RHH201913

Global Director Data Protection

Industrial Products

THE COMPANY

Our client is a publicly traded multi-billion-dollar globally diversified company founded over 100+ years ago.  They are a market leader that designs and manufacturers various engineered components and products for numerous industries worldwide.

THE OPPORTUNITY

Our client is seeking a Global Director Data Protection (GDDP) to be responsible for developing and leading the global privacy strategy for personal and consumer data protection.  The Director will serve as a specialist on global data protection matters; acting as a liaison with company-wide leadership to provide strategic, functional and technical expertise related to data protection, privacy and security.

JOB DEFINITION

The GDDP will be the company’s data & privacy content expert worldwide.  This position will act globally; developing, implementing and ensuring company-wide policies and procedures that protect sensitive data and information. The GDDP will partner with multiple departments to educate, provide guidance and assurance that all company business units & segments are advised, counseled and compliant with global data protection, privacy and security policies and standards.

This position reports to the CHRO and currently has one (1) direct report and will build a global data protection team.

SKILLS

  • Audit the company’s current data protection policies and procedures, identifying where the company is in-scope or out-of-scope and create a comprehensive compliant strategy.
  • Develop and manage a privacy program for consumer and employee data; and deploy required resources, policies, and procedures.
  • Partner with IT, Legal and HR departments developing and implementing data protection, privacy and security training programs.
  • Manage ongoing activities to preserve the availability, integrity, and confidentiality of organization information resources in compliance with applicable security policies and standards.
  • Coordinate with functions such as Legal, HR, IT, Operations, and risk to ensure data protection and security complies with the global requirements in the countries the company operates in.
  • Work with cross-functional business unit teams to ensure the management and alignment of data protection and privacy meet business requirements.
  • Function as a liaison between stakeholders and technical teams to obtain knowledge of data supply chains, and data controls across the business.
  • Manage a data security team of professionals including hiring, coaching, development and performance management.
  • Monitor and respond to regulatory changes through regular review and revision of policies/documentation and internal procedures, ensuring compliance with global privacy laws.
  • Advise leadership of emerging global policies, services, protocol and standards in support of data security hardware and software.
  • Partner with Leggett leadership to implement and manage new processes for data handling for compliance with laws and internal policies.
  • Identify and monitor the data processors, ensuring that they deal with data in a manner consistent with the key data protection principles.
  • Evaluate, lead, and ensure global compliance for GDPR, CCPA, and other applicable privacy laws.
  • Implement a vendor management process for ensuring that all agreements have appropriate data security and privacy terms.
  • Work with operations and product development teams to ensure company products comply with applicable privacy laws.
  • Develop and maintain a breach management program.
  • Review data mapping and lead privacy audit activities.
  • Provide periodic reporting to corporate leadership, the CEO, and Board, as necessary.
  • Lead training efforts to increase employee knowledge of company privacy policies, data handling practices and procedures, legal requirements and advise staff on the provisions of the Data Protection Act.
  • Communicate with regulators, vendors, and potentially the media.
  • Develop relationships with regulators and other government officials responsible for privacy and data security issues.
  • This position will serve on the company’s Cyber Oversight Committee.

BACKGROUND EXPERIENCE

  • A Bachelor’s degree in information technology, business, data sciences, or regulatory compliance.  Graduate or Juris Doctorate degree preferred.
  • At least 5+ years of experience in the data privacy profession with an in-depth knowledge of global privacy laws and experience building, implementing, and managing a global privacy program.
  • Strong knowledge of global privacy laws including GDPR and CCPA + familiarity with compliance regulations, IT, security frameworks and standards (i. e. GDPR, NIST 800, ISO/IEC 27002, HIPAA, PCI, SOX, HITRUST).
  • Experience with Data Protection or Data Governance tools (e.g., data discovery, data mapping, data lineage, database activity monitoring, data modeling) + knowledge of data protection, security, privacy, data governance, and data lifecycle methodologies and concepts.
  • Proven ability to understand and interpret legal framework as it applies to global privacy laws and compliance.
  • Ability to professionally interact with multiple stakeholder groups and levels.
  • Capable of aggregating information and data and producing reports for representing status and results.
  • Demonstrable track record dealing well with ambiguity, prioritizing needs, and delivering measurable results in an agile, fast-paced environment.
  • Demonstrated ability to effectively lead a global privacy team.
  • Must be resourceful and creative with a roll-up your sleeves mentality – Self-motivated and results-oriented.
  • Displays stamina, energy and is committed to personal development for self and others throughout the organization – Ability to manage multiple priorities and changing requirements.
  • Excellent analytical and judgement skills.
  • Excellent written and verbal communications skills with the ability to communicate effectively at all levels of the organization and externally to vendors, partners, the media, and regulators.
  • Excellent change management skills with the ability to develop strategy, evaluate efficacy, influence stakeholders, drive implementation, and measure success.
  • Travel Required (Approximate): 25%+
If you have these qualifications and are looking for a challenging career, please submit your Resume using the button below.
Jodi Ellis
Director, Executive Recruitment
Eric Hohauser
Lead Consultant
William Weatherston
Consultant