Vice President, Privacy

GROW WITH US:

Tandem Diabetes Care creates new possibilities for people living with diabetes, their loved ones, and their healthcare providers through a positively different experience. We’d love for you to team up with us to “innovate every day,” put “people first,” and take a “no-shortcuts” approach that has propelled us to become a leader in the diabetes technology industry.

STAY AWESOME:

Tandem Diabetes Care is proud to manufacture and sell the t:slim X2 insulin pump with Control-IQ technology. We’re also so much more than that. Our company’s human-centered approach to design, development, and support delivers innovative products and services for people who use insulin. Since many of our own team members live with type 1 diabetes, or have a loved one impacted by diabetes, the work is personal, and we are committed to the cause. Learn more attandemdiabetes.com.

A DAY IN THE LIFE:

**This role will be a remote opportunity within the USA.

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

The Vice President, Privacy will further develop and lead the global Tandem Diabetes privacy program. The role will report to our Senior Vice President & General Counsel and will have a strong working knowledge of global (particularly US, EU/UK and Canadian) healthcare privacy laws and regulations. The Vice President, Privacy will advise on a wide range of privacy legal and operational questions and issues and will continuously advance Tandem’s overall data protection and privacy program with both internal and external business partners.

This role will also oversee projects that deliver pragmatic solutions for privacy compliance in day-to-day operations, further develop the company’s Privacy by Design program, and hire, develop, lead, mentor and manage Tandem’s in-house privacy staff as the function scales with the company’s overall growth. The Vice President, Privacy will partner with other internal departments to advise on a wide range of privacy and security issues in the development, commercialization, and ongoing support of diverse customer types.

YOU’RE AWESOME AT:

Privacy Program Development, Direction and Operation

• Continues to develop a robust program infrastructure to support the company’s compliance with global healthcare privacy laws, regulations, and contractual obligations.
• Develops and leads initiatives to advance the effectiveness and sophistication of Tandem’s privacy compliance program.
• Oversees privacy strategic planning and risk assessment activities, including the analysis and interpretation of global regulatory guidance and rulings.
• Oversees the ongoing development, implementation and maintenance of an engaging and comprehensive privacy training and communication program that seeks to ensure the company workforce is knowledgeable about relevant domestic and international data protection and privacy requirements. Implements initiatives to foster a privacy protective culture throughout the company.
• Manages the company’s response to any privacy/security incidents in coordination with the Cybersecurity team. Oversees the investigation of any privacy/security incidents, and collaborates with domestic and international data protection authorities, as appropriate.
• Provides regular reports to the SVP and General Counsel and Compliance Committee, detailing status of projects and progress towards accomplishing privacy goals and objectives and the privacy strategic roadmap. Establishes and reports on key privacy program performance and effectiveness metrics and dashboard.
• Prepares regular reports for the Privacy & Security Subcommittee of the Board of Directors, including status, performance and effectiveness of the privacy program, privacy initiatives implemented through the year, trends, statistical data, etc. Recommends improvements/changes in the overall privacy program.
• Serves as an information privacy expert to Tandem, advising on privacy and data protection issues and implications of company-wide strategic initiatives, proactively and responsively.

Privacy by Design

• Develops, implements, and maintains the company’s Privacy by Design Program, including ongoing development of standards, policies, and playbook guidance for Tandem’s software and product teams to encourage incorporation of privacy into the product life cycle.
• Anticipates, identifies, and assesses global privacy and security requirements of commercial product offerings, including the various classes of medical devices and all related software, the use of artificial intelligence and algorithms to process medical data, cloud services, mobile apps, web applications, and portals accessible by end users, healthcare providers, and distribution partners.

Laws and Regulations

• Advises on global privacy law compliance matters.
• Oversees the reviewing, drafting and/or negotiating of privacy-related agreements, including Business Associate Agreements, Data Processing Agreements, Standard Contractual Clauses, HIPAA marketing authorizations, and various consents.
• Maintains awareness of emerging laws, regulations, enforcement activity, and trends and developments in industry best practices related to data privacy (domestically and internationally).

General Department Administration

• Supervises domestic and international Privacy team members to ensure Tandem has a consistent and measured approach to implementing privacy globally, including the implementation of jurisdiction-specific policies and procedures.
• Partners with Tandem global and domestic business areas, corporate functions, and regional and country compliance leaders to ensure timely engagement and effective decision-making on privacy risk matters and their impact on business operations and the customer experience.
• Develops deep understanding of company processes and partners with members of Legal, Information Technology, Cybersecurity, Research & Development, Commercial and Human Resources to identify and mitigate privacy compliance risks.
• Proactively supports new and evolving business models, technologies, and growth strategies, including development of new products.
• Interacts with business partners, healthcare organizations, health insurers, and service providers regarding data privacy and data protection related matters.

EXTRA AWESOME:

• Law degree (JD) from an accredited US law school.
• Licensed to practice law in California or be eligible to obtain a limited license for in-house counsel.
• Privacy Certifications, such as CIPP/US/E, preferred.
• 15+ years of privacy legal and compliance experience, including:
  • Experience building a privacy program and team, with minimum of 5 of those years involving “hands on” application of privacy compliance principles, and
  • Experience advising on healthcare privacy legal issues for a medical device manufacturer, medical technology company, and/or healthcare company.
• Demonstrated leadership in an in-house Privacy department.
• Experience working for a HIPAA Covered Entity or Business Associate, preferred.
• Demonstrated experience in a leadership-level (senior director or above) Privacy position at a large health care company.
• Knowledge and substantial working experience with relevant regulatory authorities related to data breach events.
• Experience reviewing, drafting, and negotiating privacy and data transfer or processing agreements, including those governed under GDPR, PIPEDA, and other international data protection laws.
• Demonstrated privacy and operational experience accurately translating legal and regulatory requirements into a comprehensive global privacy program that leverages practical processes and practices for global systems, services, and operations to meet day-to-day operational requirements; demonstrated experience leading and maturing such a program at the highest level, including Board-level reporting, and justifying budgetary requests for programmatic funding.
• Understanding of risks facing a global medical device manufacturing company.
• General technical understanding of IT infrastructure, web-based software and mobile apps, and ability to work with IT, Cybersecurity, and Engineering teams in applying Privacy-by-Design principles.
• Technical and clinical understanding of medical device data management, including restrictions on processing, deidentification, and the use of artificial intelligence to analyze raw data.
• Ability to anticipate, identify, and resolve privacy compliance issues through both internal and external research.
• Ability to handle complex matters, across multiple simultaneous initiatives that require discretion, confidentiality, and prioritization.
• Demonstrated analytical skills as well as the ability to take disparate information and make strategic recommendations quickly and clearly.
• Strong focus on business partnering and solutioning and ability to operate effectively in a matrix structure is required.

WHAT’S IN IT FOR YOU?

In addition to innovative technology, we have a culture that fosters the idea that the happiest people are the most productive people. Not only do we hire forward-thinking achievers to join our workforce; we reward, develop, and retain them too. Just one of the many reasons of how we #StayAwesome! To learn more about our culture and benefits please visit https://www.tandemdiabetes.com/careers.

BE YOU, WITH US!

Tandem is firmly committed to being an equal opportunity employer and maintaining a diverse and inclusive environment. We value and embrace that every single one of us brings value to the table. But sometimes we forget that when we don’t meet 100% of a job description’s criteria – maybe you’re feeling that way right now? We encourage you to apply anyway. Because we want you to be you, with us.

COMPENSATION & BENEFITS:

The starting base pay range for this position is $290,000 – $310,000 annually. Base pay will vary based on job-related knowledge, skills, experience and may also fluctuate depending on candidate’s location and the overall job market. In addition to base pay, Tandem offers a competitive compensation package that includes bonus, equity, and a robust benefits package.

Tandem offers health care benefits such as medical, dental, vision, health savings accounts and flexible saving accounts. You’ll also receive 10 paid holidays per year, a minimum of 20 days of paid time off (starting in year 1) and have access to a 401k plan with company match. Learn more about Tandem’s benefits here!

YOU SHOULD KNOW:

Potential new employees must successfully complete a drug screen (excludes marijuana) and background check which includes criminal search, education certification and employment verification prior to hire.

REFERRALS:

We love a good referral! If you know someone that would be a great fit for this position, please share!

If you are applying for this job and live in California, please read Tandem’s CCPA Notice: https://www.tandemdiabetes.com/careers/california-consumer-privacy-act-notice-for-job-applicants.

#LI-Remote #LI-DW1