Compliance Manager - Mississauga, Canada - Novo Nordisk

Novo Nordisk

Verified Company

Mississauga, Canada

2 weeks ago

Posted by:

Sophia Lee

beBee Recruiter

Description

Compliance Manager (Privacy)

Category:
Legal, Compliance & Audit
Location:Mississauga, Ontario, CA
REPORTS TO: Director, Ethics and Compliance
# DIRECT REPORTS: None
ABOUT THE FUNCTION

The Legal, Ethics & Compliance Department works to safeguard Novo Nordisk's license to operate and to foster sustainable business conduct as Novo Nordisk Canada delivers lifechanging therapies for the benefit of Canadian patients. The Department provides proactive, solutionsoriented guidance and support to help Novo Nordisk Canada achieve its strategic priorities in a sustainable manner. At Novo Nordisk, you will be part of a company respected equally for its financial results and its commitment to ethics and compliance. Are you ready to make a difference?
THE ROLE
The purpose of the job is to develop, operationalize and manage Novo Nordisk Canada's Privacy Compliance Program to help ensure adherence to all applicable data privacy requirements (i.e., Canadian legislation and Novo Nordisk corporate requirements).
KEY AREAS OF RESPONSIBILITY

Program Management and Operationalization:

Develop, implement, and manage the Privacy Compliance Program
Manage the operational components of the Privacy Compliance Program, including the development and implementation of policies/guidance, training, communication, monitoring, investigations, privacy impact assessments, consent management, business process assessments, data transfer assessments and thirdparty assessments, etc.
Ensure privacy risks are effectively identified, mitigated, or escalated, as necessary; collaborate with colleagues across relevant departments to share trends, insights and lessons learned to support risk management efforts, including, e.g., targeted monitoring and training opportunities
Champion a proactive and collaborative approach to privacy that is focused on partnership, prevention, and risk management with internal and external stakeholders
Conduct monitoring, prepare for audits and facilitate implementation of corrective actions, solutions, and process enhancements
Navigate and leverage relevant systems and technology to support the Privacy Compliance Program
Collaborate with relevant Legal, Ethics & Compliance colleagues on privacy matters
Maintain a functional knowledge of common IT security, vulnerability assessment and penetration tools
Maintain familiarity with data classification schemes, document level security, metadata analysis and redaction, media sanitization and data loss prevention techniques and technologies
Proactively collaborates with Global and Local IT Security Team to assist in the integration of privacy principles and requirements in the organization's information security policies, procedures, and technical systems

Communication & Training:

Create and develop clear and understandable content for all presentation and communication campaigns to drive organizational awareness and consistent messaging with employees, third parties, and customers, where appropriate
Proactively communicate with various stakeholders regarding privacy risks, assumptions, issues, and dependencies, to ensure that that these are identified, mitigated, or escalated, as necessary
Develop and deliver privacy training and raises awareness of the Privacy Compliance Program while fostering accountability for privacy compliance throughout the organization
Work with the business teams and with Legal to ensure awareness of "best practices" on data protection issues and consult regularly with key stakeholders in the business

Oversight:

Foster a continuous improvement mindset and propose enhancements to the Privacy Compliance Program informed by industry trends and best practices
Monitor changes in privacy laws and regulatory environment to ensure organizational awareness, adaptation, and compliance, as needed
Participate in Compliance Committee and consult with Global and regional privacy offices to share best practices and ensure align on Program management approaches
Proactively partner with line of business in the design and evaluation of new initiatives to ensure that business activities are developed with "privacy by design" principles

Other

Assist with the implementation of ethics and compliance initiatives
Collaborate with regional and global Ethics and Compliance units, as required
Additional responsibilities as assigned

Key Compliance Accountabilities

Maintain a sound understanding of relevant laws and regulations, industry code requirements, Novo Nordisk corporate and local requirements and evolving practices and risks
Function as an enabler for the effective adoption, implementation, and integration of the Program throughout the organization
Applicable provincial/territorial and federal privacy laws and regulations including PIPEDA and Quebec's Law 25

Qualifications (Essential skills and abilities)