At Johnson Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in pharmaceutical, medical devices and diagnostics markets, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity.Learn more athttps://www.jnj.com/.
DEI Statement
For more than 130 years, diversity, equity inclusion (DEI) has been a part of our cultural fabric at Johnson Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world’s most pressing healthcare challenges.
We know that the success of our business – and our ability to deliver meaningful solutions – depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued and our people can reach their potential.
At Johnson Johnson, we all belong.
포지션: Sr. Privacy Manager (Legal/Lawyer)계열사: Johnson Johnson Innovative Medicine (formerly Janssen)근무지: 서울시 용산구근무 형태: RegularPosition Summary
The Cross-Sector Sr. Manager, Privacy Compliance Officer of Johnson Johnson Family of Companies in South Korea is responsible for developing and implementing the privacy program for all JJ companies in South Korea, identifying privacy risks and developing, maintaining and implementing policies and procedures, training and controls to ensure Johnson Johnson’s businesses are operating appropriately with regard to applicable privacy laws and regulations and JJ policies. This role includes coordination of all activities related to implementation of and adherence to Johnson Johnson Privacy policies and applicable data protection laws, in accordance with the Johnson Johnson Privacy Framework.
The position will also include the responsibility of the designated Chief Privacy Officer for South Korea.
The position will also have a direct line of reporting to the ASPAC senior privacy director.
[Main responsibilities]
Ensures compliance to Personal Information Protection Act (PIPA), Act on the Promotion of Information and Communications Network Utilization and Information Protection Act (“ICNA”), related laws and all applicable Johnson and Johnson privacy and data protection policies and procedures.Establishes and implements a personal information protection planProcesses complaints and implements relief relating to personal information processingPartner with Information Security Officer to establish internal control systems that prevents leakage, abuse, misuse of personal information and protects the confidentiality of personal information files.Establishes and implements training on personal information protectionEffectively aligns with key stakeholders in Operating Company to ensure that personal information processing activities of the company comply with Johnson Johnson Privacy Principles and applicable Privacy laws and regulationsEnsures local oversight of Privacy Compliance Programs. Advises executive and senior management team of their responsibilities and obligations and helps them develop a culture of complianceIdentifies Privacy risks and issues. Advises all staff whose activities possibly put the company at risk and provides actionable solutions to remediate risks and issuesPartners Liaises with:
The designated Chief Privacy Officers of the companies in South KoreaRepresentatives from business process owners who collect or process personal information (including, as applicable, Human Resources, Clinical, Sales and Marketing, Customer Call Centres, Information Technology and Procurement)Global Privacy Teamkey functional partners, like: a. the Law Department, to obtain legal advice when needed / b. IT Security including organization’s Information Security Officer (ISO), to ensure adequate security and access controls on systems that process personal information and to partner on an adequate response to security incidents with a Privacy impact / c. company’s responsible person for Records and Information Management, on issues pertaining to retention and purging of records that contain personal information / d. Healthcare Compliance, to ensure a Privacy program that fits into the overall compliance program roll out for the company / e. Corporate internal audit function to support the engagement and regularly assess the personal information processing and make improvementsPrivacy regulator, in case of questions, inspections or data breachesKey activities:
Participates in company’s Compliance Committee or similar governance structure, to highlight Privacy risks and status of Privacy Compliance Program.Liaises with business process owners, to build understanding of Privacy risks related to their personal information processing activities and provides advice on how to mitigate these risks by embedding Privacy requirements into the design of business processes.Collaborates with IT on compliance assessments and Internet compliance review process.Plans and deploys a local Privacy Compliance Program, in terms of Policies and Procedures, Training and Communication, Testing and Monitoring, in accordance with the requirements of JJ’s global Privacy Framework.Coordinates the roll out of Privacy training in accordance with agreed training plan of the company. Develops additional local training content and awareness programs among employees and contractors, when needed.Provides assistance to the Law Dept and Procurement, if needed, with regard to the review and recommendation of adequate Privacy language in contracts with third party service providers.Assists business process owners with privacy compliance self/risk assessments.Serves as first point of contact for internal and external audits and inspections, requests for access and correction of personal information or complaints against the organization.Manages company’s Privacy incident response process, in close collaboration with the company’s executive leadership, the Global Privacy Team, IT Security, Law Department and relevant business process owners.Coordinates execution of resulting remediation action plans.Makes required notifications and filings to Privacy regulator (if applicable).Builds and maintains knowledge about applicable laws and regulations and assesses impact of changes in laws to Privacy program.Actively engages with the Global Privacy Team and participates in its information sessions, to ensure maximal alignment with global standards and practices.[Requirements]
Familiarity with the healthcare industry and its business processes; in industry, preferably health care industryFunctional understanding of applicable Privacy laws and regulationsSignificant experience with the roll out of (privacy) compliance programs and their managementAbility to maintain the highest standards of quality, compliance and accountability when advising the businessDemonstrable ability to engage with a range of business units and functions and uncover their objectives and needsAbility to translate a wide variety of principles and, sometimes complex, legal requirements into actionable solutions for the businessExcellent organizational, facilitation, communication and presentation skillsGlobal mindset and preparedness to incorporate global standards and practices, for consistency and efficiency reasonsAbility to work autonomouslyAdvanced communication skills both in English and Korean[JD확인및지원방법]
https://careers.jnj.com -> Requisition number“2406227888W”검색->해당모집공고클릭후, “Apply Now”
[제출서류]
영문자유양식의이력서/경력기술서/자기소개서
[서류마감일]
채용시마감
[유의사항]
- 국가보훈 대상자 및 장애인은 관련 서류 제출 시 관계 법령에 의거하여 우대합니다.
- 서류 전형 합격자에 한하여 개별 통보합니다. 단, 회사 사정에 따라 지연될 수 있습니다.
- 입사 지원 서류에 허위 사실이 발견될 경우, 채용 확정 이후라도 채용이 취소될 수 있으며 향후 채용이 제한됩니다.
- 제출된 서류는 반환되지 않으며, 별도 요청 시 삭제합니다.
www.careers.jnj.com
At Johnson Johnson, we believe health is everything. Our strength in healthcare innovation empowers us to build a world where complex diseases are prevented, treated, and cured, where treatments are smarter and less invasive, and solutions are personal. Through our expertise in pharmaceutical, medical devices and diagnostics markets, we are uniquely positioned to innovate across the full spectrum of healthcare solutions today to deliver the breakthroughs of tomorrow, and profoundly impact health for humanity.Learn more athttps://www.jnj.com/.
DEI Statement
For more than 130 years, diversity, equity inclusion (DEI) has been a part of our cultural fabric at Johnson Johnson and woven into how we do business every day. Rooted in Our Credo, the values of DEI fuel our pursuit to create a healthier, more equitable world. Our diverse workforce and culture of belonging accelerate innovation to solve the world’s most pressing healthcare challenges.
We know that the success of our business – and our ability to deliver meaningful solutions – depends on how well we understand and meet the diverse needs of the communities we serve. Which is why we foster a culture of inclusion and belonging where all perspectives, abilities and experiences are valued and our people can reach their potential.
At Johnson Johnson, we all belong.
포지션: Sr. Privacy Manager (Legal/Lawyer)계열사: Johnson Johnson Innovative Medicine (formerly Janssen)근무지: 서울시 용산구근무 형태: RegularPosition Summary
The Cross-Sector Sr. Manager, Privacy Compliance Officer of Johnson Johnson Family of Companies in South Korea is responsible for developing and implementing the privacy program for all JJ companies in South Korea, identifying privacy risks and developing, maintaining and implementing policies and procedures, training and controls to ensure Johnson Johnson’s businesses are operating appropriately with regard to applicable privacy laws and regulations and JJ policies. This role includes coordination of all activities related to implementation of and adherence to Johnson Johnson Privacy policies and applicable data protection laws, in accordance with the Johnson Johnson Privacy Framework.
The position will also include the responsibility of the designated Chief Privacy Officer for South Korea.
The position will also have a direct line of reporting to the ASPAC senior privacy director.
[Main responsibilities]
Ensures compliance to Personal Information Protection Act (PIPA), Act on the Promotion of Information and Communications Network Utilization and Information Protection Act (“ICNA”), related laws and all applicable Johnson and Johnson privacy and data protection policies and procedures.Establishes and implements a personal information protection planProcesses complaints and implements relief relating to personal information processingPartner with Information Security Officer to establish internal control systems that prevents leakage, abuse, misuse of personal information and protects the confidentiality of personal information files.Establishes and implements training on personal information protectionEffectively aligns with key stakeholders in Operating Company to ensure that personal information processing activities of the company comply with Johnson Johnson Privacy Principles and applicable Privacy laws and regulationsEnsures local oversight of Privacy Compliance Programs. Advises executive and senior management team of their responsibilities and obligations and helps them develop a culture of complianceIdentifies Privacy risks and issues. Advises all staff whose activities possibly put the company at risk and provides actionable solutions to remediate risks and issuesPartners Liaises with:
The designated Chief Privacy Officers of the companies in South KoreaRepresentatives from business process owners who collect or process personal information (including, as applicable, Human Resources, Clinical, Sales and Marketing, Customer Call Centres, Information Technology and Procurement)Global Privacy Teamkey functional partners, like: a. the Law Department, to obtain legal advice when needed / b. IT Security including organization’s Information Security Officer (ISO), to ensure adequate security and access controls on systems that process personal information and to partner on an adequate response to security incidents with a Privacy impact / c. company’s responsible person for Records and Information Management, on issues pertaining to retention and purging of records that contain personal information / d. Healthcare Compliance, to ensure a Privacy program that fits into the overall compliance program roll out for the company / e. Corporate internal audit function to support the engagement and regularly assess the personal information processing and make improvementsPrivacy regulator, in case of questions, inspections or data breachesKey activities:
Participates in company’s Compliance Committee or similar governance structure, to highlight Privacy risks and status of Privacy Compliance Program.Liaises with business process owners, to build understanding of Privacy risks related to their personal information processing activities and provides advice on how to mitigate these risks by embedding Privacy requirements into the design of business processes.Collaborates with IT on compliance assessments and Internet compliance review process.Plans and deploys a local Privacy Compliance Program, in terms of Policies and Procedures, Training and Communication, Testing and Monitoring, in accordance with the requirements of JJ’s global Privacy Framework.Coordinates the roll out of Privacy training in accordance with agreed training plan of the company. Develops additional local training content and awareness programs among employees and contractors, when needed.Provides assistance to the Law Dept and Procurement, if needed, with regard to the review and recommendation of adequate Privacy language in contracts with third party service providers.Assists business process owners with privacy compliance self/risk assessments.Serves as first point of contact for internal and external audits and inspections, requests for access and correction of personal information or complaints against the organization.Manages company’s Privacy incident response process, in close collaboration with the company’s executive leadership, the Global Privacy Team, IT Security, Law Department and relevant business process owners.Coordinates execution of resulting remediation action plans.Makes required notifications and filings to Privacy regulator (if applicable).Builds and maintains knowledge about applicable laws and regulations and assesses impact of changes in laws to Privacy program.Actively engages with the Global Privacy Team and participates in its information sessions, to ensure maximal alignment with global standards and practices.[Requirements]
Familiarity with the healthcare industry and its business processes; in industry, preferably health care industryFunctional understanding of applicable Privacy laws and regulationsSignificant experience with the roll out of (privacy) compliance programs and their managementAbility to maintain the highest standards of quality, compliance and accountability when advising the businessDemonstrable ability to engage with a range of business units and functions and uncover their objectives and needsAbility to translate a wide variety of principles and, sometimes complex, legal requirements into actionable solutions for the businessExcellent organizational, facilitation, communication and presentation skillsGlobal mindset and preparedness to incorporate global standards and practices, for consistency and efficiency reasonsAbility to work autonomouslyAdvanced communication skills both in English and Korean[JD확인및지원방법]
https://careers.jnj.com -> Requisition number“2406227888W”검색->해당모집공고클릭후, “Apply Now”
[제출서류]
영문자유양식의이력서/경력기술서/자기소개서
[서류마감일]
채용시마감
[유의사항]
- 국가보훈 대상자 및 장애인은 관련 서류 제출 시 관계 법령에 의거하여 우대합니다.
- 서류 전형 합격자에 한하여 개별 통보합니다. 단, 회사 사정에 따라 지연될 수 있습니다.
- 입사 지원 서류에 허위 사실이 발견될 경우, 채용 확정 이후라도 채용이 취소될 수 있으며 향후 채용이 제한됩니다.
- 제출된 서류는 반환되지 않으며, 별도 요청 시 삭제합니다.
www.careers.jnj.com
.
.