Director, Privacy

**The Position**

Organon is recruiting for a Director, Privacy based in Singapore, who will manage privacy compliance in the APAC region. In this role, you will report to the Chief Privacy Officer (based in the US) and will be a key member of the Global Privacy Office. The experienced privacy professional will provide privacy compliance expertise and guidance to various stakeholders and business teams to facilitate compliance with privacy regulatory requirements and relevant internal policies, procedures, and privacy standards. You will provide privacy support and expertise to global markets in Asia and to the Global Privacy Office.

As Director, Privacy you will also assist with the development, implementation, and maintenance of policies and procedures; manage privacy incidents/breaches, conduct training, help manage the record of processing activities, monitor relevant privacy and data protection laws and regulations, and other privacy-related duties, as assigned.

This experienced privacy professional will also serve as local Data Protection Officer (DPO) including as the DPO for China and will ensure compliance with PIPL, including cross-border transfer requirements (e.g., Standard Contract, Security Assessment) and other applicable data privacy and data protection laws and regulations.

This privacy professional will have extensive experience with the privacy landscape in China, including understand the PIPL. This professional will also be able to fluently communicate with the China team including providing guidance to local privacy network, business teams and legal colleagues on privacy regulatory requirements and mitigation efforts.

**Responsibilities**
- Support the privacy compliance efforts of the Chief Privacy Officer, the Global Privacy Team, and the Network of Privacy Stewards, including supporting the Company’s compliance with applicable global privacy laws.
- Provide guidance on privacy regulations and data protections laws, including China’s PIPL cross-border transfer requirements, provide analysis of requirements of regulations, and collaborate in the implementation of compliance requirements.
- Engage in negotiations of privacy and data protection provisions.
- Assist with evaluation of supplier privacy assessments and data protection impact assessments.
- Participate and lead privacy-related meetings, including providing regular updates on key privacy issues and updates on new and changing regulations.
- Assess and execute upon recommendations and guidance with respect to the Global Privacy Program.
- Assist with identifying and assessing privacy compliance risks and recommend and implement mitigation strategies.
- Assist with maintenance and updates to privacy policies and notices, internal policies and procedures, and training materials.
- Conduct privacy training and awareness to business teams and privacy network.
- Assist with the management of records of processing operations under the responsibility of the Company.
- Provide guidance consistent with law, privacy standards, and company policy; appropriately balance division/function/corporate business objectives and privacy risks.
- Serve as point of contact for business colleagues including privacy network, security, internal audit, and legal colleagues and advise on privacy requirements, standards and activities.

**Required Education, Experience and Skills**
- Degree in Law, Risk Management, Corporate Compliance or equivalent experience.
- Significant relevant privacy legal or privacy compliance experience, at least eight to ten years.
- Strong knowledge of privacy and data protection laws and regulations including local laws and regulations within the Asia Pacific regions including covering China, Singapore, Australia and South Korea.
- Certified Information Privacy Professional (CIPP) preferred but not required.
- Understanding of privacy risk assessment and best practices, privacy standards and certifications.
- Ability to provide business solutions for privacy, security, data protection, or equivalent functions in a large, regulated, and matrixed organization.
- Experience in pharmaceutical, medical device, and/or biotech companies is preferred but not required.
- Experience incorporating privacy by design and privacy regulatory requirements into business processes and programs.
- Experience with emerging technology such as AI.
- Understanding of information technology and information security practices.
- Strong ability to influence across functional groups and country businesses to gain cooperation and alignment on issues and objectives.
- Demonstrated ethical mindset and integrity; ability to exercise sound judgment, and to influence.
- Ability to manage multi projects simultaneously and prioritize activity in alignment with business goals and compliance requirements.

**Secondary Job Description**

**Who We Are**:
Organon delivers ingenious health solutions that enable people to live their best lives. We are a $6.5 bil