Lead – Privacy Compliance

Company	Guardian Life
Location	New York, NY, USA
Salary	$101180 – $166220
Type	Full-Time
Degrees	Bachelor’s
Experience Level	Mid Level, Senior

Requirements

Minimum of 4+ years of experience in the various privacy disciplines (e.g., policy, compliance, incident response, information security, training, and awareness, etc.) gained in insurance and/or financial services positions preferred.
4 Year College Degree required – Masters or Advanced Degree a plus. J.D. not required.
Experience with developing and implementing privacy programs, including interaction with executives, adversaries, and regulatory personnel.
Knowledge of privacy laws and regulations.
Ability to address complex and challenging issues and communicate effectively with business leaders at all levels to optimize risk management, productivity, and communication.
Ability to work in a dynamic, hands-on, fast-paced environment and respond to questions from business areas and a complex subsidiary organization.
Respect for diversity and ideas of others, willingness to collaborate in a fast-paced team environment and motivation skills are required.
Demonstrated leadership ability in an organizational setting, corporation integrity and strong interpersonal skills are essential to success.
Strong project management skills.
Excellent analytical ability, problem-solving and leadership skills.
Outstanding written and verbal communications skills are essential.

Responsibilities

Plan and manage preparation of relevant Privacy Program reports, metrics, and briefings to senior management.
Participate in privacy forums, build partnerships internally across Guardian, and help ensure that the protection of privacy is embedded in Guardian’s fundamental business practices and policies.
Provide support to business areas, including Business-Area Privacy Liaisons, on privacy strategies and approaches to implement in their organizations.
Assist in driving cross-functional engagement across the enterprise, including among senior leadership, to promote the protection of privacy.
Oversee the process that supports the tracking of and response to privacy incidents across the company, ensuring the actions taken are consistent with company standards, policies, and procedures, as well as applicable law. This will include: Triage and analysis of suspected privacy incidents reported to the privacy team to ensure appropriate and immediate response. Oversee complex in-depth investigations of privacy incidents. Assist with breach notification efforts including coordination with outside resources. Maintain database(s) of privacy incidents. Support the executive-level information incident response team, which will include coordinating training to ensure readiness, as well as managing execution of incident response in accordance with Guardian’s Privacy Incident Response Plan.
Function as a primary interface and escalation point between the Privacy, Data Strategy and Security practice group and business unit Privacy Liaisons who are responsible for assisting in management of the Privacy Program at the business level and ongoing compliance with existing privacy regulations and laws.
Represent the Privacy, Data Strategy and Security practice group as a key advisor to stakeholders to establish, inform, and maintain company-wide privacy policies.
Lead the development, rollout and management of privacy compliance assessments, privacy impact assessments and data inventory updates.
Provide effective, prompt privacy compliance advice and support business units in operationalizing privacy compliance, rectifying problems, and responding to emerging challenges.
Keep informed regarding pending industry changes, trends, and best practices and assess the potential impact of these changes on organizational processes.
Manage and oversee enterprise rollout of annual privacy training.
Manage and respond to data subject rights requests and customer privacy preferences.

Preferred Qualifications

Masters or Advanced Degree a plus.