Sr. Privacy Counsel

Transunion Chicago , IL 60602

Posted 2 months ago

What We'll Bring:

At TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation. We are consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.

Come be a part of our team - you'll work with great people, pioneering products and cutting-edge technology.

What You'll Bring:

  • J.D. and 4 to 6 years of relevant experience as an attorney

  • Expertise in privacy and data protection laws such as GDPR and CCPA required

  • Keen understanding of the changing landscape of global privacy laws, regulations and guidance

  • Experience working with privacy issues in financial services or other highly regulated industry preferred

  • Demonstrable understanding of how privacy laws impact, and are impacted by, technology

  • Excellent interpersonal and verbal/written communication skills

  • Ability to communicate difficult concepts

  • Ability to foster relationships and become a trusted business partner

  • High level of ethics and integrity in professional matters, sensitivity for confidentiality

  • Detail-oriented with proven organizational skills and analytical ability; Ability to prioritize, problem solve, and work well under time pressure

  • Experience working with Microsoft Office Suite; PowerPoint, Outlook, MS Word, and Excel

We'd love to see:

  • International Association of Privacy Professionals (IAPP) CIPP or similar certifications are preferred

Impact You'll Make:

  • Serve as an escalation point in the product development life cycle to review privacy impact assessments and to assess applicability of privacy laws and best practices to new product concepts

  • Provide guidance and support to legal and business colleagues in incorporating privacy by design

  • Provide pragmatic and practical advice as to how to tailor products to meet privacy requirements and best practices

  • Coordinate outside counsel's privacy due diligence efforts

  • Execute on strategic plan to advance and continue to mature the privacy program

  • Collaborate with key internal stakeholders to further integrate privacy risk assessments into product development, vendor management, technology change management and mergers and acquisitions

  • Draft, update, and regularly review privacy notices, policies and procedures as necessary

  • Review and approve privacy training as necessary

#LI-EF1

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability status, veteran status, marital status, citizenship status, sexual orientation, gender identity or any other characteristic protected by law.

TransUnion's Internal Job Title:

Sr Counsel, Legal

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Chief Privacy Officer

University Of Chicago

Posted 7 days ago

VIEW JOBS 11/26/2020 12:00:00 AM 2021-02-24T00:00 Department Office of Legal Counsel About the Department The Office of Legal Counsel ("OLC") provides legal advice, counsel, and representation to the University. We assist all University units and divisions with legal questions and advice to support the University's education and research missions. The University's Vice President and General Counsel, Kim Taylor, and nine other attorneys in the Office are all members of the National Association of College and University Attorneys. We work with University partners on a broad range of matters. Job Information Job Summary: The Chief Privacy Officer (CPO) will collaborate with legal, compliance, IT, procurement, the Provost's office including both research compliance and faculty research, and other University functions to develop, implement and administer a comprehensive privacy and data governance program at the University in compliance with all applicable laws including, without limitation, HIPAA, FERPA, GDPR and state privacy laws. The CPO is the University's first privacy officer and will be the senior privacy resource for the University. This person will work with University leadership to identify and address emerging data privacy issues and questions. This individual will collaborate with other University stakeholders to build a data governance program, develop sound privacy policies, procedures and practices that anticipate future innovation in both University administration and emerging areas of research, including bioinformatics and data science. This individual will maintain the University's privacy policies and procedures, facilitate data governance activities, and partner with University leadership to ensure that the University's program adopts a risk-based analysis consistent with the University's mission and values. This individual must be comfortable working with a wide range of constituents and dealing with broad scope of issues involving both faculty research and data sets as well as administrative data (student records, employee records, financial data, legal data, etc.). The CPO will collaborate with University stakeholders to consider the ethical, legal, regulatory, technological and other implications of these issues and their impact on a wide range of stakeholders as well as the institution. In this capacity, the CPO must be a solution oriented person capable of seeing multiple perspectives who will apply regulatory requirements to ensure the appropriateness of use, protection and confidentiality of data and other information assets across the organization. The CPO will report to the Vice President and General Counsel and, recognizing the institution-wide nature of the responsibility, will work closely with the Provost's Office, University faculty members, and other members of University leadership. This position will require a high level of knowledge of HIPAA privacy obligations, particularly in the context of research. This position will not be responsible for the University of Chicago Medicine's ("UCM") HIPAA Privacy Program but will be expected to coordinate closely with UCM's Chief Privacy Officer and UCM's HIPAA Privacy Program (e.g., when developing a response to privacy and security incidents that involve data from both the University and UCM). This position requires an individual capable of enhancing the overall awareness and culture of privacy and data governance at the University through training and education. Responsibilities: * Build, implement, coordinate, and manage a comprehensive privacy and data governance/privacy program to meet federal, state, and international laws, regulations, and rules regarding privacy * Develop and maintain privacy policies, procedures and practices for research and administrative data, respectively * Draft, review, and maintain privacy policies for the University's various websites and online services * Facilitate University-wide data governance program and related meetings, programs, and working groups * Serve as senior privacy resource for the University and work with University leadership to identify and address emerging data privacy issues and questions consistent with the University's values, mission and legal requirements * Collaborate with faculty, information technology and security, the privacy team at the Medical Center, legal counsel, University research administration, the Provost's office, procurement, compliance and internal audit * Collaborate with the information security officer to ensure alignment between security and privacy compliance programs including policies, practices, investigations, and acts as a liaison to the information systems department. * Establish with the information security officer(s), an ongoing process to track, investigate and report inappropriate access and disclosure of protected health information. Monitor patterns of inappropriate access and/or disclosure of protected health information. * Advise University research administration in negotiating data sharing contracts for research * Guide procurement in negotiating IT vendor, cloud storage, and consulting and services agreements that involve personally identifiable information * Maintain current knowledge of applicable federal, state, and international privacy laws as well as developments and high-profile incidents at similar institutions * Inform relevant unit leaders and their teams of industry trends and updates on data privacy issues and topics * Provide business units with appropriate tools and methodologies to ensure ongoing compliance * Develop and manage privacy training materials and conduct ongoing privacy training and awareness activities for researchers and administrative units * Collaborate with the University's Chief information Security Officer to update and maintain the University's incident response plan * Conduct periodic assessment of operations for privacy compliance; assist with investigations when appropriate * Develop and manage procedures for vetting and auditing vendors for compliance with privacy and data security policies and legal requirements * Lead, manage, and contribute to other projects and initiatives as assigned Competencies: * Expert on privacy matters related to large complex, customer oriented, research-intensive organizations entrusted with large volumes of sensitive, confidential data of a critical nature to the enterprise and its constituents ideal. An understanding of HIPAA, FERPA, GDPR and other privacy laws and regulations in higher education and healthcare is critical * Success operationalizing a privacy and data governance program is ideal * Outstanding communication and presentation skills; demonstrated ability to build successful relationships with a wide range of persons across multiple constituencies * Experience with academic research working with an academic medical center preferred. * Ability to define and implement a multi-year strategic program and a corresponding set of strategic goals * Excellent issue-spotting, analytical and problem solving skills * Ability to understand, research, analyze, interpret and apply complex federal, state and international privacy laws, rules and regulations and the constantly evolving risk profiles * Digital and technical proficiency * Ability to facilitate debate, consensus and decision-making and manage governance activities * Excellent judgment in a high-pressure environment; comfortable identifying institutional level decisions or questions of first impression that require input from senior leadership * Dedication to treating internal and external constituents as clients, maintaining a customer service approach * Experience working with HIPAA, FERPA, GDPR, state privacy laws, and ideally experience with their application in both research and administrative contexts * Demonstrated success in training and educating a range of stakeholders on a comprehensive privacy or related plan * Demonstrated ability to manage appropriate responses to different incidents and investigations preferred * Excellent project management skills; demonstrated ability to prioritize work and meet deadlines in a fast-paced environment * Experience working with metrics and success implementing evidence-based changes preferred Additional Requirements Education, Experience or Certifications: Education: * Bachelor's degree required * JD or master's degree in business or related field preferred Experience: * Ten or more years of progressively responsible experience in privacy, compliance or related areas in a large research university, academic medical center, or other relevant complex organization required Certifications: * Certified Information Privacy Professional qualification a plus Required Documents: * Resume/CV * Cover Letter * Professional References Contact Information When applying, the document(s) MUST be uploaded via the My Experience page, in the section titled Resume/CV of the application. Benefit Eligibility Yes Pay Frequency Monthly Pay Range Depends on Qualifications Scheduled Weekly Hours 37.5 Union Non-Union Job is Exempt Yes Drug Test Required No Motor Vehicle Record Inquiry Required No Health Screen Required No Posting Date 2020-11-25-08:00 Remove from Posting On or Before 2021-05-25-07:00 Posting Statement: The University of Chicago is an Affirmative Action/Equal Opportunity/Disabled/Veterans Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national or ethnic origin, age, status as an individual with a disability, protected veteran status, genetic information, or other protected classes under the law. For additional information please see the University's Notice of Nondiscrimination. Staff Job seekers in need of a reasonable accommodation to complete the application process should call 773-702-5800 or submit a request via Applicant Inquiry Form. We seek a diverse pool of applicants who wish to join an academic community that places the highest value on rigorous inquiry and encourages a diversity of perspectives, experiences, groups of individuals, and ideas to inform and stimulate intellectual challenge, engagement, and exchange. All offers of employment are contingent upon a background check that includes a review of conviction history. A conviction does not automatically preclude University employment. Rather, the University considers conviction information on a case-by-case basis and assesses the nature of the offense, the circumstances surrounding it, the proximity in time of the conviction, and its relevance to the position. The University of Chicago's Annual Security & Fire Safety Report (Report) provides information about University offices and programs that provide safety support, crime and fire statistics, emergency response and communications plans, and other policies and information. The Report can be accessed online at: http://securityreport.uchicago.edu. Paper copies of the Report are available, upon request, from the University of Chicago Police Department, 850 E. 61st Street, Chicago, IL 60637. University Of Chicago Chicago IL

Sr. Privacy Counsel

Transunion