Staff Privacy Manager

Company Description

At Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints.

As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare's hardest challenges and advance what is possible.

Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere. We strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.

Passionate people who want to make a difference drive our culture. Our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential.

Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let's advance the world of minimally invasive care.

Job Description

Primary Function of Position:Privacy  and  data  protection  laws  and  regulations  are  evolving  across  the  globe.    The  regulatory  and operational impact to businesses is increasing in complexity and presenting new compliance challenges.  Intuitive’s  Privacy  and  Data  Protection  team  helps  develop  and  implement  data  privacy  and  protection safeguards, controls, and regulatory requirements into our products, services and internal processes.  The team supports Intuitive’s mission by promoting transparent, thoughtful, and deliberate collection, use, and dissemination of data in ethical, practical, and legally compliant ways.

The successful candidate will have an opportunity in the privacy program to make impact in a dynamic and rapidly growing organization. This position primarily supports the APAC region and is based in Seoul, South Korea.

Role and Responsibilities:• Collaborate closely with Data Privacy legal, compliance and privacy engineer colleagues, and other stakeholders to support privacy compliance in an efficient and effective manner. Advice on decisions to be taken, and paths to take to resolve areas of opportunity.• Work closely with Intuitive’s functional and product development teams to identify data flows and develop records of processing activities.• Conduct privacy risk assessments and Data Protection Impact Assessments (DPIA) for products, systems, and services. Assess privacy risks and recommend mitigating controls.• Lead privacy projects, identify trends and leverage data to drive improvement across Intuitive.• Automate internal review process and periodic assessments.• Manage data subject rights requests.• Establish continuous monitoring for effectively tracking and managing security and privacy controls.• Contribute to privacy control governance, policy and procedure, and technical security controls supporting privacy objectives.• Identify and execute upon opportunities to improve our ability to measure and report on privacy risk management.• Manage assigned data privacy operations activities, including the implementation andmonitoring of metrics to measure activities' health and success. Respond to escalations fromother team members.• Proactively and independently analyze and manage risks. Make recommendations and escalateappropriately.• Develop and drive complex projects to completion. Ensure alignment with program andorganizational goals. Provide feedback and insights to drive continuous improvement for thePrivacy function.• Stakeholder engagement: Build relationship and be able to influence internal stakeholders (e.g.product development teams and business functions) to implement privacy in our products andprocesses.• Respond to privacy and data breaches and incidents in a timely and thorough manner.• Prepare clear, detailed process documentation.• Proactively propose, prepare and present presentations for Privacy Leadership, Legal, andother business teams to represent the Privacy team.

Qualifications

Required Knowledge, Skills, and Experience:• Bachelor’s degree in computer science, Law, Cyber Security, Engineering or related discipline,or commensurate experience.• 7+ years of privacy framework experience (PIPC, PIPA or equivalent).• 7+ years of experience working in a privacy program, with hands-on experience on multipleareas of privacy such as privacy risk assessments and risk mitigation, training, incidentresponse, monitoring and audits.• 3+ years of project management experience.• Able to identify pragmatic, risk-based privacy solutions that balance privacy compliance withbusiness needs.• Expert level of knowledge on multiple areas of privacy, including legal requirements and internalprocesses. Able to provide comprehensive privacy guidance independently. Appropriatelyconsult with other Privacy colleagues (e.g. region, process, legal) to ensure comprehensivereview of matters.• Able to assess hardware and software features for their privacy implications; capable oftranslating abstract product design concepts into actionable privacy requirements.• Able to drive and execute projects and operational tasks efficiently.• Self-starter, with close attention to detail.• Consistently strive for continuous individual performance and support the team’s performance.• Comfortable speaking in front of varied audiences to provide training focused on privacyconcepts.• Able to convey clear, concise, and actionable instructions and messaging.• Current CIPP, CIPM, CIPT, or other related certification.

Preferred Skills, and Experience• Hands-on experience in developing a compliant privacy program and related processes.• Capacity to motivate and influence stakeholders to achieve organizational goals and initiatives.• Experience in complying with privacy regulations across Asia, e.g. PIPL (China), DPDPA (India)etc.• Familiarity with security and privacy standards such as SOC, ISO 27001, ISO 27018, HITRUSTetc.• Experience operating in a highly regulated industry and international environment.• Master’s degree in information security, Law, Cybersecurity or similar field of study

Additional Information

Intuitive는 고용 기회 균등 고용주입니다. 당사는 인종, 성별, 임신 여부, 성적 지향, 성 정체성, 출신 국가, 피부색, 연령, 종교, 국가 보훈 대상자, 장애 여부, 유전 정보 또는 연방, 주 또는 현지 관련 법률에 따라 보호받는 기타 모든 지위에 관계없이 자격을 갖춘 모든 지원자 및 직원에게 동등한 고용 기회를 제공하며 모든 유형의 차별과 괴롭힘을 금지합니다.

당사는 기회 균등법에 따라 범죄 및 유죄 판결 기록이 있는 고용 자격을 갖춘 지원자를 고려할 것입니다.