Abbott is a global healthcare leader that helps people live more fully at all stages of life. Our portfolio of life-changing technologies spans the spectrum of healthcare, with leading businesses and products in diagnostics, medical devices, nutritionals and branded generic medicines. Our 114,000 colleagues serve people in more than 160 countries.
Nutrition and Established Pharmaceuticals Privacy Director
The Opportunity
This position works out of either our Abbott Park or Columbus, OH locations, and supports Abbott Nutrition and Established Pharmaceuticals divisions.
The successful candidate should have a proven track record in collaboratively and pragmatically directing data protection needs and issues for a multi-national company, preferably in the life sciences. He/she has experience in presenting to senior executives and/or outside directors, is a self-starter who successfully works with cross-functional working groups and works effectively with regulators and can provide risk-based guidance with imperfect information.
Qualified candidate is expected to build effective relationships with business unit leaders and other clients, and to partner with Abbott's global Legal and IT organizations. He/she also works with numerous other privacy and compliance stakeholders around the world.
What You’ll Work On
- Building and maintaining a deep business understanding.
- Informing and advising Abbott businesses and employees of their obligations to ethically collect and protect personal data and to comply with Abbott policies and global/local privacy regulations.
- Lead oversight and monitoring of Abbott Nutrition and Established Pharmaceuticals privacy compliance program, including coordination with regional privacy and compliance team members.
- Advise stakeholders with regards to go-to-market privacy strategies for new products or services.
- Inform and advise with regards to data privacy, data protection, and cybersecurity laws and regulations.
- Monitor compliance, including managing internal data protection activities, provide training, and conducting internal monitoring.
- Advise on privacy impact and risk assessments.
- Work and cooperate with designated supervisory authorities on issues and inquiries related to the processing of personal data.
- Be available for inquiries from data subjects on issues relating to data protection practices.
- Lead business specific incident response processes.
- Lead the development of division specific policies and procedures, work instructions, and other necessary procedural documents.
- Lead interactions between Privacy and business stakeholders by providing guidelines, checklists, training, resources, and other support to help streamline the submission and review of privacy impact and risk assessments and other requests for privacy support.
- Work closely with Abbott Privacy leadership team and continuously partner with division/global OEC leadership and teams.
- Triage, route, track, and manage the status, ownership, and completion of privacy projects, requests, and risk assessments.
- Work with product and engineering teams to enhance, manage, and develop new Privacy by Design methodologies, processes and policies to support the launch of consumer and healthcare professional related privacy initiatives, globally.
- Gather facts and information to coordinate analysis and privacy-related responses with regional privacy team members, legal, and IT to internal audits, customer inquiries, data protection regulator inquiries, and Data Subject Access Requests.
- Lead the creation and management of metrics, and other tools to help communicate and track Privacy team progress and strategy for senior leadership.
Required Qualifications
- Master level or equivalent degree.
- Proven track record with regards to the following leadership skills:
- Stakeholder management,
- Change management,
- Project management,
- Communications,
- Active listening skills,
- Collaboration,
- Decision making, and
- Agile learner.
- Must have worked effectively with all levels of management up to and including Division President, Corporate and Divisional VPs & Directors. High level of oral and written communication skills required.
- Ability to manage directly and indirectly across multiple languages, geographies and time zones is a must.
- At least 8-10 years of managing large and complex data privacy programs, demonstrating decision making and leadership skills.
- Strong process management expertise and mindset.
- Deep understanding of business interests and data processing activity, preferably in life sciences industry.
- Expertise with digital technologies.
- Strong knowledge of data protection and cybersecurity laws and regulations, as well as industry leading-practices and standards, and ability to understand and assess data protection risk and business benefit.
- Experience and understanding of compliance practices related to data security and privacy including common risks and controls. Ability to effectively navigate in a highly matrixed organization.
Preferred Qualifications
- Experience supporting product launches or familiarity with product launch lifecycle.
- Experience scaling of privacy controls and capabilities.
- Experience in program management, consulting, or internal regulatory compliance.
- Professional certification in privacy (e.g., CIPP, CIPM, CIPT, CDPSE).
- Proven strength to identify stakeholders and points of view, bringing people together to agree on and execute a strategy.
- Prior exposure to regulated healthcare and life sciences companies a plus.
The base pay for this position is $143,300.00 – $286,700.00. In specific locations, the pay range may vary from the range posted.