The Legal team is responsible for managing the legal affairs of the company,
including providing legal counsel across the organization, handling disputes,
and creating and enforcing intellectual property.
About ResMed
ResMed is a global leader in digital health and connected devices helping
millions of people in 140+ countries sleep, breathe, and live better lives
outside the hospital.
We are the world’s #1 provider of cloud-connected CPAP machines and masks for
people with sleep apnea. We also provide a suite of connected solutions for
people with COPD, asthma, and other chronic respiratory conditions, such as
app-connected inhaler sensors and remote-monitoring ventilators – the same
connected devices used to help hundreds of thousands of people with COVID-19
keep breathing while battling the virus.
Job Summary
Imagine what you could do here. At ResMed, we are pioneering innovative
medical devices and digital health solutions that empower people to live
healthier and higher quality lives. We’re on a mission to solve unique and
exciting challenges utilizing technology, connected solutions and harnessing
the power of data to impact over a billion people. We are looking for a
Privacy Advisor (Associate General Counsel role) to lead and join the
transformation and evolution of the global privacy team. You will possess a
comprehensive knowledge of privacy laws and a passion for innovation and
improving people’s lives. As part of our global privacy team, you will
collaborate with a worldwide team of diverse privacy professionals to uphold
ResMed’s high corporate and ethical standards in regard to use and protection
of personal data. In this role, you will work directly with business and
engineering teams to design innovative privacy solutions for products as well
as alongside the Commercial Legal team in helping advise on cutting-edge
privacy issues.
Let’s talk about the team and you:
You operate with a problem-solving, solution-oriented mindset. You can partner
at all levels of the organization to give advice, make decisions, support
customer-centric initiatives applying privacy-by-design principles; also, you
enable business objectives while minimizing privacy risks. You are expected to
work autonomously. You have good stamina and thrive in fast-paced, innovative,
diverse work environments. You are agile, curious and results driven. You are
self-aware, caring, collaborative and strive for excellence.
Let’s talk about responsibilities:
* Work as part of a cross-functional team delivering best in class privacy and data protection counseling and advice to ResMed’s digital health technology organization, product development and commercial business teams to ensure our products, services, platforms and technology delivered by those teams are in compliance with applicable data protection laws and incorporate privacy by design industry best practices
* You are accountable /responsible to drive and manage large-scale innovative privacy solutions across the organization working directly with business and engineering teams where at times, you will be a compliance expert, project manager, advisor, collaborator. You will partner with Commercial Legal, Privacy Compliance & Risk Management, Information Security, business and engineering teams to develop guidelines, standards, and guard rails for designing innovative privacy solutions across the business
* Build and maintain scalable and effective processes for providing privacy legal input to clients and standards for strategic initiatives related to core infrastructure, privacy by design, data governance, artificial intelligence and machine learning and cross-functional projects, review, draft and negotiate data protection agreements, standard contractual clauses, business associate agreements and other cybersecurity agreements
* Collaborate with the Commercial Legal team and Privacy Compliance & Risk Management team to ensure we offer consistent guidance on key areas that cross the organization such as data governance, data retention and deletion, anonymization/pseudonymization of data, cross-border data transfers, data security, privacy by design and artificial intelligence and machine learning
* Coordinate with members of the Government Affairs & Market Access team to help evaluate the impact of evolving legislative and regulatory environments for data protection on ResMed’s various business teams and monitor and respond to developments on relevant international laws and regulations, especially those related to cybersecurity, artificial intelligence and machine learning, privacy and data governance
* Contribute to and provide data protection and data governance training and awareness programs, particularly those focusing on new data-related legislation and privacy trends
* Support privacy due diligence and data protection related matters as part of M&A activity and post M&A integration
Let’s talk about qualifications and experience:
* 12+ years of relevant privacy law and/or data technology or data security experience, including at a top-tier law firm and/or prior in-house experience preferably in the digital space, health technology, consumer healthcare, the medical device industry and/or technology sector with understanding of software development process
* A law degree such as a J.D. degree (or foreign equivalent) and good standing in a bar association or equivalent
* Strong thought leadership, knowledge and experience of global privacy laws, regulations and industry guidelines and data protection frameworks such as HIPAA Privacy and Security Rules (US), GDPR (EU), CCPA (US), PIPL (China), LGPD (Brazil), ISO 27001, HITRUST and/or NIST
* Exceptional communication and project management skills, including a strong desire and ability to make complex topics understandable for various audiences
* Excellent executive functioning, organizational skills and attention to detail
* Solution-oriented with the ability to think strategically and give practical advice by balancing business needs with legal risks
* Experience advancing projects in a multi-stakeholder environment
* Experience drafting and negotiating privacy related contracts
* Experience with being part of Privacy function transformation and liaising with senior business stakeholders to bring them on the Privacy culture evolution journey
Preferred qualifications:
* One or more certifications from recognized institutions for example, IAPP’s Certified Information Privacy Professional (CIPP) certifications or equivalent
* Experience advising teams (product, engineering, legal or business services) on privacy requirements
* Privacy engineering and/or privacy product management experience
#LI-CB1
#LI-Remote
Joining us is more than saying “yes” to making the world a healthier place.
It’s discovering a career that’s challenging, supportive and inspiring. Where
a culture driven by excellence helps you not only meet your goals, but also
create new ones. We focus on creating a diverse and inclusive culture,
encouraging individual expression in the workplace and thrive on the
innovative ideas this generates. If this sounds like the workplace for you,
apply now!