Job Description

Position Overview

The purpose of this position is to support the development, integration and execution of all aspects of the Data Privacy Office. This potential candidate is an organized individual with attention to detail, advanced analytical skills, and is proficient at multi-tasking and problem solving. The role will provide guidance around all privacy obligations relative to processing activities throughout the business

Responsibilities

Assist the Data Privacy Office with ongoing activities related to the development, implementation and ongoing maintenance of RGA’s Privacy policies, standards and procedures in accordance with privacy laws, regulations and industry best practices and standards
Performs Privacy Impact Assessments (“PIAs”) to Identify assess and communicate overall privacy risk of new and existing business processes where personal data is processed, stored, or transferred
As part of the PIA process have the ability to make decisions regarding lawful basis, records of processing, data minimization, privacy notices, consent, and cross-border transfers
Understand and provide guidance around data lifecycle, data maps, retention, data destruction best practices and data governance
Ability to interpret and understand laws, regulations, complex issues and documents
Investigate and solve problems, and provide workable recommendations and solutions
Responsible for working with the Global Privacy Office, Data Owners, Compliance, IT, Legal, Security, EMEA Data Protection Officer and other business functions to assure privacy requirements are being implemented and enforced consistently throughout the organization
Remain current with regulatory updates, and maintain an understanding of basic compliance topics and how they affect the company
Initiate, facilitate and promote activities to foster data privacy awareness within RGA and related entities
Serves as the subject matter expert on global privacy and data protection laws and regulations
Escalates key data privacy issues accordingly
Maintains strict confidentiality and privilege when required
Performs additional duties as required

Requirements

Required:      
•    Bachelor’s degree or equivalent related experience
•    CIPP Certification (or equivalent experience or willingness to certify within 6                 months)

Required:      

Strong interpersonal, presentation, verbal, and written communication skills with the ability to effectively interact with internal and external business partners at all levels
Minimum 3 to 5 years of experience with legal and regulatory standards (e.g. GDPR, SOX, HIPAA, GLBA, ISO)
Strong analytical and problem solving skills with the ability to effectively resolve moderately complex situations and issues
Ability to interpret and understand data flow diagrams
Knowledge of Microsoft Office Suite and other business-related software systems, including processing systems and applications
5 years of progressive professional experience evaluating, delivering, and/or managing in a complex IT environment(s)
5 years professional experience including 3 years working in a complex, global corporation
Knowledge of privacy and data safeguarding methods, and the ability to Identify/resolve operational and organizational problems
Advanced knowledge in the data privacy field including knowledge of best practices and privacy program policies...
Knowledge of data privacy/data security threats and vulnerabilities.
Exceptional ability to make timely and effective decisions and produce results through strategic planning and the implementation and evaluation of programs and policies.
Project management skills. Demonstrates ability to evaluate project objectives and scope feasibility, gain understanding, schedule resources, and manage budget to plan
Demonstrated ability to convey privacy terminology that is meaningful and well received
Demonstrated ability to adapt plans and priorities to meet service and/or operational changes
Ability to quickly learn and understand the business processes of RGA

Preferred:      

Global Data Protection Regulation knowledge
Data Governance experience