Director of Information Governance and Privacy (Chief Privacy Officer)

Georgia-Pacific (GP) is among the world's leading manufacturers of bath tissue, paper towels, napkins, tableware, paper-based packaging, office papers, cellulose, specialty fibers, nonwoven fabrics, building products and related chemicals. Our building products business makes DensGlass® gypsum board often seen in commercial construction, DryPly® plywood and RESI-MIX® wood adhesives, among others. Our containerboard and packaging business offers high-end graphic packaging to bulk bins as well as Golden Isles fluff pulp. You may also recognize consumer brands like Angel Soft®, Brawny®, and Dixie® on retail shelves and enMotion® towels, Compact® bath tissue and SmartStock® cutlery dispensers when you are away from home. Our GP Harmon business is one of the world's largest recyclers of paper, metal and plastics. As a Koch Company, we create long-term value using resources efficiently to provide innovative products and solutions that meet the needs of customers and society, while operating in a manner that is environmentally and socially responsible, and economically sound. Headquartered in Atlanta, GA., we employ approximately 35,000 people. For more information, visit www.gp.com. This position is responsible for supporting the framework, plans and strategic direction for the Information Governance and Privacy programs, managing and executing projects and services relating to privacy and the governance of the company’s information, with an emphasis on initiatives relating to electronic information as it relates to information classification, business impact and risk assessments and recordkeeping. The role is a subject matter expert in these areas and, as such, is capable of providing practical guidance and solutions when complex and/or technical issues arise that relate to the management of the company’s information.  The incumbent will serve as the Chief Privacy Officer. The position will interact with all levels of management, in-house and outside counsel, several business units and cross functional capability teams including IT, eDiscovery, Legal and Security to ensure compliance excellence.  This role is also responsible for the company’s record management system and will manage a team of three. Responsibilities: Policies and Processes: • Update, interpret and continue to implement Georgia-Pacific’s global privacy policy (called the Data Privacy Compliance Standard) and associated processes • Update, interpret and continue to implement Georgia-Pacific’s Records Information Management • Conduct, improve and track ongoing live and computer-based training and awareness efforts for employees globally, including live and computer based training • Audit and assess compliance with the Data Privacy Compliance Standard • Work with management in the development and enhancement of processes to ensure compliance with applicable information security and information management requirements; participate in the development and maintenance of supporting procedures. • Lead working teams to design and implement changes to business policies, procedures and training programs as appropriate Privacy Notices, Data Related Agreements and Declarations: • Assist in drafting, maintaining and updating employee privacy notices, data transfer and data processing agreements, and privacy declarations to data protection authorities in various jurisdictions • Work closely with different Georgia-Pacific Marketing Departments to understand and anticipate their strategies, and to help ensure continued privacy compliance of Company website privacy notices, websites’ terms and conditions and other personal data collections Assessments and Protections: • Develop and implement strategies to protect security and integrity of personal data Provide informed decisions to management concerning the potential risks to the business. Work with business and capability leaders to mitigate risk. • Conduct data privacy assessments regarding cloud computing, mobile devices, new websites and general outsourcing initiatives • Audit existing third party relationships and make recommendations for strengthening contracts where necessary to include provisions for data privacy and security • Update and test data breach response plans • Provide support and advice to help ensure privacy compliance for data collection efforts in areas such as due diligence, e discovery, audits and investigations Safe Harbor: • Lead annual diligence and recertification efforts for US Safe Harbor certification Laws, Regulations, Trends:  . • Continuously follow trends in the law and track new laws and regulations and advice accordingly; recommend updates to all aspects of Georgia-Pacific’s global privacy compliance program Required Qualifications: •  Bachelor's degree relating to information technology, law, compliance, business administration, or information management •  Five years of work experience •  Knowledge of information management and/or information governance processes and/or privacy processes and technologies •  Direct experience working in an Information Governance and/or Privacy Environment •  Experience working with professionals in managing electronic information, privacy, information security, eDiscovery and records management. • Experience authoring and presenting professional Information Governance and/or Privacy guidance documents • Demonstrated experience providing direction toward the determination of policy and strategy Preferred Qualifications: • Master’s degree • Experience in both Information Governance and Privacy Salary and benefits commensurate with experience. We are an equal opportunity employer. Minority/Female/Disabled/Veteran Except where prohibited by state law, all offers of employment are conditioned upon successfully passing a drug test. This employer uses E-Verify. Please visit the following website for additional information: www.kochcareers.com/doc/Everify.pdf

Expired, click here to search for relevant jobs

Around the Network