Program Manager Data Protection & Privacy

Job Summary

The Data Protection & Privacy Program Manager will work within Global Privacy Operations, focusing on managing and maturing the enterprise-wide Data Protection & Privacy program. They will collaborate closely across the Compliance department and internal team members and cross-functional partners to manage and oversee operational components within Medline's Data Protection & Privacy program, in compliance with state, federal and global requirements.

Job Description

MAJOR RESPONSIBILITIES

• Responsible for conducting privacy impact assessments (PIA) and Data Protection Impact assessments
• Collaborate with business stakeholders to assess vendors, technologies, and identify potential privacy risks.
• Manage privacy incidents, conduct and document investigations and respond to reported incidents.
• Collaborate with business partners including, Security, Information Technology, Legal and other business functions to ensure departmental and business alignment and adherence to privacy policies, notices, and practices.
• Develop and conduct privacy training (general and role-based) and facilitate communication on the enterprise-wide privacy program and related policies and procedures.
• Manage the data Subject Access Request (DSAR) process including, reviewing requests, working with other business functions to fulfill requests, documenting and responding to requests within time requirements.
• Promote, manage, and deliver continuous improvement of program activities.
• Work with the Global Privacy Team on a variety of other matters relating to data privacy.

MINIMUM JOB REQUIREMENTS

Education

• Bachelor's degree

Certification/Licensure

• None

Work Experience

• At least 3-4 years of privacy, security, or compliance experience.
• Experience with privacy management tools.

Knowledge / Skills / Abilities

• Strong reporting and communication skills across all levels, for example, team/organizational updates, leadership escalations, detailed working group notes, etc.
• Communications planning and implementation experience (including the ability to integrate and coordinate various elements into an actionable plan).
• Project management skills, with ability and proven track record to plan, manage and develop strategic initiatives to successful goal completion.
• Advanced level skill in Microsoft Excel (for example: using AVERAGE function, merging and centering cells, printing centered page and/or creating a pivot table).
• Program management skills, including the ability to oversee program components, ensuring alignment with strategic program objectives.

PREFERRED JOB REQUIREMENTS

Certification / Licensure

• A privacy certification such as CIPP/E, CIPP/US, CIPM, CIPT, AIGP

Work Experience

• Experience with privacy management tools. OneTrust and Radar Privacy preferred.
• Privacy incidents, managing, documenting investigations and responding to reported incidents.
• Experience in assessing vendors, technologies, and identifying potential privacy risks.
• Knowledge and experience maintain records of processing activities (RoPA).
• Knowledge of information security concepts, first-hand experience preferred.
• Experience with General Data Protection Regulation (GDPR) preferred.
• Experience with US privacy laws preferred (HIPAA experience desired).

Medline Industries, LP, and its subsidiaries, offer a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization.

The anticipated salary range for this position:

$110,240.00 - $165,360.00 Annual

The actual salary will vary based on applicant's location, education, experience, skills, and abilities. This role is bonus and/or incentive eligible. Medline will not pay less than the applicable minimum wage or salary threshold.

Our benefit package includes health insurance, life and disability, 401(k) contributions, paid time off, etc., for employees working 30 or more hours per week on average. For a more comprehensive list of our benefits please click here. For roles where employees work less than 30 hours per week, benefits include 401(k) contributions as well as access to the Employee Assistance Program, Employee Resource Groups and the Employee Service Corp.

Every day, we're focused on building a more diverse and inclusive company, one that recognizes, values and respects the differences we all bring to the workplace. From doing what's right to delivering business results, together, we're better. Explore our Diversity, Equity and Inclusion page here.

Medline Industries, LP is an equal opportunity employer. Medline evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status or any other legally protected characteristic.