×

Please log in to continue...

Login

Corporate Counsel, Privacy

GROW WITH US:

Tandem Diabetes Care creates new possibilities for people living with diabetes, their loved ones, and their healthcare providers through a positively different experience. We’d love for you to team up with us to “innovate every day,” put “people first,” and take a “no-shortcuts” approach that has propelled us to become a leader in the diabetes technology industry.

STAY AWESOME:

Tandem Diabetes Care is proud to manufacture and sell the t:slim X2 insulin pump with Control-IQ technology. We’re also so much more than that. Our company’s human-centered approach to design, development, and support delivers innovative products and services for people who use insulin. Since many of our own team members live with type 1 diabetes, or have a loved one impacted by diabetes, the work is personal, and we are committed to the cause. Learn more attandemdiabetes.com.

A DAY IN THE LIFE:

The Corporate Counsel, Privacy will report to our SVP & General Counsel and will be an integral part of a cross-functional team that works to ensure our business’ compliance with applicable data privacy laws and regulations. The position is intended to support an increasing demand for both legal and operational advice and guidance regarding privacy and security matters, and to be the primary internal counsel for US privacy matters. The Corporate Counsel, Privacy will deliver pragmatic solutions for privacy compliance in day-to-day operations, as well as product development and design, and will continuously advance the overall data protection and privacy program. This role will work closely with other departments within the company to counsel on a wide range of privacy and security laws implicated in the development, commercialization, and ongoing support of diverse customer types using our diabetes technology products that range from hardware with embedded software, to a suite of connected digital health products. This role will also work collaboratively with Tandem’s international privacy counsel, as well as other members of the Tandem Legal department.

YOU’RE AWESOME AT:

Laws and Regulations – Compliance

  • Maintains awareness of U.S. federal and state emerging laws, regulations, enforcement activity, trends and developments, and industry best practices related to privacy and data protection in the United States.
  • Provides sound, legally correct, timely, and practical privacy compliance advice based on comprehensive understanding of United States legal and regulatory data protection and privacy requirements.
  • Creates and delivers regular communications and trainings to key functional areas in order to ensure awareness of U.S. federal and state privacy requirements, as well as internal processes and practices.
  • Conducts periodic reviews against HIPAA and other applicable and relevant US privacy frameworks or regulations to proactively help ensure compliance.
  • Develops deep understanding of company processes and develops partnerships with members of the legal, information technology, cyber security, research & development, product, marketing, commercial and HR to identify and mitigate privacy compliance risks.

Privacy Program Development and Maintenance

  • Develops and continuously improves company’s US-focused privacy program including developing and updating standards, policies, and procedures.
  • Conducts privacy impact assessments of programs, systems, products, and services.
  • Develops, acquires, and conducts appropriate US-focused privacy training for the workforce.
  • Conducts/maintains data inventories to track Company’s collection, use, and disclosure of individuals’ personal information, as well as respond to individuals’ data access or rights requests.
  • Partners with Cyber Security and Information Technology to establish metrics measuring effectiveness of compliance initiatives and controls; tracks and reports on compliance issues to Legal department and/or other senior leadership.
  • Manages the privacy incident process, including tracking, investigating, and preparing responses and/or notifications to any privacy incidents.
  • Develops workflow/playbooks and templates for typical privacy-related issues or support needs.
  • Manages the company’s response to privacy-related customer complaints.
  • As needed, interacts with external counsel to assess, measure, and manage risk.
  • Executes on and updates the Company’s privacy maturity roadmap.
  • Works closely with OUS (outside-of-the-US) privacy counsel to align the US privacy program efforts with the OUS privacy program efforts and projects.

General Department Administration & Agreements

  • Assists with drafting and negotiating privacy-related agreements, including Business Associate Agreements, Data Processing Agreements, Standard Contractual Clauses, HIPAA marketing authorizations, and various consents.
  • Drafts, reviews and negotiates data protection, privacy and cyber security terms within general company contracts.
  • Assists in evaluating available cyber insurance products.
  • Works closely with corporate paralegal and other internal customers to develop and improve internal processes that will support the overall growth and scaling of the legal department.
  • Functions independently and professionally, and delivers results with minimum supervision.
  • Maintains the confidentiality of Legal Department communications and documentation.

Privacy by Design – Product Lifecycle

  • Identifies and assesses privacy and security requirements of commercial product offerings, including medical devices and all related software, cloud services, mobile apps, web applications, and portals accessible by end users, healthcare providers, and distribution partners.
  • Develops standard operating and internal audit procedures to ensure data protection and privacy compliance requirements are addressed throughout product and information lifecycles.
  • Interacts with business partners, healthcare organizations, health insurers, and service providers regarding data privacy and data protection related matters.
  • Contributes to the legal analysis and associated content development for the company’s partnership and collaboration efforts.

EXTRA AWESOME:

  • Juris doctorate (with a license to practice in the state of California) preferred, but equivalent education and applicable job experience will be considered.
  • BS/BA degree in a related field.
  • Security, Privacy or Audit Certifications, such as CISSP, CIPP, CISA, CISM strongly preferred.
  • Minimum 5 years of practical privacy compliance experience involving personal health information (e.g., conducting privacy assessments, drafting privacy notices and/or external privacy collateral, advising on privacy-by-design, developing internal policies and procedures, etc.) in key global markets.
  • In-depth knowledge of US privacy laws, including HIPAA, CCPA, domestic breach notification laws, and additional US applicable laws and regulations.
  • Knowledge of, and working experience with, appropriate responses to privacy breach events, including interactions with relevant federal and state authorities.
  • Experience reviewing, drafting, and negotiating:
    • information security and privacy provisions in agreements
    • privacy and data transfer or processing agreements
    • network access, disaster recovery and other related technology agreements
  • Demonstrated privacy, compliance or other form of operational experience translating legal and regulatory requirements into a comprehensive privacy program that utilizes practical processes and practices for global IT systems, services and operations.
  • Experience advising clients with heavy direct-to-consumer contact through multiple channels of communication (phone, email, text, web).
  • Understanding of risks facing a global, public medical device company, such as anti-bribery, anti-corruption, and anti-kickback laws, rules and regulations.
  • Ability to identify compliance issues and resolve them through both internal and external research.
  • Ability to operate independently, and to proactively develop and implement strategies to maximize the efficiency and effectiveness of the global legal function.
  • High level of integrity supported by sound judgment and ethics.
  • Effective verbal and written communication and presentation styles to interact with diverse audiences, including outside attorneys, senior management and business associates.
  • Technical working understanding of IT infrastructure, web-based software and mobile Apps and ability to work with IT, cyber security, and engineering teams in applying privacy-by-design principles.
  • Understanding of business and privacy sensitivities of healthcare organizations.
  • Ability to handle complex matters, across multiple simultaneous initiatives that require discretion, confidentiality and prioritization.

WHAT’S IN IT FOR YOU?

In addition to innovative technology, we have a culture that fosters the idea that the happiest people are the most productive people. Not only do we hire forward-thinking achievers to join our workforce; we reward, develop, and retain them too. Just one of the many reasons of how we #StayAwesome! To learn more about our culture and benefits please visit https://www.tandemdiabetes.com/careers.

BE YOU, WITH US!

Tandem is firmly committed to being an equal opportunity employer and maintaining a diverse and inclusive environment. We value and embrace that every single one of us brings value to the table. But sometimes we forget that when we don’t meet 100% of a job description’s criteria – maybe you’re feeling that way right now? We encourage you to apply anyway. Because we want you to be you, with us.

COMPENSATION & BENEFITS:

The starting base pay range for this position is $190,000 – $205,000 annually. Base pay will vary based on job-related knowledge, skills, experience and may also fluctuate depending on candidate’s location and the overall job market. In addition to base pay, Tandem offers a competitive compensation package that includes bonus, equity, and a robust benefits package.

Tandem offers health care benefits such as medical, dental, vision, health savings accounts and flexible saving accounts. You’ll also receive 10 paid holidays per year, a minimum of 20 days of paid time off (starting in year 1) and have access to a 401k plan with company match. Learn more about Tandem’s benefits here!

REFERRALS:

We love a good referral! If you know someone that would be a great fit for this position, please share!

If you are applying for this job and live in California, please read Tandem’s CCPA Notice: https://www.tandemdiabetes.com/careers/california-consumer-privacy-act-notice-for-job-applicants.

#LI-Onsite #LI-Remote #LI-Hybrid #LI-DW1

Job Category
Job Type
Salary
Country
City
Career Level
Company
JOB SOURCE