Apply on Employer Site

Boston Scientific · 1 week ago

Privacy Analyst, Global Privacy Team

Marlborough, MA

Full-time

Hybrid

Entry, Mid Level

$73K/yr - $138K/yr

2+ years exp

Boston Scientific is a leader in medical science, and they are seeking a Privacy Analyst to join their Global Privacy Team. This role involves supporting privacy operations and ensuring compliance with applicable laws and regulations related to data protection and privacy.

Health CareMedicalMedical Device

No H1B

Responsibilities

Conduct and document privacy impact assessments, data protection impact assessments, AI risk assessments, and similar activities for systems, products, clinical and commercial initiatives; provide guidance on controls and compliance solutions

Maintain and improve records of processing, data maps, and data inventories; support data minimization and purpose-limitation standards

Triage and help fulfill data subject rights requests

Assist in developing and implementing policies, procedures, reference materials, metrics/KPIs, trainings, and process improvements related to data protection

Utilize technologies for business process workflows, such as the OneTrust privacy operations platform, Office 365, and enterprise reporting tools

Support audits, certifications, and internal control testing related to privacy program requirements

Collaborate and coordinate with colleagues across all business units, Digital, IT and Cybersecurity, Global Quality, Global Compliance, Global Security, Clinical Research, R&D, and Human Resources to provide direction and guidance on company-wide data protection and AI projects

Foster company compliance with global privacy, data protection and AI laws and regulations as well as industry best practices and standards

Qualification

Privacy impact assessmentsData protection complianceOneTrust platformEnterprise AI toolsPrivacy certificationsData governance experienceProactive attitudeCommunication skillsProject management skillsInterpersonal skills

Required

Bachelor's degree required

A minimum of 2+ years' experience related to privacy, data or information governance, legal, compliance and/or artificial intelligence

Working knowledge of enterprise AI tools such as ChatGPT, Microsoft Copilot, or other generative AI platforms used in professional environments

Strong writing, communication, and project management skills

Preferred

Experience with regulated industries such as medical device, pharma, or health technology

Experience or familiarity with one or more of the following: Privacy or compliance operations, OneTrust Automated Data Mapping or similar privacy operations platforms, Windchill or similar quality management platforms, Working knowledge of Microsoft SharePoint and Lists, Enterprise reporting tools such as Excel, Tableau, or PowerBI

Working at a global/multi-national organization

Understanding of global, federal and/or state requirements related to privacy, data protection and/or generative AI, such as HIPAA, US consumer privacy laws and GDPR

Certification in one or more of the following: International Association of Privacy Professionals (IAPP) certification: CIPM, CIPP/US, CIPP/EU, etc., Certified in Healthcare Privacy Compliance (CHPC) by the Health Care Compliance Association

Knowledge of industry standards affecting privacy and information security, such as NIST and ISO 27001/27002; privacy and/or security professional certifications (e.g., CIPP)

Strong communication, presentation, interpersonal, and project management skills

Ability to work independently and drive results

Proactive attitude and approach towards continuous improvement

Dedicated commitment to the highest standards of quality, integrity, ethics, and profession

High integrity, judgment, and discretion handling sensitive information