Washington University is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity or expression, national origin, genetic information, disability, or protected veteran status.
This position is full-time and works approximately 40 hours per week.
Department Name/Job Location:
This position is in the Office of Executive Vice Chancellor for Administration. The position is located at Brookings Hall. This position is for the Danforth Campus.
Provides direction, guidance, and support to administration, faculty, and staff in all aspects of privacy for the University except HIPAA (a separate group at the School of Medicine is responsible for HIPAA compliance). The (UPO) will work with key stakeholders (including general counsel, data governance, and the chief information security officer) to ensure the protection of information entrusted to the University related to students, faculty, staff, research participants, and other key constituents. This individual is responsible for increasing awareness and proficiency around privacy issues to help the University reduce risk and infractions.
PRIMARY DUTIES AND RESPONSIBILITIES:
Develop and direct a University privacy program (excluding HIPAA):
In collaboration with relevant stakeholders, establish and maintain the University’s privacy policies, notices, standards, and processes.
Advise administration, faculty, and staff on best practices, new technologies, privacy complaints, and potential institution-wide risks.
Perform or oversee information privacy risk assessment/analysis, mitigation, and remediation.
Ensure that appropriate privacy and confidentiality authorization forms, consents, notices of privacy practices, and other materials reflect current University practices and are consistent with legal requirements.
Participate in the compliance monitoring of University departments, schools, and suppliers that access, use, process, maintain, and share highly confidential personal information.
Develop and deliver privacy training to the University community workforce. With Public Affairs, develop and disseminate communications to educate the University community on compliance, risk, and/or privacy requirements.
Oversees University compliance with applicable state, federal, international and Institutional privacy laws and regulations; industry best practices and privacy standards; and University policies and procedures.
Provide highly specialized expertise to executive leadership on privacy and information protection; related State, Federal, and International regulations and laws (including GDPR and FERPA); and industry standards.
In collaboration with the University’s chief information security officer and the Office of the General Counsel, implement procedures to respond to incidents involving the potential or actual exposure or disclosure of personal or institutional information. Assist with investigations and responses to privacy breaches or incidents as necessary.
Maintain in-depth knowledge of relevant laws, regulations, and best practices.
Review and prepare materials for board and senior management meetings, including the Audit Committee of the Board of Trustees.
Performs other duties as assigned.
Graduate degree in a relevant field.
Seven - Ten years’ experience in data privacy in higher education, health care, research-based non-profit organizations, or government contracting.
Experience operationalizing state, federal, and international privacy requirements.
Experience in conducting or contributing to investigations of data breaches.
Experience collaborating with others in a decentralized institutional environment to deliver solutions that meet the needs of various constituencies and the institution as a whole.
JD or PhD.
Certified Information Privacy Professional (CIPP) or other relevant certification from the International Association of Privacy Professionals.
Experience in data management and governance in a relevant industry.
Superior knowledge of state, federal, and international statutes, laws and regulations, industry standards, trends and/or regulatory requirements that relate to privacy.
Ability to balance strategic thinking with tactical implementation to achieve results, and to prioritize/manage multiple initiatives/projects serving various audiences.
Demonstrated critical thinking skills and ability to implement strategic policy recommendations.
Base pay commensurate with experience.
All external candidates receiving an offer for employment will be required to submit to pre-employment screening for this position. Current employees applying for a new position within the university may be subject to this requirement. The screenings will include a criminal background check and, as applicable for the position, other background checks, drug screen, employment and education or licensure/certification verification, physical examination, certain vaccinations and/or governmental registry checks. All offers are contingent upon successful completion of required screening.
Please attach a copy of your most current signed performance evaluation (completed within the last 18 months) to your online account. If you have not received a performance evaluation, you may provide two current signed letters of recommendation (written within the last 18 months), preferably to include one letter from either a current or recent former supervisor. To attach these documents, go to: My Career Tools, Add Attachment, Attachment Type – Performance Reviews or Letters of Recommendation.
Washington University in St. Louis, a medium-sized, independent university, is dedicated to challenging its faculty and students alike to seek new knowledge and greater understanding of an ever-changing, multicultural world. The University offers more than 90 programs and almost 1,500 courses leading to bachelor's, master's and doctoral degrees in a broad spectrum of traditional and interdisciplinary fields, with additional opportunities for minor concentrations and individualized programs. The faculty is composed of scholars, scientists, artists and members of the learned professions. They serve society by teaching; by adding to the store of human art, creativity, understanding, and wisdom; and by providing direct services, such as health care.