Associate Director, Privacy
Stanford University has expanded the limits of knowledge, nurtured and developed the next generation of leaders, and changed the world through its research activities. We are one of Silicon Valley's largest employers - and also one of the most unique. Our mission is to educate future leaders and promote interdisciplinary, world-class research and teaching. This passion makes Stanford an intensely creative, rewarding, and challenging place to work. At the same time, our traditions of respect and collaboration sustain a humane, supportive environment in which to pursue your life and your career.
About Stanford University’s Privacy Office
The Stanford University Privacy Office is a division of the Office of the Chief Risk Officer and is a valued partner and advisor to students, faculty, management, staff and members of the executive leadership. The Stanford University Privacy Office is committed to working with parties across the Stanford community to protect the integrity of data collected, created, transmitted, released and stored by Stanford affiliates and entities. If you enjoy a challenge, variety and working collaboratively with a wide range of people, this position may be the right opportunity for you!
Under direction of the Chief Privacy Officer, we are seeking a unique individual who will enhance a strategic and comprehensive privacy program that promotes consistent, effective privacy practices which minimize risk and ensure the confidentiality of sensitive and confidential information. In this role, you will possess sufficient privacy or compliance operational experience in order to manage and coordinate daily operations of the Stanford University Privacy Office, including, but not limited to, providing guidance to myriad stakeholders on current and emerging privacy matters; developing, implementing and maintaining policies and procedures; monitoring privacy compliance activities throughout the university; incident and breach response and management; and, administering privacy impact and risk assessments. You may also manage direct reports.
This position will be located in our new Stanford Redwood City campus, which is scheduled to open in 2019, and will be the workplace for approximately 2,700 staff whose jobs are important to supporting the university’s mission. The campus brings departments together in a collaborative environment that reflects Stanford’s culture and mission. The campus will offer amenities such as onsite cafes and a dining pavilion, a high-end fitness facility with an outdoor pool, and a child care center for Stanford families.
- Performs or oversees initial and periodic information privacy risk assessment/analysis, mitigation and remediation.
- Ensures that appropriate privacy and confidentiality authorization forms, consents, notices of privacy practices, and other materials reflect current Stanford University practices and legal requirements.
- Maintains current knowledge of applicable federal and state privacy laws and industry best practices.
- Participates in the development, implementation, and ongoing compliance monitoring of University departments, schools, and their suppliers that access, use, process, maintain, and share highly confidential information, such as PHI and PII.
- Serves as an information privacy consultant to all Stanford University departments and schools.
- Develops, delivers and implements training (both broad-based and individualized) to the Stanford workforce, and assists in the development of communication programs to educate and update the Stanford community on compliance, risk and/or privacy requirements.
- Collaborates with constituents across the Stanford community on a wide-range of compliance/privacy-related topics. Maintains productive customer relationships.
- Develops and implements annual work plans to assess and review policies, practices and processes with requirements, and develops, implements and monitors corresponding corrective action plans.
- Recommends and prepares materials for board and senior management meetings.
- Monitors current compliance/privacy trends, legislation and activities, and contributes to implementing best practices.
Education & Experience:
- Minimum Qualifications: Bachelor's degree and seven years of relevant audit, privacy, compliance or other relevant experience in higher education, health care, research-based non-profit organizations, or government contracting or combination of education and relevant experience.
- Preferred Qualifications: Graduate level degree in health information management, law, public policy, or data science.
Knowledge, Skills and Abilities:
- Demonstrated strategic planning experience
- 2+ years’ experience operationalizing international privacy requirements
- Demonstrated skills in providing excellent service to customers/clients
- Demonstrated skills in collaboration, teamwork, and problem-solving to achieve goals
- Highly effective written, oral and interpersonal communication skills to address a wide variety of sophisticated audiences.
- Demonstrate professionalism, discretion and judgment through sound decision-making to obtain solutions through collaborative efforts with a wide-variety of offices and departments throughout Stanford University.
- Superior knowledge of state and federal statutes, laws and regulations, industry standards, trends and/or regulatory requirements in expertise subject area.
- Expert analytical and problem solving skills.
- Experience in conducting privacy investigations.
- Ability to productively assemble, engages, and leads cross-functional teams and leading projects from start to finish.
- Demonstrated critical thinking skills and ability to implement strategic policy recommendations.
Certifications and Licenses:
- CIPP, CHPC or similar certification
How to Apply
We invite you to apply for this position by clicking on the “Apply for Job” button. Please submit your résumé and a one-page cover letter along with your online application.
Stanford is an equal opportunity employer and all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by law.
Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of the job.