Experience Inc. Jobs

Job Information

The University of Chicago Director, Data Privacy and Compliance - JR28305-3800 in Chicago, Illinois

This job was posted by https://illinoisjoblink.illinois.gov : For more information, please see: https://illinoisjoblink.illinois.gov/jobs/12392921 Department

F&A ITS - Services

About the Department

The University of Chicago is an institution of innovation, research, and global impact. Our commitment to intellectual freedom and academic rigor is at the core of everything we do, and our privacy and data governance practices are critical to supporting this mission. We are seeking a visionary and collaborative leader to serve as the University\'s Director of Data Privacy and Compliance and help shape the future of privacy and data governance at one of the world\'s leading research universities.

Job Summary

As the University\'s Director of Data Privacy and Compliance, you will play a pivotal role in shaping and driving the Institution\'s privacy strategy. This high-impact role reports to the Chief Information Officer (CIO) and works closely with University leadership, including the Provost\'s Office and faculty, to ensure that our data privacy and governance practices align with legal, ethical, and mission-driven standards and comply with all applicable laws and regulations. This is an exciting opportunity to build the University\'s privacy and data governance program from the ground up, applying your expertise in compliance, research, and data ethics. The Director will be the senior resource for all matters of privacy, working at the intersection of law, technology, and innovation to proactively address the evolving landscape of data privacy in higher education and research.

Responsibilities

  • Designs, implements, and oversees a comprehensive, institution-wide privacy program that ensures compliance with federal, state, and international privacy regulations.
  • Collaborates with University leadership to address emerging privacy issues and build future-proof policies that support growth in areas such as bioinformatics and data science.
  • Advises senior University leadership on privacy matters, keeping them informed about emerging issues, regulatory changes, and industry trends that could impact the institution.
  • Develops, updates, and manages privacy policies to meet the needs of administrative and sensitive research data.
  • Navigates the ethical, legal, and technological challenges of data privacy with faculty, researchers, and University offices, fostering innovation in research and administration.
  • Oversees cross-functional data governance initiatives to align privacy and data security efforts, manages data inventories, and enforces privacy controls across the University, overseeing the entire data lifecycle.
  • Ensures compliance with applicable laws and regulations, including HIPAA, FERPA, and GDPR; develops training programs, audits vendors, and responds to privacy incidents in collaboration with the information security team.
  • Serves as a liaison with the University of Chicago Medical Center, coordinating shared data privacy efforts, especially in areas involving HIPAA.
  • Builds a culture of privacy awareness through training and communication across the University.
  • Conducts regular privacy impact assessments and audits to identify and mitigate risks.
  • Manages the investigation and resolution of privacy incidents, developing strategies to prevent future issues.
  • Oversees privacy-related aspects of contracts with third-party vendors to ensure compliance with data protection standards.
  • Works closely with IT and academic units to integrate privacy principles into new systems and processes, embedding privacy considerations into research initiatives, system architecture, and data collection practices from the outset.
  • Benchmark the University\'s privacy and data governance program against peer institu ions and industry best practices, ensuring continuous improvement.
  • Leads and provides expertise in the implementation of compliance activities designated by the University\'s strategic plans. Monitors University compliance with regulations and laws.
  • Leads teams to develop and administer policies related to affirmative action, non-discriminatory practices for persons with disabilities, and unlawful harassment or sexual misconduct.
  • Performs other related work as needed.

Minimum Qualifications

Education:

Minimum requirements include a college or university degree in related field.

---

Work Experience:

Minimum requirements include knowledge and skills developed through 7+ years of work experience in a related job discipline.

---

Certifications:

---

Preferred Qualifications

Education:

  • JD or Master\'s degree in a relevant field.

Experience:

Proven expertise in privacy, compliance, or related areas, preferably within a large research university or similar organization.

Proven track record in building or leading a privacy program.

Background in academic research environments or academic medical centers.

Familiarity with privacy con

DirectEmployers