Job Summary:

• Assist the Data Privacy Office with ongoing activities related to the development, implementation and ongoing maintenance of privacy policies, standards and procedures by privacy laws, regulations and industry best practices and standards.
• Understand data lifecycle, data maps, retention, data destruction best practices, and data governance.
• Interpret and understand global and jurisdictional laws, regulations, complex issues, and documents.
• Investigate and solve complex problems, with the ability to provide remediation recommendations and solutions.
• Identify gaps in existing policies, standards, controls, risks, procedures, training, and metrics and provide recommendations for revisions on identified gaps.
• Review privacy regulatory laws and regulations.
• Manage process for review, approval, and release of updated policies, standards, processes, controls, and training.
• Responsible for working with Global Security and Privacy Office (GSPO) in support of the Deputy Chief Privacy Officer, EMEA Data Protection Officer, Global Data Owners, Compliance, IT, Legal, Physical Security, and other business functions to develop and implement BCR and privacy requirements consistently throughout the organization.
• Escalates key data privacy issues accordingly.

Skills on Resume: 

• Understanding of Privacy Laws (Hard Skills)
• Data Lifecycle Management (Hard Skills)
• Analytical Problem-Solving (Soft Skills)
• Policy Development (Hard Skills)
• Stakeholder Collaboration (Soft Skills)
• Risk Assessment (Hard Skills)
• Training Development (Soft Skills)
• Regulatory Compliance (Hard Skills)

Job Summary:

• Ongoing management and documentation of privacy impact assessments and associated data maps and records of processing, including the development and tracking of action plans
• Partners across multiple teams and organizations to develop privacy training and awareness materials that focuses on role specific learnings
• Assists and partners with Audit teams on the alignment and execution of privacy control objective reviews
• Participates in cross-functional third-party review meetings to assess supplier capabilities to address privacy controls
• Management of the Company’s privacy mailbox and for handling and triaging inquiries and execution of processes to support data subject access requests
• Implementation and maturity of privacy by design processes, along with the creation of associated artifacts, procedures, and awareness materials
• Collaborates with other departments and personnel in the development of operational procedures to support privacy initiatives
• Assist the GSPO with ongoing activities related to the development, implementation, and demonstration of RGA’s Security and Privacy Programs in accordance with laws, regulations, contractual obligations, and industry best practices and standards
• Respond to client inquiries, compliance requests, and regulatory inquiries related to RGA’s Information Security and Privacy Programs
• Work with Global Legal Services and RGA business contacts to review, analyze, and opine on contractual language related to security and privacy requirements

Skills on Resume: 

• Privacy Impact Assessment (Hard Skills)
• Training Development (Soft Skills)
• Audit Support (Hard Skills)
• Vendor Assessment (Hard Skills)
• Inquiry Management (Soft Skills)
• Privacy by Design (Hard Skills)
• Operational Procedure Development (Hard Skills)
• Contractual Analysis (Hard Skills)

Job Summary:

• Lead junior staff, stakeholders, and executive team on how to monitor and perform risk mitigation efforts by developing goals, policies, and procedures for the organization's privacy programs, in accordance with security laws.
• Understand business objectives, analyze complex business processes, and consult on outcomes to pinpoint related privacy risks and data challenges.
• Direct others in the assessment of data privacy and security risks including data classification, documentation of event investigation activities, and maintenance of the Privacy Risks Register.
• Conduct due diligence reviews of external vendors and support internal stakeholders with Privacy Impact Assessments utilizing Privacy by Design Principles.
• Ensure the release of protected information adheres to the organization’s policies, procedures and legal requirements.
• Follow emerging privacy trends and laws, advise on current and emerging privacy risks, and coordinate data privacy training programs and activities.
• Serve as a spokesperson for inquiries, statements, or general counsel to governmental, regulatory, and marketing staff regarding data privacy and network security issues.
• Analyze complex business processes or issues and quickly understand the business issues and related privacy and data challenges with quantitative and qualitative factor analysis methods.
• Understand and guide IT Security, Compliance, and Privacy Principles
• Ability to interpret and understand laws, regulations, complex issues, and contractual documents related to IT Security and Privacy, investigate and solve problems, and provide workable recommendations and solutions

Skills on Resume: 

• Leadership in Privacy Programs (Soft Skills)
• Business Process Analysis (Hard Skills)
• Risk Assessment (Hard Skills)
• Vendor Due Diligence (Hard Skills)
• Compliance Adherence (Hard Skills)
• Emerging Trends Monitoring (Soft Skills)
• Spokesperson Role (Soft Skills)
• Legal Interpretation (Hard Skills)

Job Summary:

• Contribute to the strategy for external notices and consents, working on rollout/operational implementation.
• Help implement essential elements of privacy law and foster a data protection culture within the company.
• Develop and maintain privacy-related guidance and templates for all Customer commercial contracting activities.
• Provide subject matter expertise and leadership in the following business areas such as Marketing, ad-tech and digital campaigns.
• Privacy and data diligence issues associated with mergers and acquisitions/business development.
• Complex technology transactions and data transfers.
• Website and e-commerce privacy by design/cookie, banners/consent tracking.
• Consent, notice, consent tracking, privacy tech, privacy by design.
• R&D data in clinical trials and non-clinical trials context, secondary use of R&D data, advanced privacy issues in new technologies.
• Data governance and data strategy in the context of privacy and personal data.

Skills on Resume: 

• External Notices Strategy (Hard Skills)
• Privacy Law Implementation (Hard Skills)
• Privacy Guidance Development (Hard Skills)
• Marketing Subject Matter Expertise (Soft Skills)
• M&A Privacy Issues (Hard Skills)
• Technology Transactions (Hard Skills)
• Website Privacy Compliance (Hard Skills)
• R&D Data Privacy (Hard Skills)

Job Summary:

• Assist in developing and providing privacy training and privacy communications for QI team members.
• Promote privacy awareness and best practices through specialized training for targeted groups, regular outreach to key internal users of personal data, and creation of content for communications and privacy awareness activities.
• Handle (and escalate) day-to-day responses to business requests for direction from the privacy team and to external requests (e.g., from customers) about uses of personal data. 
• Addressing ad-hoc queries on the UK GDPR and PECR and ICO Guidance.
• Assist in designing, implementing and periodically reviewing policies, notices, and practices to facilitate compliance with existing or new privacy obligations and to enable continuous process improvement. 
• Assist in creating and maintaining playbooks / SOPs for privacy processes (e.g., data subject request fulfillment; and incident/event reporting). 
• Research and monitor changes in privacy law and laws affecting personal data retention obligations.
• Assist in other projects in support of global data privacy and information governance programs.
• Escalates key security and data privacy inquiries accordingly
• Maintains strict confidentiality and privilege

Skills on Resume: 

Privacy Training Development (Hard Skills)

Privacy Awareness Promotion (Soft Skills)

Business Request Handling (Soft Skills)

GDPR and PECR Guidance (Hard Skills)

Policy Design and Implementation (Hard Skills)

SOP Creation and Maintenance (Hard Skills)

Privacy Law Monitoring (Hard Skills)

Confidentiality Maintenance (Soft Skills)