Manager, Privacy and Protection of Personal - Québec, Canada - McGill University
Description
Please refer to thejob aid for instructions on how to apply.
Position Summary:
Reporting to the Secretary-General, the incumbent leads, in the area of privacy and the protection of personal information, the execution of regulatory and compliance activities at the University in order to implement a sound institutional framework that will support the University's priorities.
The incumbent will monitor, oversee and evaluate compliance with relevant regulatory requirements, and facilitate the successful delivery of regulatory activities and compliance programs relating to privacy and the protection of personal information.
The incumbent, in collaboration with other units including IT Services, Archives, Financial Services, HR, Legal, Enrollment Services and Research and Innovation, will lead change in the development and review of university policies, regulations, procedures and practices related to privacy and the protection of personal information.
He/She/they will also, as requested, act on behalf of the Secretary General on matters pertaining to this area of responsibility.
The incumbent will develop and maintain constructive relationships with the University's senior administration, other units and administrators as well as serve as first point of contact at the University for internal and external stakeholders on matters related to privacy and the protection of personal information and will provide liaison and coordination between the Secretariat and other units.
Primary Responsibilities:
- Define and implement bestpractice strategies for the protection of personal information within the University community.
- Operationalize strategies for compliance with legal and regulatory requirements regarding the protection of personal information.
- Develop and implement a system to establish and maintain documentation relating to the processing of personal information.
- Liaise with University units throughout the design and implementation of systems to ensure the integration of a unifying compliance framework.
- Analyze, investigate, and perform privacy and data assessments to ensure compliance and mitigate risk of breach.
- In collaboration with other units, respond to privacy incidents, including the development of strategic communications to internal and external parties.
- Liaise with units, notably with IT Services for the implementation of mechanisms that involve systems hosting personal information and in instances where a cyber security incident affects the integrity of and access to personal information.
- Maintain, on behalf of the University, a repository of incidents and related matters.
- Identify weaknesses in controls, assist in evaluating corrective measures and escalate, as necessary, issues of noncompliance to unit heads to ensure efficient and effective resolution, in line with legislative and operational requirements.
- Identify privacy or operational risks and help to implement appropriate organizational and technical safeguards, including through educational and awareness building initiatives.
- Keep track of rapid advancements in privacy and data protection, as well as technological changes affecting the University.
- Lead the development and review of relevant University policies and regulations, which relate to privacy and personal information.
- Act as the University's respondent to the Commission d'accès à l'information du Québec (CAI) and to the persons concerned.
- Respond, on behalf of the University, to access requests involving personal information.
- Collaborate with staff in the Secretariat and in other University units on matters affecting access and the protection of personal information.
- Represent the Secretary-General at internal and external meetings relating to privacy and the protection of personal information.
- Perform other duties and responsibilities as may be assigned by the Secretary General
- The position requires a strong knowledge and understanding of evolving trends and legislation requirements in respect of privacy and the protection of personal information.
- Bachelor's degree in a relevant discipline.
- At least 5 years relevant experience (7 to 10 years preferred)
- Professional certification in PRP (CIPP/C or CIPM) or member of the Quebec Bar (an asset).
- Excellent command of French and English, spoken and written, in order to express concepts effectively and communicate clearly in complex situations and to provide clear explanations and documentation to others.
- Excellent knowledge provincial legislation concerning privacy and the protection of personal information.
- A good knowledge of the different types of security measures and challenges affecting the protection of personal information, as well as new technologies in the area.
- A constructive attitude, with strong listening, analytical and organizational skills
- A strategic and diplomatic approach, necessary to solve complex problems and
More jobs from McGill University
-
Assistant(E) Informatique C
Montréal, Canada - 2 days ago
-
Student Research Assistant
Montréal, Canada - 1 week ago
-
Research Associate
Montréal, Canada - 1 week ago
-
Assistant(E) Informatique C
Montréal, Canada - 1 week ago
-
École D'informatique Assistant D'enseignement Comp
Montréal, Canada - 2 days ago
-
Communications Assistant C
Montréal, Canada - 2 days ago