Senior Analyst, Data Privacy and Protection, IT Operations

Lantheus Medical Imaging - Bedford, MA

posted 10 days ago

Full-time - Mid Level
Bedford, MA
Merchant Wholesalers, Nondurable Goods

About the position

The Senior Analyst, Data Privacy and Protection, IT Operations at Lantheus is responsible for supporting the IT Security and Ethics & Compliance functions by operationalizing company-wide data privacy and protection initiatives. This role focuses on ensuring the confidentiality, integrity, and availability of personal and sensitive corporate data, while managing compliance with global data privacy regulations. The position requires collaboration with cross-functional teams to implement technical controls and support data protection policies, education, and training for employees.

Responsibilities

  • Support the Ethics & Compliance Data Privacy team to operationalize the company's data privacy and protection strategy.
  • Oversee the configuration and management of data privacy and protection tools within systems to ensure compliance with regulations.
  • Collaborate with the Ethics & Compliance Data Privacy team to support data protection policies and implement necessary technical controls.
  • Assist in educating and training employees on data handling protocols, focusing on sensitive health-related information.
  • Support major new initiatives as a 'Privacy Architect' by building Data Flow Diagrams (DFDs) and inventories of Data Elements.
  • Perform Privacy Impact Assessments (PIA) and Data Protection Impact Assessments (DPIA) for new processes or systems touching Privacy data.
  • Assist with Data Subject Access Requests (DSARs) using the Lantheus Data Privacy Tool.
  • Maintain the inventory of Privacy data and records of processing activities (ROPA) for systems handling sensitive data.
  • Stay updated on emerging threats and advancements in data protection technology.
  • Maintain awareness of evolving privacy legislation and its implications for Lantheus programs.

Requirements

  • Minimum 5-10 years in Privacy and/or related experience, preferably in Biotech/Pharmaceuticals.
  • Foundational understanding of key elements required for a Privacy program, HITRUST certification and/or experience with SOC 2 'Privacy' Trust Services Criteria (TSC) is a plus.
  • A./B.S. degree or equivalent in a related field required; advanced degree preferred.
  • IAPP certifications such as Certified Information Privacy Technologist (CIPT) or Manager (CIPM) preferred.
  • Knowledge of laws and regulations affecting the pharmaceutical industry, including HIPAA, CCPA, and GDPR.
  • Experience in document management and process flow creation.

Nice-to-haves

  • Experience with HITRUST certification and/or SOC 2 'Privacy' Trust Services Criteria (TSC).
  • Advanced degree in a related field.
  • IAPP certifications such as CIPT or CIPM.

Benefits

  • Hybrid work environment with flexibility in work location.
  • Opportunities for professional development and training.
  • Collaborative and inclusive company culture.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service