Senior Director, Global Privacy Compliance

Around the globe, families, clients and staff trust Bright Horizons to provide high-quality education and care, operate with integrity, and empower them to thrive. Respecting privacy rights is an integral part of building and maintaining that trust. How we process and protect personal information as a business is critical to supporting Bright Horizons’ reputation and success.

The purpose of Bright Horizons’ Privacy Team is to ensure that Bright Horizons handles personal data responsibly and in compliance with relevant privacy laws and regulations. The Privacy Team’s goals are to protect personal data, build trust, reduce risks and enhance business practices. We strive for continuous improvement and the advancement of Bright Horizons’ privacy maturity levels.

The Senior Director, Global Privacy Compliance is responsible for developing, implementing, and overseeing the organization's global privacy compliance program. This role will work closely in partnership with the Senior Director, Global Privacy Counsel, to ensures that the global privacy compliance program complies with all relevant privacy laws and regulations.

This Hybrid role requires in-person work at our Newton, MA headquarters.

Bright Horizons is trusted by families and employers around the world for high-quality child care and early education, back-up care, and workplace education. We partner with some of the world’s best companies to provide services that help employees perform their best and support families to thrive both personally and professionally.

Responsibilities

• Privacy Program

  • Build and manage a comprehensive global privacy compliance program (including governance, risk assessment, policy development and training) that adheres to all relevant privacy laws and promotes continual improvement.

  • Drive individual and departmental accountability for complying with the global privacy compliance program within the organization.

• Privacy Management Tool (One Trust)

  • Business owner and manager of the privacy management tool.

  • Keep up to date on software releases.

  • Utilizing the privacy management tool to ensure optimization of documentation of and reporting on the global privacy compliance program.

  • Implement and manage business continuity plan for the privacy management tool.

  • Govern internal team changes/updates to the privacy management tool that ensure awareness/training of any approved changes.

  • Govern data entry into the privacy management tool that ensures consistent practices and outputs.

• Privacy by Design

  • Advise the organization on the implementation of privacy by design solutions across technologies and processing activities that supports privacy compliance throughout entire lifecycles of applications, systems and personal data.

  • Work closely with Global Privacy Counsel, Legal, IT, Information Security, HR, Internal Audit and other departments to integrate privacy considerations into business processes.

• Policies, Procedures, Guidelines and other Documentation

  • Create and maintain comprehensive privacy policies, procedures and other required documentation that ensures compliance with global privacy compliance program, privacy laws and company privacy related certifications (such as ISO and SOC2).

  • Develop and implement a document management system for all privacy documentation.

• Assessments, Tracking Technologies and Risk Management

  • Oversee and manage:

    • the execution of privacy assessments required under the global privacy compliance program (such as asset assessments, records of processing activities, privacy impact assessments).

    • the organization's use of cookies and other tracking technologies complies with relevant privacy laws and regulations, including developing, implementing, and managing policies and procedures related to tracking technologies, conducting audits, and providing guidance to various departments to ensure compliance.

    • the identification, assessment, and mitigation of privacy risks within the organization, including the development and implementation of risk management strategies.

• Monitoring and Reporting:

  • Monitor privacy compliance and report on the status of the global privacy compliance program.

  • Manage privacy related audits and certification requirements for the organization, such as, ISO 27001 / 277001 and SOC2.

• Training and Awareness:

• Design, deliver and lead privacy training programs to employees and stakeholders to promote a culture of privacy compliance.

• Continuous Improvement:

  • Stay informed about emerging privacy trends and changes in the regulatory landscape to continuously enhance the global privacy compliance program.

• Additional Duties/Activities:

  • Support on any other duties commensurate with the role and ad hoc activities as assigned by Global Privacy Officer.

Minimum Job Requirements

• Bachelor's degree in Law, Information Security, or a related field - Required 

• Minimum of 10 years of GRC, IT or privacy experience working for a large, multinational organization in a highly regulated or scrutinized industry, with at least 3 years privacy experience - Required 

• Minimum of 3 years of professional people management required

Additional Job Requirements

• Advanced knowledge of privacy principles and experience with global privacy framework such as ISO, NIST, SOC2 or other similar frameworks.

• Strong understanding of modern data processing environments, service-oriented architectures, cloud computing technologies and relevant security and privacy standards.

• Capable of deep diving technical specifications and adapting requirements to meet control objectives.

• Strong project management and coordination skills with proven ability to meet deadlines, prioritize assignments, and run multiple projects.

• Demonstrated partnering skills, with experience coordinating initiatives with partners in a multinational organization.

• Excellent verbal and written communication skills with both technical and non-technical partners, with focus on informing, influencing and relationship building across functions and throughout all levels of the organization.

• Experience developing written and visual user guides and training materials to drive stakeholder education on compliance protocols.

• Demonstrated proficiency delivering high quality and efficient service, taking account of the diverse customer needs and requirements when looking at ways to improve service quality.

• Experience using OneTrust platform for management of privacy program or willingness to become proficient to a high standard.

• Certifications such as CIPP, CIPM, or CISSP are highly desirable.

• OneTrust certification or ability to become certified.

• Master's Degree - Preferred

At this time, Bright Horizons will not sponsor an applicant for employment authorization/visa for this position.

Benefits:

Bright Horizons offers the following benefits for this position, subject to applicable eligibility requirements:

· Medical, dental, and vision insurance

· 401(k) retirement plan

· Life insurance

· Long-term and short-term disability insurance

Our people are the heart of our company. Because we’re as committed to our own employees as we are to the children, families, and clients we serve, our collaborative workplaces are designed to grow careers and support personal lives. Come build a brighter future with us.

Bright Horizons provides equal opportunity in all aspects of employment and does not discriminate against any individual on the basis of race, color, religion, sex, age, disability, sexual orientation, veteran status, national origin, genetic information, or any other characteristic protected under federal, state, or local law. Bright Horizons complies with the laws and regulations described in the following federal government resources: Know Your Rights, Family and Medical Leave Act (FMLA) and Employee Polygraph Protection Act (EPPA).

If you require assistance or a reasonable accommodation in completing these application materials or any aspect of the application and hiring process, please contact the recruitment helpdesk at 855-877-6866 or bhrecruit@brighthorizons.com. Determinations on requests for reasonable accommodation will be made on a case-by-case basis.