Supports multiple banner ads per page, from any ad serving software. Flexible banner sizes
30 days old

Diabetes Data & Privacy Consultant

Apply Now
Applying for this job will take you to an external site
Diabetes Data & Privacy Consultant


United States

Requisition #:


Post Date:

Jan 19, 2021

**Careers that Change Lives**

The Operating Unit Data Protection and Privacy Consultant (Consultant) provides leadership and direct support to the assigned Operating Unit Diabetes for the strategy, design, development, implementation, and ongoing management of Medtronics Global Data and Privacy Program activities that address and support US and OUS legal and regulatory requirements.

The Consultant reports into the Senior Director, Global Data Privacy Programs and is a key member of the Data Privacy Center of Excellence (COE).

In cooperation with the Senior Director and a peer colleague, this seasoned professional actively engages with Diabetes with regional and business unit personnel and leaders to provide strategic privacy expertise, direct support, and influence management for operational execution and compliance with US and OUS based legal, regulatory and business data protection and privacy requirements. The Consultant ensures appropriate triaging of transactional and operational data and privacy work to Privacy Operations and regional Data Privacy teams and provide strategic oversight and direction for bespoke Privacy by Design work and advising performed by Privacy. The Consultant provide support for the execution and implementation in Diabetes. The Consultant works closely together with a peer colleague in similar function, as well as with the Operating Unit Legal Counsel to ensure strategic alignment on data and privacy.

In alignment with the Global Data Protection and Privacy Program policies, standards and requirements, this position focuses on a wide range of business operations activities, practices and standards to meet US and OUS privacy regulatory requirements such as HIPAA, PIPEDA, US Patriot Act, Breach Notification laws, EU 95/46, GDPR, regional and country specific laws throughout globe, ISO and other standards bodies and international standards.

The Data and Privacy COE team operates as a high functioning team within a relatively flat team structure. Members of this team are innovative, highly flexible; enthusiastic collaborators; results orientated; independent; actively engaged; and able to influence without direct authority.

**_We seek out and hire a diverse workforce at every level: We need fresh ideas and inclusive insights to continue to be an innovative industry leader thats why we make it a point to seek out, attract and develop employees who are patient-centric, passionate, and who represent the same wide variety of life experiences as our patients._**

**_Preference for this role to reside in Northridge, CA, however, it can work in any other Medtronic office location or work remote._**

**A Day in the Life**

Responsibilities may include the following and other duties may be assigned.

In collaboration with Data and Privacy COE leadership, the broader team, and Diabetes, the Consultant closely aligns with multiple partner stakeholders and the global data protection professionals to design, and execute standards and practices for effective data protection and privacy across Diabetes . Key responsibilities include:

+ Lead by example to model a culture of ethics and integrity; exercise sound judgment and courage as a trusted advisor to Diabetes;

+ Face of program for Diabetes key point of contact/access into program;

+ Be point of contact towards Diabetes for (global and regional) privacy teams of the COE;

+ Engage with Operating Unit stakeholders to provide data protection and privacy program and requirements subject matter expertise as key resource and point of contact to regional, business, partner functions, and other key stakeholders, drive awareness, share knowledge, and ensure accountability for both data and privacy legal/regulatory compliance as well as strategic advising;

+ Be strategic partner on all things data and privacy for the Operating Unit Legal Counsel and work with them to ensure stakeholder alignment with the Operating Unit, including on prioritization, remediation and other;

+ On point to speak about Privacy risks to OU leadership, in consultation with OU Legal Partner;

+ Lead or direct OU level assessments that results in program enhancement, mitigation and remediation activities as appropriate;

+ Collaborate with Operating Unit leadership and other key stakeholders to implement new legal and regulatory requirements relating to data protection and privacy impacting Medtronic businesses. Provide communication and guidance to OU personnel for implementation of identified requirements. Design and implement effectiveness testing for high risk implementation activities as appropriate;

+ Keep Data Privacy COE informed about strategic objectives, projects and timelines of Diabetes, on global and regional level, to allow for proper planning of OU data and privacy work by the COE;

+ In close cooperation with Privacy Operations, coordinate program operations at respective OU/function level, where applicable with SLAs with Privacy Operations and/or regional teams:

+ Spot issues and ensure appropriate triaging of transactional and operational data and privacy work to Privacy Operations and regional Data Privacy teams;

+ This may include e privacy impact assessment (PIA) activities and/or business consulting for new product development, material changes to existing products, third party vendor privacy assessments and business consultation requests as required by standards and procedures. On behalf of the Operating Unit, analyze results of assessments to identify trends and patterns that can be used to improve review efficiencies, existing processes, and standards:

+ Provide strategic oversight and direction for bespoke Privacy by Design work and advising performed by Privacy Operations;

+ Implement and further mature Privacy by Design processes in Diabetes;

+ Provide support for the execution and implementation in Diabetes;

+ Lead or direct the development and implementation of regional or business unit corrective action for identified gaps, privacy incidents or breaches; provide routine remediation status reporting for management and governance oversight;

+ Lead and direct the design and implementation of standards and processes for OU response to individual rights requests such as data access requests, accounting of disclosures, the right to inspect and copy, restrictions on disclosures, opt-in or opt-out requirements and other related individual rights; support Privacy Operations in execution of the requests

+ Implement Go-to-market and Customer-go-to models in the assigned Operating Units

+ Establish relationships with OUs/Functions teams that are heavy data usersandgainup-front alignment on data usage and how to balance differentconstraints;

+ In close cooperation with the Global Data Privacy Program and Privacy Operations, oversee and support Data Privacy programmatic activities in the OU:

+ Design, direct and support data protection and privacy operational compliance monitoring activities in collaboration and coordination with the organizations security, compliance, audit, risk management and other related corporate functions as appropriate; this may include, for the US, design and implement business unit privacy Covered Entity, Business Associate or similar privacy related contracting requirements;

+ Oversee development and support implementation of business level data protection and privacy policies, standards and procedures, as required;

+ Provide subject matter expertise to Privacy Operations for development and implementation of role-based data protection and privacy training as required. Perform module review as necessary to confirm alignment of content and approach;

+ Oversee data protection and privacy efforts for the due diligence and integration of acquisitions within the businesses;

+ Provide input and detail for budget planning, monitoring, and function metrics and reporting as requested;

+ Provide subject matter expertise for the Global Data and Privacy Program in development and implementation of core privacy program elements as requested.

+ Other responsibilities as assigned.

**Must Have: Minimum Requirements**

+ 10+ years of privacy experience with a bachelors degree, OR, 8+ years of privacy experience with an advanced degree

**Nice to Have**

+ Advanced degree

+ Knowledge of and experience supporting business understanding and compliance with privacy laws in the US as well as outside the US

+ Experience in the healthcare industry

+ Experience supporting a data privacy, security or equivalent function directly or indirectly for a large, regulated and matrixed organization

+ Project/program management experience

+ Experience with business operations requirements implementation

+ Experience in supporting cross-functional teams

+ Experience directly or indirectly with compliance or similar function

+ Experience supporting change management projects

+ Strong knowledge of, and experience in program and project management

+ Experience working with global and/or matrixed IT systems, services, operations or other related management environment

+ Demonstrated cross-functional team execution skills

+ Experience assessing and defining system specifications preferably in relation to compliance with data protection and privacy regulations

+ Demonstrated advocate for proper data management systems

+ Demonstrated influence management skills, exceptional interpersonal and communication skills

+ Demonstrated experience building positive relationships with a variety of stakeholders, including with employees, clients, senior management, external parties/authorities and suppliers.

+ Demonstrated results orientation (driving to deadlines, financial targets, project goals, etc.)

+ Strong ability to work collaboratively and partner with employees, other leaders, clients, and vendors.

+ Demonstrated ability to work across many levels of an organization, from VP to non-exempt staff

+ Demonstrated ability to work across a matrixed or virtual organization and still meet objectives

+ Demonstrated ability to manage multiple priorities simultaneously.

+ Demonstrated ability to utilize excellent decision making skills.

+ Experience and demonstrated ability to present to a variety of audiences including the ability to translate technical information

+ Lean Sigma or Six-Sigma training/experience

+ Vendor management experience

+ Familiarity with FDA and FTC regulations, HIPAA, PIPEDA, US Patriot Act, EU 95/46 and GDPR, Breach Notification laws, ISO and other standards bodies and international standards

**About Medtronic**

Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology, therapies and services can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an exciting and rewarding place to be.

We want to accelerate and advance our ability to create meaningful innovations - but we will only succeed with the right people on our team. Lets work together to address universal healthcare needs and improve patients lives. Help us shape the future.

Physical Job Requirements

The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role. (ADA-United States of America)

Travel - 10%.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.


Posted: 2021-01-26 Expires: 2021-02-28
Supports multiple banner ads per page, from any ad serving software. Flexible banner sizes

Job Rated Report

Resume Writing Advice

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Diabetes Data & Privacy Consultant


Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast