Privacy Program Manager

Business Affairs, Redwood City, California, United States

Compliance Legal

Post Date Jun 20, 2024

Requisition # 103683

Stanford is one of the world’s leading universities, supported by diverse staff who share a passion for the University’s teaching, learning, research, and clinical care mission. Stanford provides a culture of excellence, innovation, collaboration, and life-long learning. Explore some of themany perksenjoyed by our employees.

The Office of the Chief Risk Officer strives to be a valued partner and advisor to the administration, faculty, and Board-level governing bodies of Stanford, including the Audit, Compliance, and Risk Committee of the Board of Trustees. OCRO strives to be a valued partner and advisor. Across the Stanford ecosystem, we support Stanford’s missions by providing strategic consultation, independent assurance, and a catalyst for coordinated, balanced action on risk and compliance matters. OCRO includes the functions of internal audit, enterprise risk management, ethics and compliance, information privacy, information security, global risk, and insurance and claims risk management.

Privacy has emerged as one of today’s most important and dynamic fields. Fittingly, Stanford’s Privacy Office is a high-profile team, whose role spans Stanford.. As such, team members gain broad enterprise perspective, assist in a wide variety of activities, and make meaningful contributions on a daily basis. Our mission is to protect the sensitive information entrusted to Stanford, and our success stems from an enduring commitment to transparency, inclusion, and pragmatism.

JOB PURPOSE:

Provide advanced programmatic support while gaining valuable leadership experience with privacy/data risk assessments, investigations, incident response, and awareness programs and addressing the adequacy and effectiveness of related policies, systems, processes, and controls across Stanford University. Along the way, frequently collaborate with University staff, faculty, researchers, and partner departments such as Legal and Information Security.

CORE DUTIES:

• Prepare and execute privacy risk assessments of projects, systems, and departments and data incident responses/investigations in accordance with recognized standards. Address the adequacy and effectiveness of related policies, systems, processes, and controls across Stanford University.

• Consult and advise university faculty and staff on best practices and the handling of complex and sensitive information; develop, deliver and implement education and training.

• Participate in the planning and drafting of policies and procedures.

• Conduct periodic follow-up reviews to assess and report on progress or completion of management's corrective actions in response to observations and recommendations.

• Conduct investigations of suspected privacy violations of law and policy in conjunction with other audit/investigation staff and university resources.

• Contribute to developing unit-level annual work plan.

• Prepare and review work paper documentation to ensure it supports conclusions and results based on appropriate analyses and evaluations.

• Communicate the results of privacy projects via written reports and oral presentations to management.

• Participate as part of a project team on privacy related topics.

• Monitor current privacy trends, legislation, and activities, and assist with implementing best practices.

• Develop and maintain productive stakeholder and staff relationships.

MINIMUM REQUIREMENTS:

Education and Experience:

• Bachelor’s degree and four years of audit, privacy, compliance or other relevant experience in higher education, health care, research-based non-profit organizations, or government contracting or combination of education and relevant experience.

Knowledge, Skills, and Abilities:

• Strong analytical skills with ability to identify and assess risk and exposures across a wide variety of processes.

• Knowledge and ability to use OneTrust’s privacy automation modules.

• Strong project management and organizational abilities.

• Excellent written, oral, and interpersonal communications skills.

• Self-starter with the ability to work as part of a team or independently as an individual contributor.

• Strong customer focus.

• Demonstrated commitment to continuous improvement.

• Demonstrated knowledge of state and federal statutes, laws, and regulations.

Certifications and Licenses:

• International Association of Privacy Professionals (IAPP) certification required

Preferred Qualifications:

Education and Experience:

• Law degree plus four years of audit, privacy, compliance or other relevant experience in research-based health care, life sciences, and non-profit organizations or combination of education and relevant experience.

PHYSICAL REQUIREMENTS:

• Constantly perform desk-based computer tasks.

• Frequently sitting.

• Occasionally stand/walk, reach/work above shoulders, use a telephone, writing by hand, lift/carry/push/pull objects that weigh up to 10 pounds;

• Rarely twist/bend/stoop/squat, sort/file paperwork or parts, lift/carry/push/pull objects that weigh 11-20 pounds.

WORKING CONDITIONS:

• Occasionally work evenings and weekends.

WORK STANDARDS:

• Interpersonal Skills: Demonstrates the ability to work well with Stanford colleagues and clients and with external organizations.

• Promote Culture of Safety: Demonstrates commitment to personal responsibility and value for safety; communicates safety concerns; uses and promotes safe behaviors based on training and lessons learned.

• Subject to and expected to comply with all applicable University policies and procedures, including but not limited to the personnel policies and other policies found in the University's Administrative Guide,httR:// adminguide.stanford.edu.

This role is open to candidates anywhere in the United States. Stanford University hasfive Regional Pay Structures. The compensation for this position will be based on the location of the successful candidate. Salary to be determined based on candidate experience.

The expected pay range is $82,000 to $115,000 per annum for remote positions.

The expected pay range is $108,000 to $134,000 per annum for hybrid positions.

Stanford University provides pay ranges representing its good faith estimate of what the university reasonably expects to pay for a position. The pay offered to a selected candidate will be determined based on factors such as (but not limited to) the scope and responsibilities of the position, the qualifications of the selected candidate, departmental budget availability, internal equity, geographic location, and external market pay for comparable jobs.

At Stanford University, base pay represents only one aspect of the comprehensive rewards package. The Cardinal at Work website (https://cardinalatwork.stanford.edu/benefits-rewards) provides detailed information on Stanford’s extensive range of benefits and rewards offered to employees. Specifics about the rewards package for this position may be discussed during the hiring process.

Why Stanford is for You

Imagine a world without search engines or social platforms. Consider lives saved through first-ever organ transplants and research to cure illnesses. Stanford University has revolutionized the way we live and enrich the world. Supporting this mission is our diverse and dedicated 17,000 staff. We seek talent driven to impact the future of our legacy. Our culture and unique perks empower you with:

• Freedom to grow . We offer career development programs, tuition reimbursement, or course auditing. Join a TedTalk, film screening, or listen to a renowned author or global leader speak.

• A caring culture . We provide superb retirement plans, generous time-off, and family care resources.

• A healthier you . Climb our rock wall or choose from hundreds of health or fitness classes at our world-class exercise facilities. We also provide excellent health care benefits.

• Discovery and fun . Stroll through historic sculptures, trails, and museums.

• Enviable resources . Enjoy free commuter programs, ridesharing incentives, discounts and more!

The job duties listed are typical examples of work performed by positions in this job classification and are not designed to contain or be interpreted as a comprehensive inventory of all duties, tasks, and responsibilities. Specific duties and responsibilities may vary depending on department or program needs without changing the general nature and scope of the job or level of responsibility. Employees may also perform other duties as assigned.

Consistent with its obligations under the law, the University will provide reasonable accommodations to applicants and employees with disabilities. Applicants requiring a reasonable accommodation for any part of the application or hiring process should contact Stanford University Human Resources by submitting acontact form.

Stanford is an equal employment opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law.

Additional Information

• Schedule: Full-time

• Job Code: 2372

• Employee Status: Regular

• Grade: J

• Requisition ID: 103683

• Work Arrangement : Hybrid Eligible, Remote Eligible