職位描述
Job Description SummaryThis role provides policy, regulatory & legal/compliance leadership and support on Great China (including HK and Mainland China) privacy matters for all AstraZeneca China business units, as well as partners with other members of the Global Privacy Office to help drive the overall global privacy program.AstraZeneca is a global, science-led biopharmaceutical business and our innovative medicines are used by millions of patients worldwide. Unlock your ambition, turn ideas into world-changing realities, and join an organization where every voice makes a difference, and every difference builds a healthier world.Essential Responsibilities 1. Provides expert advice on healthcare, customer and employee privacy laws and regulations, in the Great China region, with a particular emphasis on existing and proposed privacy and data protection laws in Mainland China and HK.2. Provides support to Global Data Protection Officer and regional Deputy Data Protection Officer to assess, develop, implement and monitor processes to assist all businesses to comply with local privacy laws and regulations.3. Draft and customize privacy policy, consent forms, or privacy terms under each circumstances if required.4. Assists other members of the Global Privacy Office to drive the overall global privacy program.5. Collaborates with development teams to ensure that new project, process, initiative, and service comply with applicable data privacy and security requirements (legal, contractual or otherwise), and assists in the negotiation of data privacy and security provisions in related contracts/agreements.6. Collaborates with network of cross-functional representatives within AZ to drive compliance with applicable privacy laws and regulations, contractual obligations, internal policies and procedures, and breach investigation, mitigation and notification responsibilities.7. Conducts periodic and as-needed business audits and risk assessments to assess data privacy and security compliance.8. Works in partnership with our Core IT teams to ensure compliance with all applicable data security administrative, physical and technical safeguards.9. Provides privacy compliance training and periodic best practices tips/reminders to assigned businesses.10. Works cross-functionally to resolve individual privacy compliance issues/questions and investigations, assessing causes, developing corrective actions, and ensuring consistent application of corrective actions.11. Works as an integral part of the AZ Global Privacy office in evaluating other regulatory initiatives, planning and developing key strategies, and implementing actions vis-à-vis privacy institutions and regulatory agencies in a wider range of areas.12. follow-up and deep-dive on new laws and regulations in the area of privacy and data security. Qualifications/Requirements 1. JD or LLM (or equivalent) with active bar membership is preferred.2. 4-5 years experience at a law firm, corporate legal department or in equivalent compliance function, with experience in privacy matters, is preferred.3. Deep knowledge of local privacy laws, regulations and best practices, with particular experience in the healthcare industry is preferred.4. Working knowledge of key aspects of privacy laws in other countries, especially the United States and the European Union is preferred.5. Proven track record of project and process development, implementation and project management, with minimal supervision required.6. Proven ability to function as a member of a global team in a complex, matrix environment.7. Demonstrated experience identifying and resolving legal and regulatory issues quickly and effectively, with an ability to make real-time decisions.8. Demonstrated experience prioritizing conflicting demands from multiple business clients in an extremely fast-paced environment.9. CIPP certificate is preferred.Desired Characteristics 1. Ability to cope with pressure and multiple deadlines contemporaneously.2. Detail-oriented.3. Excellent influencing skills combined with an ability to build strong working relationships within a matrix environment.4. Advanced communication skills - both written and verbal English.5. Demonstrated ability to think and lead on a strategic level within a complex organization.6. Ability to deal effectively with people and work in diverse teams, sometimes virtually located.7. Level-headed approach to risk and managing such risk against business objectives.8. High level of energy and the ability to pass it on to other team members.
