Data Privacy and Information Security Specialist

Description

Varex Imaging, headquartered in Salt Lake City, USA, is a leading innovator, developer, and manufacturer of X-ray imaging component solutions, which includes X-ray tubes, digital flat panel detectors, software, and other key components of X-ray imaging systems. With a 70+ year history of successful innovation, you will find our components in numerous medical, industrial, and security imaging applications worldwide.

Let us start with making the invisible visible for you… Our India manufacturing operations are growing rapidly and for this new and exciting chapter of Varex, we are looking for highly motivated people to help us to succeed in our business operations in India.

We are looking for a Data Privacy and Information Security Specialist who will play a critical role in ensuring effective legal compliance, and robust data privacy practices within our global organization. This position involves ensuring compliance with global data privacy regulations, close collaboration with our IT Security team and fostering a culture of data protection and integrity.

This job position is assigned to the Legal Department of Varex Imaging and will report to the Global Data Privacy Officer. The responsibilities, duties, and reporting lines outlined in this job description are primarily executed within the context of the legal Department's operations and objectives. The employee is expected to contribute to the department's goals by performing tasks and duties that align with the legal and regulatory framework governing Varex Imaging's business activities in India.

Your role...

The primary purpose of this position is to support the Global Data Privacy Officer (GDPO) in building and strengthening the global data privacy program. This role involves collaborating with various departments to ensure that Varex Imaging's data handling practices are in compliance with applicable data privacy laws and regulations, thereby safeguarding the privacy and security of personal and sensitive information across all operations.

Main Duties and Responsibilities

This position will have the following main duties and responsibilities :

• Ensuring compliance with global data privacy regulations, including but not limited to the Data Protection and Digital Information Act (DPDPA), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Health Insurance Portability and Accountability Act (HIPAA), EU Artificial Intelligence Act, SEC cybersecurity disclosure, cross border data transfer mechanisms and privacy litigation support.
• Managing data processing agreements and conducting third-party vendor privacy assessments.
• Supporting the conduct of privacy impact assessments for new projects, systems, and processes.
• Assisting in responding to and managing data subject access requests in accordance with applicable regulations.
• Advising stakeholders on privacy-by-design principles for the development of new products and services.
• Contributing to the development, implementation, and maintenance of privacy policies, procedures, and notices.
• Monitoring privacy compliance across the organization through regular audits, assessments, security governance board participation, risk quantification and change review board involvement.
• Collaborating with IT Security, the Global Data Privacy Officer, and the legal team on data protection measures, hands-on cybersecurity expertise, such as threat modelling, incident response coordination, digital forensics and security architecture.
• Providing training sessions and materials to raise data privacy awareness among employees.
• Utilizing and optimizing OneTrust for privacy management purposes.

Your profile...

Time Type : Full time

Job Type : Regular

Work Shift : N / A

Pay Rate Type : Salary