Partner Websites

Legal Program Director, EMEA Data Strategy & Privacy

Medtronic


Date:
08-12-2020
2020-12-082021-02-14
Categories:
  • Legal Jobs
  • Medical & Health Care Jobs
Medtronic
  •  
  • Save Ad
  • Email Friend
  • Print

Job Details

Legal Program Director, EMEA Data Strategy & Privacy

Location:

Netherlands

Requisition #:

20000KM8

Post Date:

Dec 03, 2020


Reporting to the Chief Counsel, Data and Privacy, this position closely collaborates with a network of professionals within the team and across the organization to build, implement and manage a highly visible, best-in-class regional Data Privacy Program and related requirements across Medtronic businesses in a highly regulated environment.


Main responsibilities of the Legal Program Director, EMEA Data Strategy Privacy:

Strategic management of Regional Data Privacy Program

Provide expert legal advice local law interpretations/guidance

Manage and oversee regional work by privacy legal counsels and privacy specialists

Oversee DPO in the implementation of data privacy compliance program at regional level and in compliance with all applicable EU and country laws/regulations

Execute global program requirements locally

Primary point of contact for OUs and Functions for data and privacy issues in Region

In close cooperation with Global Data Strategy Lead, actively think forward and develop new concepts under the upcoming legal frameworks applying to Medtronic in the region. In particular, support and advise on data protection and privacy for digital innovation, digital health, big data and artificial intelligence. Set the standards of expertise in these areas by providing legal expertise on privacy issues such as open data, big data, the use of data for AI, anonymization, data portability, data deletion, interoperability etc.

In close cooperation with Global Data Strategy Lead and Governmental Affairs, regional participation in trade associations, support advocacy


TheLegal Program Director, EMEA Data Strategy Privacyreports into the Chief Counsel, Data and Privacy and dotted line into the Regional General Counsel, and is a member of the leadership team of the Data Privacy Center of Excellence (COE).


Due to the need to gain significant matrixed collaboration and alignment, influence management will be instrumental in this role.


The Data and Privacy COE operates as a high functioning team within a relatively flat team structure. Members of this team are innovative, highly flexible; enthusiastic collaborators; results orientated; independent; actively engaged; and able to influence without direct authority.


TheLegal Program Director, EMEA Data Strategy Privacyprovides a broad range of leadership and direct support and execution for the design, development, coordination, implementation and ongoing management of Medtronics global data protection and privacy program that covers all Medtronic businesses and functions, in the EMEA region. Key responsibilities include:


+ Lead by example to model a culture of ethics and integrity; exercise sound judgment and courage as a trusted advisor to the business and to the team;

+ A role model among leaders, displaying personal integrity and ability to affect change.

+ Foster ethical culture, including tone at the top and tone in the middle through strategic influence and leadership.

+ Lead Counsel on Data and Privacy for the Region


+ Overall accountability for Data and Privacy regional program process, performance, and customer satisfaction.

+ Strategic management and leadership oversight of the implementation of Operational Work @ Local Level. Provide for appropriate operating mechanisms to allow for the teams to triage advising and assessment work to Global team or OU Privacy Specialists, or keep and execute in regional team. Oversee implementation and monitor for effectiveness and need for improvement:


+ In cooperation with Privacy Operations, develop and manage requirements, standards and processes for conducting privacy impact assessment and/or business consulting activities to be conducted by the regional team, or by the Privacy Operations with support of regional team and other key stakeholders; these assessments and consulting activities may include new product development, material changes to existing products, third party vendor privacy assessments and business consultation requests;

+ Organize and oversee, where applicable with the support of the Director, DPO , regional vendor and risk assessments in accordance with global policies and procedures

+ Organize and oversee work of privacy specialists with regard to Engage in regional Privacy by Design and bespoke advising in accordance with global policies and procedures

+ Organize provision of Provide data protection and privacy program and requirements subject matter expertise as key resource to Operating Units, partner functions, and other key stakeholders in region.


+ Compliance associated with local law


+ In cooperation with Privacy Operations, develop and manage processes and procedures for identification and implementation of new legal requirements relating to data protection and privacy impacting Medtronic businesses. Provide communication and guidance to COE as well as OU, functional and partnering teams in region for implementation of identified requirements. Collaborate with stakeholders to test implementation effectiveness for high risk implementation activities as appropriate

+ Support Regional MA related work

+ In close cooperation with Chief Privacy Counsel, point of Contact for Risk Partners to support regional coordination and alignment of risk management activities relating to data protection and privacy requirements;

+ In close collaboration with the Sr. Legal Director, Global Data Privacy Programs and Privacy Operations, implement and manage effective reporting processes and standards; develop and implement routine and ad hoc management and governance reporting and metrics;

+ As requested, support execution of a risk based annual plan and routine reporting that is approved by Chief Privacy Counsel. This plan addresses, at a minimum, key Program activities and enhancements, department or organizational commitments, and program based mitigation projects anticipated by the Global Program leadership; resources, prioritization and budget implications will be identified in development of the plan;

+ As requested, support periodic internal Program assessment that results in program enhancement, mitigation and remediation activities as appropriate;


+ Regional customer go-to-model


+ Support go to market

+ Support customer discussions on privacy


+ Provide expert legal advice local law interpretations/guidance


+ Oversee work of Privacy Legal Counsels


+ In close cooperation with Global Data Strategy Lead, actively think forward and develop new concepts under the upcoming legal frameworks applying to Medtronic in the region. In particular, support and advise on data protection and privacy for digital innovation, digital health, big data and artificial intelligence. Set the standards of expertise in these areas by providing legal expertise on privacy-issues such as anonymization, data portability, data deletion, interoperability etc.


+ Provide regional support to Privacy Operations including budget planning and monitoring, resource management, talent management, performance management, coaching/mentoring, and function metrics and reporting;


+ Represent Regional Needs On Global Leadership Team

+ People Manager for Regional Team

+ In close cooperation with Sr. Director, Global Data Strategy and Governmental Affairs, engage in regional advocacy and policy shaping initiatives, and take up roles in Regional Trade Associations


Other responsibilities as assigned.


**Education Required Years of Experience**


+ Law Degree from a well-regarded and accredited university and a minimum of 12+ years as a practicing lawyer with specific experience in data protection/privacy requirements, laws and regulations in the EEA, UK or Switzerland; 7+ years of managerial experience; and 3+ years in comparable program leader role with privacy strategy and experience in privacy or operations within a global, multi businesses and services organization


**Specialized Knowledge or Skills Required**


+ Knowledge of and experience providing legal advice and business solutions relating to EU data protection and privacy laws and regulations with specific expertise relating to health data requirements;

+ Experience providing legal advice, support and business solutions for a data protection, privacy, security, or equivalent function directly or indirectly for a large, regulated and matrixed organization;

+ Prior compliance oversight of complex systems responsibilities preferred, as well as experience in the healthcare industry (particularly medical devices).

+ Prior success in effectively identifying, assessing and prioritizing compliance-related risks, such as through risk assessment, policies procedures, training, monitoring, and remediation actions.


**Preferred Qualifications**


+ Seasoned legal professional with 12+ years as a practicing lawyer

+ Legal experience in the medical device, pharma or healthcare industry

+ Ability to manage and execute multiple complex projects (including those with systems responsibilities) across multiple stakeholder groups within required timelines and expectations required.

+ Understand complex and diverse compliance environments and ability to work effectively with multi-divisional teams in different locations / businesses / geographies to ensure compliance particularly in matrixed and/or multinational organizations.

+ Ability to work effectively in a team environment and build strong working relationships, involving multiple business functions, units, and/or geographies.

+ Ability to identify high risk situations and provide appropriate guidance, including the ability to make courageous and unpopular decisions.

+ Ability to make an impact and influence at all levels of employee and management groups, including executive leaders, to implement compliance program initiatives.

+ Strong ability to influence across functions and Operating Units to negotiate and gain cooperation on operational issues and internal divergent objectives

+ Demonstrated results orientation (driving to deadlines, financial targets, project goals, etc.)

+ Proven execution under pressure and ability to maintain positive, enthusiastic attitude.

+ Demonstrated ability to work on multiple competing priorities simultaneously;

+ Demonstrated ability to work across a matrixed or virtual organization and still meet objectives

+ Experience and demonstrated ability to present to a variety of audiences including the ability to translate technical information

+ Exceptional interpersonal, oral, presentation, and written communication skills, including to senior leaders/executive audiences.
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.
© 2013. PennWell Corporation. All Rights Reserved. PRIVACY POLICY | TERMS AND CONDITIONS | SITE MAP | CONTACT US | PennWell Websites | PennWell Events