Senior Manager Global Data Protection and Privacy
Eaton – Brussels
The role can be based at any Eaton location in Europe.
This role will lead the global data protection and privacy function for Eaton to ensure compliance with applicable laws and regulations governing the collection, storage and use of personal data by the organization. Provide leadership and expertise across regions, sectors, and functions in matters related to data protection and privacy. This includes navigating the U.S. and the highly complex international regulatory landscape to validate Eaton’s compliance with data protection laws and regulations, and providing guidance and analysis on projects and issues relating to data protection and privacy. Ensures that under the auspices of global data protection and privacy office, Eaton is not exposed to risks of criminal and civil penalties, as well as disruption to the achievement of Company goals.
the enterprise global data protection and privacy strategy as a key member of the global data protection and privacy team to include playing an influential role in critical elements such as mapping of personal data, implementing value added improvements and supporting education requirements.
B. Leads the
enterprise-wide data protection and privacy function. Identifies stakeholders across the company to assist in developing and maintaining the program by working with the businesses, law department, information technology, human resources and other functions to advance a culture of compliance with applicable data protection laws and regulations.
C. With the VP, Global Compliance and Law Department, serves as liaison/contact for external stakeholders such as outside counsel, works council representatives, third-party data protection officers/consultants and/or data protection authorities on data protection and
D. Responsible for operating under the guidance of an Executive Steering Committee comprised of the following senior leaders:
EVP-General Counsel, EVP-Chief Human Resources Officer, SVP-Chief Information Officer, SVP-Internal Audit, President-EMEA, VP-General Counsel-EMEA and VP-Information Security and Compliance.
E. Provides subject matter expertise and legal analysis for data protection and privacy and related matters. Manages the review of IT and other projects which process personal data to ensure compliance with data protection requirements.
F. Creates and enforces processes for data protection and privacy compliance.
G.Develops and maintains a process for complete data mapping and classification for all systems and processes that contain personal data.
H. Reviews and analyzes data protection and privacy laws and how they impact Eaton and applicable stakeholders (including Eaton employees). Stays current on emerging global regulatory developments and provides analysis for senior management.
I. Ensures Eaton performs appropriate data protection and privacy risk assessment. Prioritizes and directs compliance validations on
systems and processes that contain personal data. Develops a standard data protection and privacy compliance report and provides regular reports to management. Provides oversight in remediating gaps.
J. Together with the VP global compliance and regional directors, develops, maintains, and facilitates a data protection and privacy training curriculum and communication plan.
K. Develops, plans, and leads data breach response teams or processes. Conducts periodic reviews of the plans to ensure they stay current. Support or leads data protection breach investigations.
L. Develops, reviews, and updates corporate policies relating to data protection and privacy.
M. In conjunction with the Information Security team, performs risk assessments on third parties that process, store, or transmit Eaton
N. Manager of people responsibility and ensures appropriate and optimal staffing for program office team.
Desired Skills and Experience
A. Expert knowledge of regional and local European data protection rules.
B. Knowledge of US state, federal and local data protection and privacy laws and regulations.
C. Ability to analyze applicable national, regional and local data protection and privacy laws and provide meaningful guidance to the
D. Ability to assess business processes and determine the risks and gaps according to legal requirements and internal control framework.
E. Expert executive communication skills and ability to lead via influence outside direct management hierarchy.
F. Strong analytical and problem-solving skills.
G. Expert project management skills and ability to manage large, multi-national technology and business projects.
H. Ability to present and discuss technical information and analysis in a way that establishes rapport, persuades others, and gains understanding.
I. Strong team-oriented interpersonal skills; ability to effectively interface with a wide variety of people.
J. Fluency in English.
K. Ability to travel internationally.
Bachelor’s degree in Data Protection, MIS, HR, Law or related privacy discipline.
B. Minimum of ten (10) years of experience in a compliance or compliance-related function in a large, multi-national organization, including a minimum of seven (7) years of direct data protection compliance experience in a large, multi-national organization with a significant employee population located inside the European Economic Community.
C. Exposure to business planning, compliance programs, systems analysis, and general risk analysis.
D. Significant, project management experience leading large, multi-national IT or compliance-related projects.
E. Experience leading prior compliance efforts across multiple business units and functions.
F. International business experience.
A. Juris Doctor or equivalent legal degree in a foreign jurisdiction.
B. Seven (7) or more years of experience interpreting and advising on data protection and privacy laws and regulations.
C. Five (5) or more years of experience in a large, multi-national manufacturing enterprise.
D. Bilingual or multi-lingual fluency (German and French preferred; Spanish).
E. Experience building a data protection program for a multi-national employer.
F. Certified Information Privacy Professional (“CIPP”) certification.