Privacy Legal Counsel-Global Commercial (Hybrid)

A Multinational Pharmaceutical and Biopharmaceutical Company

  • Gaithersburg, MD
  • 7 Years
  • Remote
  • R-196852
  • Not Specified
  • Not Specified

Closing Date: 22nd April, 2024

Description:

Summary:
Reporting to the Sr. Privacy Partner, Privacy Office within Global Compliance, this role is responsible for assisting in driving A Multinational Pharmaceutical and Biopharmaceutical Company Global Privacy program within the Rare Diseases Business Unit, including operationalizing privacy compliance based upon the requirements of GDPR and other laws and regulations. You will work collaboratively with our global network of privacy professionals and cross-functionally with other functions, including Commercial, Legal, IT, HR, and R&D, to continue to build and mature A Multinational Pharmaceutical and Biopharmaceutical Company privacy program.

Job Responsibilities:
  • Responsible for supporting the RDU business area through the Privacy lead and others in operationalizing the Global Data Privacy Program that develops, maintains, and implements policies and procedures, enabling consistent, effective privacy practices which minimize risk and ensure the protection of personal information.
  • Operationally manages and executes “second line of defence” accountabilities including establishing and implementing global awareness campaigns and training programs, providing guidance to senior management on data privacy issues, and monitoring adherence to the Data Privacy framework
  • Responsible for operationalizing privacy compliance across the local and global organization model in a manner that enables the robust protection for personal information of patients, consumers, employees, healthcare professionals, and others, which is vital to the success and reputation of trust of A Multinational Pharmaceutical and Biopharmaceutical Company.
  • Individually, and through team members, provide leadership to the Rare Disease business unit, countries and global functions and oversight of global and cross-business data protection issues, developments, and trends. Work with these local countries and global functions to ensure that standards are considering local regulations including facilitating the development of data inventories/registries in compliance with applicable privacy law requirements
  • Establish and implement an international data transfer compliance plan to ensure lawful global data transfers.
  • As part of the Global Privacy Office coordinates implementation of global initiatives and cross-jurisdictional privacy matters, including the review of privacy-related risk assessments for new projects and initiatives.
  • Ensure strong knowledge of privacy regulations and interpretations worldwide, monitor privacy trends and legal developments and address its impact on the organization including analyzes of internal and external privacy practices while proactively drive continuous improvement in these practices.
  • Promote an open door communication between the business and the Privacy organization and support driving and embedding a culture of ethics and integrity
  • Provide periodic updates on the program and its effectiveness to Executive Committee and senior leaders

Essential Qualifications:
  • Bachelor's Degree with at least 7 years experience working closely - combined with legal and compliance experience
  • Significant experience in Rare Diseases department and/or pharmaceutical industry
  • Advanced degree preferred (e.g., Juris Doctorate, Master's, or related degree). JD or MBA preferred.
  • Experience with global privacy laws, including GDPR
  • Knowledge and experience of corporate governance, health care regulations, laws and standards
  • Inquisitive mind set with well-developed critical/analytical abilities
  • Excellent written and oral communications skills
  • High ethical standards, trustworthy, operating with absolute discretion
  • Ability to work independently and as part of a team, in fast-paced corporate environment, in a highly-regulated sector
  • Significant experience of managing different stakeholder relationships and confident at forging trusted relationships at a senior level
  • Able to deal effectively with ambiguity, cope with change, and decide and act without having the total picture
  • Proactive with high levels of self-motivation and personal accountability, bringing enthusiasm and energy to team, peer group and tasks
  • Resilient and agile approach

Desirable Qualifications:
  • Experience investigating and remediating privacy incidents in compliance with applicable law.
  • Privacy certifications, such as the IAPP's Certified Information Privacy Professional (CIPP) and/or other healthcare industry related credentials.
  • Healthcare legal, operational, project management, and/or financial experience.
  • People management experience