[Hiring] Privacy Manager @Cardinal Health

Role Description

The Enterprise Privacy Office & Cybersecurity Counsel (EPOCC) is responsible for providing advice, counsel, and support in the areas of privacy and data protection. The EPOCC leads the Global Privacy Program and partners with other members of the Legal & Compliance organization, privacy professionals working within the business, as well as business leaders and their teams. Members of this team identify and address potential privacy issues and risks and help Cardinal Health comply with the rapidly evolving privacy laws, regulations, and contractual requirements.

• Serve as a functional Privacy expert for Cardinal Health’s “other” specialty businesses such as Nuclear Pharmacy and OptiFreight Logistics.
• Provide guidance, direction, and practical translation of legislative and regulatory privacy requirements to cross-functional teams on complex projects.
• Assist with the management of legislative and regulatory inquiries, investigations, or administrative actions related to privacy and data security.
• Assist colleagues with the review and negotiation of data privacy agreements, data processing agreements, business associate agreements, and other similar agreements.
• Support acquisitions, divestitures, and joint ventures as they relate to privacy matters.
• Develop and deploy privacy policies and procedures to ensure compliance with applicable data privacy laws and regulations.
• Lead efforts to promote awareness of privacy risks and promote a culture of privacy compliance on the design and provision of privacy training program.
• Create and deliver tailored privacy training programs for diverse audiences.
• Direct the investigation and resolution of privacy incidents and data breach reporting processes in coordination with EPOCC leadership.
• Remain up to date on legislative developments in the field of privacy at the state, federal, and international levels.

Qualifications

• 8-12 years of experience, preferred.
• Bachelor’s degree in related field, or equivalent work experience, preferred.

Requirements

• Proven expertise in HIPAA Privacy and Security Rules.
• Extensive knowledge of U.S. privacy and cybersecurity laws, regulations, and standards.
• Prior experience supporting businesses with digital and technology solutions in healthcare.
• Strong relationship-building and collaboration skills.
• Solution and results oriented, with the ability to prioritize and deliver key initiatives.
• Project management skills with the ability to keep multiple projects moving forward simultaneously.
• Ability to juggle multiple tasks and prioritize under tight time constraints.
• Knowledge of international privacy and data security laws, including GDPR, preferred.
• CHPC, CHPS, or CIPP certification, preferred.

Benefits

• Medical, dental and vision coverage.
• Paid time off plan.
• Health savings account (HSA).
• 401k savings plan.
• Access to wages before pay day with myFlexPay.
• Flexible spending accounts (FSAs).
• Short- and long-term disability coverage.
• Work-Life resources.
• Paid parental leave.
• Healthy lifestyle programs.