Address
Form of workThe Privacy by Design Consultant, ("Consultant") provides direct support to Medtronic Functions and Operating Units (FN/OU) for the development of Medtronic products, services, and solutions by providing Information Privacy domain expertise during all stages of development lifecycle, from early concept to deployment and retirement. This seasoned professional actively engages with Global IT and other FN/OU stakeholders to provide appropriate strategic, transactional, and operational data and privacy deliverables and provide strategic bespoke Privacy by Design advising in support of key initiatives, in particular Global IT and Enterprise initiatives. As subject matter expert, the Consultant will contribute to further building privacy enhancing capabilities, developing generalizable methodologies, and further maturing of Medtronic's Privacy by Design program. The Consultant works closely together with other Privacy team members and OU/FN peer colleagues in similar function, as well as with the OU/FN Legal Counsels to ensure strategic alignment on data and privacy.
The Consultant reports into the Senior Director, Global Privacy Operations, and is a key member of the Global Data& Privacy Center of Expertise ("D&P COE").
The D&P COE team operates as a high functioning team within a relatively flat team structure. Members of the team are:
Innovative and highly flexible
Enthusiastic collaborators
Results oriented
Independent
Actively engaged
Able to influence without direct authority
We believe that when people from different cultures, genders, and points of view come together, innovation is the result -and everyone wins. Medtronic walks the walk, creating an inclusive culture where you can thrive.
Preference for this role to reside in Minneapolis, MN, however, it can work in any other Medtronic office location or work remote.
A Day in the Life
Responsibilities may include the following and other duties may be assigned.
- Lead by example to model a culture of ethics and integrity, exercise sound judgment and courage as a trusted advisor to MDT Functions and Operating Units.
- Provide Privacy by Design guidance and bespoke advising as requested for the development of Medtronic products, services, and solutions, and ensure accountability for both data and privacy legal/regulatory compliance as well as strategic advising. This includes, but is not limited to, the following:
Assessing and defining system specifications preferably in relation to compliance with data protection and privacy regulations- As projects shift from early-stage development toward release, advising may include privacy impact assessment activities and/or business consulting for new product development, material changes to existing products, third party vendor privacy assessments and business consultation requests as required by standards and procedures.
Within the Data and Privacy COE, serve as the subject matter expert and point of contact for Privacy by Design controls, privacy enhancing and technical data protection features- Provide subject matter expertise for the D&P COE in development and implementation of core privacy program elements as requested, with a particular focus on further developing privacy enhancing capabilities and actionable insights and guidance. This includes the authoring of Privacy by Design related guidance materials.
- In collaboration with other members of the Data & Privacy COE team, analyze results of assessments to identify trends and patterns that can be used to improve review efficiencies, existing processes, and standards.
- Bachelor's degree with 10+ years of privacy experience, or 8+ years of privacy experience with an advanced degree
- BS or MS degree in computer science, computer engineering, information systems, privacy engineering or related field of study
- CIPT certification
- Strong understanding of privacy principles and privacy operations
- Strong understanding of software development fundamentals and experience in working with design teams including software, mobile apps, IT development and other technologies.
- Practical experience with the best practices that span the product development life cycle (from requirements definition through specification, design, development, quality assurance, implementation, integration, launch, and production support)
- Proven ability to strategically navigate complex privacy issues and identify tangible solutions
- Experience working on several privacy-focused projects such as Privacy by Design, privacy enhancing technologies, data policy management, privacy infrastructure, privacy usability, and/or privacy threat modelling
- Ability to learn different technologies and solutions created and/or used by Medtronic, and to advise on the specific privacy requirements associated with these technologies and solutions.
- The ability to communicate (verbally and in writing) complex issues and concepts to a wide range of audiences from technical developers and engineers to non-technical business partners and executives.
- Experience in the healthcare industry
- Experience supporting a data privacy, security, or equivalent function directly or indirectly for a large, regulated, and matrixed organization.
- CIPP, CHPC or similar certification, or sufficient demonstrated experience and/or formal education in Privacy and Compliance
- Demonstrated influence management skills, exceptional interpersonal and communication skills.
- Demonstrated experience building positive relationships with a variety of stakeholders, including with employees, clients, senior management, external parties/authorities and suppliers.
- Demonstrated results orientation (driving to deadlines, financial targets, project goals, etc.)
- Strong ability to work collaboratively and partner with employees, other leaders, clients, and vendors
- Demonstrated ability to work across many levels of an organization, from VP to non-exempt staff
We want to accelerate and advance our ability to create meaningful innovations - but we will only succeed with the right people on our team. Let's work together to address universal healthcare needs and improve patients' lives. Help us shape the future.
Physical Job Requirements
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. For Office Roles: While performing the duties of this job, the employee is regularly required to be independently mobile. The employee is also required to interact with a computer, and communicate with peers and co-workers. Contact your manager or local HR to understand the Work Conditions and Physical requirements that may be specific to each role. (ADA-United States of America)
A commitment to our employees lives at the core of our values. We recognize their contributions. They share in the success they help to create. We offer a wide range of benefits, resources, and competitive compensation plans designed to support you at every career and life stage. Learn more about our benefits here.
This position is eligible for a short-term incentive plan. Learn more about Medtronic Incentive Plan (MIP) here.
- Posting Date: Nov 8, 2023
- Travel: Yes, < 25 % of the Time
- Salary Min: 136,400.00
- Salary Max: 204,600.00
