Senior Director Global Privacy Compliance
Senior Director Global Privacy Compliance
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Around the globe families clients and staff trust Bright Horizons to provide highquality education and care operate with integrity and empower them to thrive. Respecting privacy rights is an integral part of building and maintaining that trust. How we process and protect personal information as a business is critical to supporting Bright Horizons reputation and success.
The purpose of Bright Horizons Privacy Team is to ensure that Bright Horizons handles personal data responsibly and in compliance with relevant privacy laws and regulations. The Privacy Teams goals are to protect personal data build trust reduce risks and enhance business practices. We strive for continuous improvement and the advancement of Bright Horizons privacy maturity levels.
The Senior Director Global Privacy Compliance is responsible for developing implementing and overseeing the organizations global privacy compliance program. This role will work closely in partnership with the Senior Director Global Privacy Counsel to ensures that the global privacy compliance program complies with all relevant privacy laws and regulations.
This Hybrid role requires inperson work at our Newton MA headquarters.
Bright Horizons is trusted by families and employers around the world for highquality child care and early education backup care and workplace education. We partner with some of the worlds best companies to provide services that help employees perform their best and support families to thrive both personally and professionally.
Responsibilities
Privacy Program
Build and manage a comprehensive global privacy compliance program (including governance risk assessment policy development and training) that adheres to all relevant privacy laws and promotes continual improvement.
Drive individual and departmental accountability for complying with the global privacy compliance program within the organization.
Privacy Management Tool (One Trust)
Business owner and manager of the privacy management tool.
Keep up to date on software releases.
Utilizing the privacy management tool to ensure optimization of documentation of and reporting on the global privacy compliance program.
Implement and manage business continuity plan for the privacy management tool.
Govern internal team changes/updates to the privacy management tool that ensure awareness/training of any approved changes.
Govern data entry into the privacy management tool that ensures consistent practices and outputs.
Privacy by Design
Advise the organization on the implementation of privacy by design solutions across technologies and processing activities that supports privacy compliance throughout entire lifecycles of applications systems and personal data.
Work closely with Global Privacy Counsel Legal IT Information Security HR Internal Audit and other departments to integrate privacy considerations into business processes.
Policies Procedures Guidelines and other Documentation
Create and maintain comprehensive privacy policies procedures and other required documentation that ensures compliance with global privacy compliance program privacy laws and company privacy related certifications (such as ISO and SOC2.
Develop and implement a document management system for all privacy documentation.
Assessments Tracking Technologies and Risk Management
Oversee and manage:
the of privacy assessments required under the global privacy compliance program (such as asset assessments records of processing activities privacy impact assessments).
the organizations use of cookies and other tracking technologies complies with relevant privacy laws and regulations including developing implementing and managing policies and procedures related to tracking technologies conducting audits and providing guidance to various departments to ensure compliance.
the identification assessment and mitigation of privacy risks within the organization including the development and implementation of risk management strategies.
Monitoring and Reporting:
Monitor privacy compliance and report on the status of the global privacy compliance program.
Manage privacy related audits and certification requirements for the organization such as ISO 27001 / 277001 and SOC2.
Training and Awareness:
Design deliver and lead privacy training programs to employees and stakeholders to promote a culture of privacy compliance.
Continuous Improvement:
Stay informed about emerging privacy trends and changes in the regulatory landscape to continuously enhance the global privacy compliance program.
Additional Duties/Activities:
Support on any other duties commensurate with the role and ad hoc activities as assigned by Global Privacy Officer.
Minimum Job Requirements
Bachelors degree in Law Information Security ora related field Required
Minimum of 10 years of GRC IT or privacy experience working for a large multinational organization in a highly regulated or scrutinized industry with at least 3 years privacy experience
Minimum of 3 years of professional people management required
Additional Job Requirements
Advanced knowledge of privacy principles and experience with global privacy framework such as ISO NIST SOC2 or other similar frameworks.
Strong understanding of modern data processing environments serviceoriented architectures cloud computing technologies and relevant security and privacy standards.
Capable of deep diving technical specifications and adapting requirements to meet control objectives.
Strong project management and coordination skills with proven ability to meet deadlines prioritize assignments and run multiple projects.
Demonstrated partnering skills with experience coordinating initiatives with partners in a multinational organization.
Excellent verbal and written communication skills with both technical and nontechnical partners with focus on informing influencing and relationship building across functions and throughout all levels of the organization.
Experience developing written and visual user guides and training materials to drive stakeholder education on compliance protocols.
Demonstrated proficiency delivering high quality and efficient service taking account of the diverse customer needs and requirements when looking at ways to improve service quality.
Experience using OneTrust platform for management of privacy program or willingness to become proficient to a high standard.
Certifications such as CIPP CIPM or CISSP are highly desirable.
OneTrust certification or ability to become certified.
Masters Degree Preferred
At this time Bright Horizons will not sponsor an applicant for employment authorization/visa for this position.
Benefits:
Bright Horizons offers the following benefits for this position subject to applicable eligibility requirements:
Medical dental and vision insurance
401(k) retirement plan
Life insurance
Longterm and shortterm disability insurance
Life at Bright Horizons:
Our people are the heart of our company. Because were as committed to our own employees as we are to the children families and clients we serve our collaborative workplaces are designed to grow careers and support personal lives. Come build a brighter future with us.
Bright Horizons provides equal opportunity in all aspects of employment and does not discriminate against any individual on the basis of race color religion sex age disability sexual orientation veteran status national origin genetic information or any other characteristic protected under federal state or local law. Bright Horizons complies with the laws and regulations described in the following federal government resources: Know Your Rights Family and Medical Leave Act (FMLA) and Employee Polygraph Protection Act (EPPA).
If you require assistance or a reasonable accommodation in completing these application materials or any aspect of the application and hiring process please contact the recruitment helpdesk ator . Determinations on requests for reasonable accommodation will be made on a casebycase basis.
Required Experience:
Exec
Employment Type
Full-Time
