Why Syneos Health? Join a
game-changing company that is reinventing the
way therapies are developed and commercialized. Created through the merger of
two industry leading companies, INC Research and inVentiv Health, we bring
together more than 24,000 clinical and commercial minds to create a better,
smarter, faster way to get biopharmaceutical therapies into the hands of
patients who need them most. Evolve in a global company that is always looking
for ways to work smarter and more efficiently as the only fully integrated
Biopharmaceutical Accelerator. You’ll be supported with comprehensive resources
based on today’s emerging technologies, data, science and knowledge – instead
of practices from the past. Teaming with some of the most talented
professionals in the industry, you’ll gain exposure and work in a dynamic
environment to over-deliver and outperform. A career with Syneos Health means
your everyday work improves patients’ lives around the world.
for supporting the development, implementation and maintenance of the Company’s
Global Privacy and Data Protection program with the goal of ensuring compliance
with all applicable laws and regulations globally, with a focus on the Americas
region. The position will interact with departments and business units across
Develop, implement and maintain the
Company’s Privacy and Data Protection policies, processes and procedures.
Monitor changes in Privacy and Data
Protection laws and regulations globally to ensure Company adaptation and
compliance, including required country registrations.
Provide legal advice regarding the implications of new privacy and data
protection laws and regulations globally that impact the Company`s business.
Identify and implement data privacy best practices.
Provide strategic guidance to
Departments/Business Units in the design and evaluation of Privacy and Data
Protection related tools and projects (e.g., privacy-by-design).
Establish a mechanism to track access
and retention of protected health information maintained by the Company.
Develop, implement and deliver Privacy
and Data Protection communications and training.
Collaborate with Information Security to
ensure alignment between Cyber Security and Privacy and Data Protection
Oversee conduct of data protection impact assessments and support such
Collaborate with the contracting
functions on the drafting, review and negotiation of Privacy and Data
Protection matters related to customer and third party contracts (e.g., data
transfer agreements, privacy notices/policies).
In coordination with the Global Privacy Officer
and Data Protection Officer, assist with regulatory authorities, including the
FTC, OCR, Canada’s OPC, and privacy regulators in Latin America, for matters
relating to privacy and data protection.
Implement and oversee a process for
receiving, documenting, tracking, investigating and acting on internal and
external Privacy and Data Protection requests (e.g., changes to/deletion of
information from systems) and complaints.
complaints about breaches of applicable regulations. Maintain a log of incidents of remedial
In collaboration with other Company
departments (e.g., Information Security, Corporate Quality and Vendor Management),
establish an internal and external Privacy and Data Protection monitoring and
Manage the collection, analysis and
reporting of Privacy and Data Protection program data and metrics for
continuous process improvement.
Participate in client meetings, customer
audits and regulatory inspections for questions related to Privacy and Data
Participate in data
security incident responses affecting the Company.
cross-functionally to provide data privacy support and guidance with respect to
the Company’s records management program.
Support the development and delivery of data
protection representative services to contracted customers.
Role may be assigned to manage Privacy and Data
Perform other work-related duties as assigned. Minimal travel may
be required (up to 25%).
Completion of law school with a J.D. or L.L.B. degree and admission to the
bar and in good standing in at least one jurisdiction in the United States
8+ years of legal
experience as a practicing attorney, with at least 3 of those years advising on
global data protection/ privacy laws and requirements.
in-house counsel strongly preferred.
Experience with U.S. and
international privacy program development and management preferred, with particular emphasis in the healthcare and clinical research
Knowledge of US and international privacy
and data protection laws, regulations and best practices required (e.g., HIPAA,
CAN-SPAM, CCPA, TCPA, PIPEDA, CASL, Privacy Shield, and GDPR).
Innovative, forward-thinking and
results-oriented with a passion to solve complex problems in a creative and
pragmatic way and to translate laws and regulations into actionable policies
and procedures that enable business objectives.
Demonstrated ability to influence
and drive internal and external stakeholders to a decision in a matrixed
Ability to work independently,
meet tight deadlines and work effectively in a multi-functional, international
Excellent interpersonal skills and
work ethic. Strong communication and writing skills.
IAPP certification(s) (CIPP/E,
CIPP/US, CIPM) preferred.
and responsibilities as listed in this job description are not exhaustive. The Company, at its sole discretion and with
no prior notice, may assign other tasks, duties, and job responsibilities. Equivalent experience, skills, and/or education
will also be considered so qualifications of incumbents may differ from those
listed in the Job Description. The
Company, at its sole discretion, will determine what constitutes as equivalent
to the qualifications described above. Further, nothing contained herein
should be construed to create an employment contract. Occasionally, required skills/experiences for
jobs are expressed in brief terms. Any
language contained herein is intended to fully comply with all obligations
imposed by the legislation of each country in which it operates, including the
implementation of the EU Equality Directive, in relation to the recruitment and
employment of its employees.