Apply Now

Chief Privacy Officer

Denver, CO, USA | CenturyLink

  • Industry:
    Telecommunications & Wireless
  • Position Type:
  • Functions:
    Legal / Compliance
  • Experience:
    12-15 years
Job Description:
66 people have viewed this job

The Chief Privacy Officer will be an expert in the legal, policy and compliance aspects of privacy and information security who will serve as a visible leader and advocate, both internally and externally, in CenturyLink’s activities in these areas.This person will be a strategic partner who guides the organization, its leaders and staff with regard to a wide range of privacy and data security related matters, combines subject matter expertise with a complex understanding of the operational, technical, communications and customer implications of policy decisions, and brings strong leadership and project management skills to the cross-functional design, implementation and enforcement of the organization’s privacy and information security policies. 


Job Description


Responsibilities:


•Leads and evolves a comprehensive privacy program governing the collection, use and disclosure of personal data, including consumer, enterprise and employee

•Drives awareness and implementation of the privacy program at all levels of the organization

•Strategically advises on the development of products and services that anticipate and successfully navigate privacy considerations

•Analyzes and advises on new and proposed global, state and federal privacy laws, partnering with CenturyLink regulatory, public policy, IT and Security teams

•Has in-depth knowledge and experience analyzing and applying laws, regulations and corporate policies related to:

•Global privacy laws, including those in EMEA, APAC and LatAm 

•U.S. privacy laws, including GLBA and state privacy laws, such as the California Consumer Privacy Act

•FCC and FTC consumer privacy rules, including FTC privacy enforcement standards, CPNI rules, the TCPA, Red Flags rules, and the FCRA and Information security laws, such as ECPA and the SCA 

•Counsels on global privacy laws, including GDPR, and other privacy, marketing and data security laws, including CAN-SPAM, TCPA and PCI - DSS

•Independently or collaboratively drafts, reviews, and negotiates various agreements and responses to RFPs as they pertain to privacy and data security (e.g., vendor and services agreements; government contracts with federal, state and municipal entities; strategic relationships)

•Partners with the Chief Security Officer, Chief Data Officer and the data governance team and information security teams on data governance policies, practices, standards and certifications 

•Works with organization senior leadership to establish governance for the privacy program

•Ensures alignment between security and privacy compliance programs including policies, practices, and investigations

•Oversees, develops and delivers initial and ongoing privacy training to the workforce

•In coordination with Global DPO, leads all required breach determination and notification processes under applicable State and Federal requirements

•Performs required breach risk assessment, documentation, and mitigation. Works with Human Resources to ensure consistent application of responses for privacy violations

•Regular interaction with Executive Leadership and Board of Directors


Qualifications


Required Qualifications:


•JD and undergraduate degrees earned with excellent academic credentials

•Admission to and good standing in a U.S. state bar

•Preference for at least 12+ years of broad and relevant legal experience with a law firm and/or corporate legal department, much of it spent advising on privacy, data security and data sharing matters

•Proven experience building privacy and compliance programs

•Proven analytical, planning, problem solving, and decision-making skills; ability to quickly execute on strategic decisions to drive organizational results

•Superior written and verbal communication

•Domestic and/or international travel may be required – up to 20%

 

Preferred Qualifications:


•Certified Information Privacy Professional (CIPP) certification is highly desired

•Strategic and/or transformational leadership experience

•A cross functional collaborator who encourages and builds consensus, easily gains trust and support of senior leadership and peers, finds common ground and solves problems with diligence and creativity

•A team-oriented professional with a strong work-ethic who multi-tasks and prioritizes well, takes initiative, is capable of leading projects and who can work effectively both independently and with other groups

•Experience working on consumer data privacy issues

•Experience with privacy as applied to digital products

•Experience in the telecommunications/technology industry

•Experience working with international constituents and international law

•Demonstrated strong communication skills at all levels within the organization. Ability to translate technical content into business understandable terms; successful market-facing presentation skills with C-suite level executives and Board of Director members


Other companies hiring with Ivy Exec

 Company Logos