Job Description :
any visa/tax term

Data Protection Manager (Privacy, Healthcare)

Location: Palo Alto CA

Duration: 2 months (will extend if they don't find a resource)

Interview: Phone + Onsite

The manager wants someone who is ompliance expert that has
worked on Privacy focused audits.

This role requires an understanding of GDPR / Privacy Audits
their focus should be more so on consent, disclosure statements, data
impact assessments and of course, Documentation. It s all about company
readiness for GDPR.

The ideal candidate would come from a Tech background meaning
working with Engineers, product teams, at the very least understanding the
SDLC and how their work will impact those teams.

Manager does not want someone who will point out all the issues
and then leave he needs someone who can do full lifecycle work and
actually wants to contribute to tackling the privacy issues that will arise
with their technology platform.

Their platform allows their customers to text doctors and get medical
advice imagine the complications that can arise if patient data or
doctor/patient confidentiality is breached. They want to protect their
customers privacy and establish in house best practices. If they have HIPAA
in their background, that would be awesome!

Job Description:

As a Data Protection Manager, you will ensure the trusted operation of the
platform. You will be responsible for developing and implementing data
protection processes in concert with Product and Engineering teams to
ensure adherence to ongoing compliance obligations. You will help with
identification and design of data protection features that the product
should support in order to maintain compliance and enhance user trust and

Job Responsibilities:

Partner with Product teams to understand and document the data
flows, and design data protection processes to protect application and
user data in line with industry best practices.
Work with Engineering teams to identify opportunities to embed
data protection controls in the software development process.
Perform risk assessments and maintaining a risk register,
documenting the data flows, risk prioritization and remediation.
Operationalize tools and technology that can assist with
implementation and automation of data protection processes and risk
Identify a framework to capture and report on data protection
metrics, both for internal use and for an external audience.
Become the main contact person for issues pertaining to data
protection for application, users, and partners.
Skills Required
Experience working in a technical environment in a data
protection or product manager role dealing with personal data
Knowledge of data protection principles, along with a keen
understanding of applicable compliance requirements, particularly for the
healthcare industry, and a bend for identifying creative solutions to solve
complex issues
Hands-on with technology and tools, and ability to automate tasks
Effective oral and written communication skills

Required Qualifications:

2+ years of experience in a similar role
Bachelors or masters degree
CIPP/CIPM certification preferred