IT Privacy And Data Protection Manager

Cardinal Health Dublin , OH 43016

Posted 2 months ago

Headquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly 100 years of experience, with more than 50,000 employees in nearly 60 countries, Cardinal Health ranks among the top 20 on the Fortune 500.

We currently have a full-time job opening for an IT Privacy and Data Protection Manager

Department overview:

Information Security and Risk Management (ISRM) at Cardinal Health exists to ensure the availability, integrity and confidentiality of critical healthcare infrastructure that safeguards the patient. Our mission is to promote a culture that protects information assets, manages risk and embeds security and controls in people, process and technology.

Job Overview:

The main responsibility of this role is to lead the overall IT privacy compliance program including defining, implementing and ensuring effective execution of IT controls to compliance with local, national and international privacy regulations such as GDPR (General Data Protection Regulation) and the CCPA (California Consumer Privacy Act).

Daily Responsibilities:

This role is a senior position within the team and will work with all members of the Information Security and Risk Management team as well as privacy leaders in Legal, Ethics & Compliance and our various businesses throughout the Cardinal Health enterprise.

Additional responsibilities include:

  • Lead overall IT privacy and data protection compliance program

  • Implement compliance program to address local, national and international IT privacy and data protection requirements (both regulatory and contractual)

  • Collaborate with IT and business leaders to conduct compliance assessments

  • Advise and assist the IT organization in remediation and compliance of privacy and data protection requirements

  • Interface with Legal counsel and Ethics & Compliance leaders to address regulatory or compliance issues, concerns or questions

  • Partner with IT and IT Security in the development of policies, procedures and practices in support of privacy and data protection compliance

  • Identify opportunities to automate various privacy and data protection compliance activities to reduce the overall cost of compliance

  • Support additional IT general controls effectiveness efforts over infrastructure and applications as a "second line of defense"


  • Prior IT compliance, IT audit, IT risk assessment or IT privacy experience is a requirement

  • Security or risk certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional) and/or CIPP (Certified Information Privacy Professional) certifications are a plus

  • Bachelors degree in related field or equivalent work experience

  • 8+ years experience in related field preferred

  • Ideal candidate will have excellent communication skills with leaders at all levels within the organization, an ability to work in a matrixed environment to drive results, and the ability to clearly define and execute repeatable processes.

Cardinal Health is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Manager Data Governance


Posted 1 week ago

VIEW JOBS 6/12/2019 12:00:00 AM 2019-09-10T00:00 Overview The Data Governance Manager will lead and manage all organization-wide data governance activities and will have responsibility for improving the quality and managing the protection of sensitive data and information assets. The position will focus on establishing and ensuring adherence to an enterprise data governance framework for data policies, standards and practices, both at the department and Business and Functional area levels, to achieve the required level of consistency, quality and protection to meet overall business needs. The Data Governance Manager serves as a point of escalation for governance, data quality, data access and protection issues and will work cross functionally with Legal, Business leaders and Information Security to improve the quality and value of core data assets, respond to regulatory protection requirements as well as support the strategic requirements of the brand. &nbsp &nbsp Specific Responsibilities Include * Implementation and oversight of data governance standards, practices, policies, process and technologies, which will include establishment and development of a framework for access, handling, movement and control rights of data at Wendy's.&nbsp * Escalation point for governance, data quality and protection issues * Escalation point for requests to monetize data and share data with third parties * Streamline process with which data is collected, shared, utilized, protected, and stored * Maintains efficiency to ensure accurate data handling * Maintains compatibility between data management and company goals * Responds to regulatory protection requirements as well as support the strategic requirements * Ensures all internal standards, practices, policies and processes are compliance with legal, regulatory and privacy requirements on an ongoing basis * Supports organizational awareness, communication, education and training related to data governance This position will be based at The Wendy's Company headquarters in Dublin, a suburb of Columbus, OH. The Wendy's Company is the world's second largest quick-service hamburger company. The Wendy's system includes more than 6,500 franchise and Company restaurants in the U.S. and 25 other countries and U.S. territories worldwide. &nbsp Not familiar with Columbus? Visit &nbsp &nbsp Education / Experience * Bachelors Degree in MIS, IT, Engineering or business * Experience and/or knowledge of Sarbanes-Oxley, Basel I, Basel II, HIPAA, GDPR/CCPA and other data privacy and governance regulations, including proposed and anticipated requirements * Awareness of business and consumer sentiment and trends related to data privacy and governance * Knowledge of industry data quality and data protection management practices * Knowledge of data governance practices, business and technology issues related to management of enterprise information assets and approaches related to data protection * Demonstrated consulting skills, with change management concepts and strategies, including communication and culture change * Passion for developing talent by growing engaged, inclusive and diverse teams who mirror Wendy's core values 'Treat People with Respect' and 'Do the Right Thing'.&nbsp Wendy's is an equal employment opportunity employer who may provide reasonable accommodation to enable individuals with disabilities to perform the essential functions of the job. &nbsp Please note that the Wendy's Company does not accept unsolicited résumé's from recruiters or employment agencies.&nbsp In the absence of a signed Master Service Agreement, and specific approval to submit résumé's to an approved requisition, the Wendy's company will not consider or approve payment regarding recruiter fees or referral compensations. &nbsp Wendy's Dublin OH

IT Privacy And Data Protection Manager

Cardinal Health