significant impact on their privacy operations.

Responsibilities: 

• Development, implementation, and maintenance of an effective privacy program that identifies, prevents, detects, responds, and corrects privacy-related non-compliance
• Serving as a subject matter expert in global data privacy and assess refine, and improve privacy processes, practices, and facilitation of improvements 
• Creating and maintaining a strategic and comprehensive information privacy program that includes but is not limited to: policies and processes that ensure the confidentiality of protected personal information (PII) in accordance with federal, state laws, and appropriate global data privacy laws
• Creating content and leading relevant training for all team members, investigation of privacy concerns, auditing and monitoring of systems and processes that impact information privacy, reporting of privacy metrics to leadership, and ongoing privacy risk assessments
• Interpreting and explaining complex privacy regulations and translating legal and regulatory requirements into clear and effective communications, policies, processes, and practices
• Engaging effectively on difficult issues and working with others with transparency and fairness
• Providing advice and working closely with the VP of Ethics, Integrity & Privacy and other senior leadership, in various matters dealing with privacy compliance
• Collaborating effectively with a global IT and Information Security team to assess, recommend, and implement strategies to ensure data is accessible, reliable, and protected
• Establishing and maintaining effective governance of the information privacy program
• Drafting and maintaining information privacy policies, procedures, and organizational privacy documents (e.g., Notice of Privacy Practices, internal guidance documents)
• Develops and conducts information privacy training and education for appropriate company employees
• Providing privacy guidance to team members and management throughout the organization
• Establishing an ongoing process to track, investigate, and report inappropriate access and disclosure of protected health information, including oversight of corrective action plans that mitigate non-compliance
• Managing required breach determination and notification processes under applicable law
• Performing information privacy risk assessment/analysis and developing corresponding work plans and corrective action plans
• Works collaboratively and cross functionally with various business entities and other business partners, as needed, to ensure appropriate data sharing between the parties

Qualifications:
Required Education:

• Juris Doctor 

Preferred Education:

• Master’s Degree
• Privacy Certifications 

Required Experience:

• Significant experience in a privacy compliance-related discipline, or equivalent combination of education and experience
• Must include experience drafting and implementing written policies, programs, and procedures to guide privacy compliance initiatives
• Strong critical thinking skills and analysis to solve problems
• Effective communication skills with internal stakeholders, team members, peers, and leadership
• Excellent written and verbal communication skills and interpersonal skills
• Strong analytical and organizational skills, including demonstrated effective project, task, and time management skills
• Demonstrated ability to respond and communicate with stakeholders during urgent situations and to create after action plans and follow up
• Demonstrated experience as a thought leader on privacy operations and leading a team as a “business”
• Ability to make difficult decisions and escalate as needed
• Ability to make sound recommendations that achieve compliance objectives and relevant to the underlying business divisions and strategic business units
• Must be able to manage and motivate a cross functional group of direct and indirect reports and/or other individuals to drive for solutions
• Must be able to understand the impact of non-compliance and prioritize work for the team and the business
• The ability to work with and positively influence SVP/VP and other senior level leaders across divisional boundaries to ensure outcomes

Preferred Experience:

• Some experience with risk rating and modeling 
• Experience conducting risk-based compliance assessments and root cause analysis
• Experience working directly with internal or external auditors
• Experience working with committee structures and forming committees
• Experience with management systems and business analysis activities
• Experience working in a multi-national company
• Relevant privacy and risk reduction experience 
• Project management equivalent experience and or Management systems experience

Required Skills, Knowledge and Abilities:

• Demonstrated understanding of privacy frameworks and their applicability to a global manufacturer of automotive and/or consumer goods

Expected salary for this role is $200,000 – $220,000, commensurate with experience, training, skills, qualifications, and other market factors.

#LI-BH1