Data Privacy Officer (100%)-00000RKE
Description
Cilag GmbH International is an International Sourcing Center of the Johnson & Johnson pharmaceutical sector handling the supply chain of the Janssen-Cilag Group. Over the last years, several business units have been established within the legal entity of Cilag GmbH International, creating a diverse, international organization with over 950 employees. For our Campus in Zug we are looking for a
Data Privacy Officer (100%)
Objective
Lead all activities related to implementation, maintenance and adherence to Johnson & Johnson privacy policies and all applicable local data protection laws in accordance with the Johnson & Johnson International Privacy Compliance Framework.
Main responsibilities
- Assumes leading role in launching and managing operating company cross-functional privacy team and ensures company data-handling practices comply with collection, use and disclosure requirements and rights of data subjects in all functional areas.
- Understand the business risks of non-compliance and advise all staff where their activities put the company at risk
- Advise the senior management team of their rights and responsibilities under data privacy legislation
Partners - liaise with:
- Representatives from business process owners that collect or process personal data (including, as applicable, Human Resources, Clinical, Sales and Marketing, Customer Call Centres, Information Technology), the Global Privacy Organisation and key functional partners (like the Law Department, IT Security and Information Lifecycle Management), to ensure maintenance of appropriate privacy practices that reflect current Johnson & Johnson and local legal requirements across the organization;
- IT Manager Campus Switzerland on issues that pertain to the protection of personal data, including appropriate security and access controls, in accordance with internal policies;
- The local IT teams to ensure that systems always meet legislation
- Human Resources’ implementation of employment data privacy policies, as necessary;
- Appropriate internal resources to develop privacy-protective vendor management including the insertion of approved privacy language into all contracts that cover the processing of personal data by a third party on the company’s behalf.
- The Data Protection Authority, in case of questions, inspections or data breaches
Activities
Assume lead role in data protection/privacy compliance activities including:
- Maintain and review local privacy policies and procedures, if applicable.
- Review and approve privacy related marketing initiatives conducted internally or through a third party where personal data is collected.
- Makes required notification and filings to government authorities (if applicable).
- Manages company’s Incident Response Process and serves as incident response lead.
- Monitor changes in legislation and implement in policies and processes
- Provides privacy input to copy review committee and internet compliance review process.
- Answers privacy questions from company personnel and serves as point of contact for internal audits, privacy assessments and security reviews.
- Create and maintain an inventory of electronic and manual systems that collect personal data from employees, customers, third parties, job applicants and others
- Assist business owners in self-assessment and audit activities; assume lead role in coordinating and documenting remediation activities.
- Provide privacy training to employees within own organisation.
- Actively participate in Global Privacy Organisation training sessions and meetings.
- Attend external privacy and data protection conferences as appropriate.
- Direct reporting line to J&J Global Privacy Team
Qualifications
- Functional understanding of applicable Privacy laws and regulations - applied in a company context
- Good communication skills
- Be able to manage different stakeholders
- The ability to have influence without authority
- Excellent knowledge of German and English - French is a plus.
- Experience in health care sector is an asset
Have we piqued your interest? We look forward to receiving your application.
Primary Location:Europe/Middle East/Africa-Switzerland-Zug-Zug
Organization: Cilag GmbH International (8525)
Job Function: Legal (Non Attorney)
Description
Cilag GmbH International is an International Sourcing Center of the Johnson & Johnson pharmaceutical sector handling the supply chain of the Janssen-Cilag Group. Over the last years, several business units have been established within the legal entity of Cilag GmbH International, creating a diverse, international organization with over 950 employees. For our Campus in Zug we are looking for a
Data Privacy Officer (100%)
Objective
Lead all activities related to implementation, maintenance and adherence to Johnson & Johnson privacy policies and all applicable local data protection laws in accordance with the Johnson & Johnson International Privacy Compliance Framework.
Main responsibilities
- Assumes leading role in launching and managing operating company cross-functional privacy team and ensures company data-handling practices comply with collection, use and disclosure requirements and rights of data subjects in all functional areas.
- Understand the business risks of non-compliance and advise all staff where their activities put the company at risk
- Advise the senior management team of their rights and responsibilities under data privacy legislation
Partners - liaise with:
- Representatives from business process owners that collect or process personal data (including, as applicable, Human Resources, Clinical, Sales and Marketing, Customer Call Centres, Information Technology), the Global Privacy Organisation and key functional partners (like the Law Department, IT Security and Information Lifecycle Management), to ensure maintenance of appropriate privacy practices that reflect current Johnson & Johnson and local legal requirements across the organization;
- IT Manager Campus Switzerland on issues that pertain to the protection of personal data, including appropriate security and access controls, in accordance with internal policies;
- The local IT teams to ensure that systems always meet legislation
- Human Resources’ implementation of employment data privacy policies, as necessary;
- Appropriate internal resources to develop privacy-protective vendor management including the insertion of approved privacy language into all contracts that cover the processing of personal data by a third party on the company’s behalf.
- The Data Protection Authority, in case of questions, inspections or data breaches
Activities
Assume lead role in data protection/privacy compliance activities including:
- Maintain and review local privacy policies and procedures, if applicable.
- Review and approve privacy related marketing initiatives conducted internally or through a third party where personal data is collected.
- Makes required notification and filings to government authorities (if applicable).
- Manages company’s Incident Response Process and serves as incident response lead.
- Monitor changes in legislation and implement in policies and processes
- Provides privacy input to copy review committee and internet compliance review process.
- Answers privacy questions from company personnel and serves as point of contact for internal audits, privacy assessments and security reviews.
- Create and maintain an inventory of electronic and manual systems that collect personal data from employees, customers, third parties, job applicants and others
- Assist business owners in self-assessment and audit activities; assume lead role in coordinating and documenting remediation activities.
- Provide privacy training to employees within own organisation.
- Actively participate in Global Privacy Organisation training sessions and meetings.
- Attend external privacy and data protection conferences as appropriate.
- Direct reporting line to J&J Global Privacy Team
Qualifications
- Functional understanding of applicable Privacy laws and regulations - applied in a company context
- Good communication skills
- Be able to manage different stakeholders
- The ability to have influence without authority
- Excellent knowledge of German and English - French is a plus.
- Experience in health care sector is an asset
Have we piqued your interest? We look forward to receiving your application.
Primary Location:Europe/Middle East/Africa-Switzerland-Zug-Zug
Organization: Cilag GmbH International (8525)
Job Function: Legal (Non Attorney)