Job Details

Director, Data Privacy (aka CPO) (CORPORATION)

Cincinnati, OH, United States
  • Employment Type: Direct Hire
We need a builder! Our client, a leading household name in the healthcare industry, is seeking to add a Director of Data Privacy (essentially a CPO spot) to its growing team based in suburban Cincinnati, OH. This role is for a privacy innovator experienced in the healthcare space who understands both the healthcare side and the business side of a growing privacy program, including HIPAA, GDPR, and CCPA. Candidates should have demonstrable experience in building and leading privacy programs and should be comfortable with a small team of direct reports. Our client offers a challenging, dynamic environment poised for significant growth with strong stakeholder buy-in, they are just waiting for the right leader to take the privacy program to the next level! JD and IAPP certifications are strongly preferred but not required. Regional relocation candidates are welcome to apply, however candidates should be open to an eventual relocation to the Cincinnati area. Send resumes to [email protected].

  • Builds and oversees a strategic and comprehensive privacy program that develops, maintains, and implements policies and processes that enable consistent and compliant privacy practice
  • Works with Sr. Management, security, legal and compliance to establish governance for the privacy program
  • Collaborates with information security officer to ensure alignment between security and privacy compliance
  • Establishes ongoing process to track, investigate, and report inappropriate access and disclosure of protected information
  • Establishes process for receiving, documenting, tracking, investigating and taking action on complaints concerning the Company’s privacy policies and procedures in coordination and collaboration with other similar functions
  • Manages all required breach determination and notification processes under HIPAA and applicable state breach rules, requirements
  • Oversees, develops, and delivers ongoing privacy training to Company workforce
  • Manages privacy complaints, breaches and investigations by regulatory authorities
  • Interacts and provide reporting analysis to executive-level leadership on all privacy issues
  • Assists the identification, implementation, and maintenance of the Company’s privacy policies and procedures in coordination with Company management and legal counsel.
  • Initiates and oversees periodic privacy risk assessments for the Company, including all mitigation and remediation plans/efforts
  • Maintains current knowledge and compliance of state and federal privacy regulations applicable to Operations    
  • Ensures the Company maintains appropriate privacy and confidentiality consents authorization forms and information notices and materials reflecting current privacy practices

  • Bachelor’s Degree
  • Significant experience as a privacy officer
  • Thorough knowledge and experience with privacy laws in North America, including HIPAA and state privacy regulations
  • Experience and skill at writing policies and procedures, directing and managing external privacy counsel and providing opinions/guidance to the Company on privacy issues
  • Experience and thorough knowledge of business agreements
  • In-depth experience with data privacy compliance and incident management, including implementation of breach response protocol, oversight of regulatory, individual notifications/compliance
  • Experience with budget oversight, management
  • Strong interpersonal relationships, cross cultural sensitivity, builds effective teams

  • Juris Doctorate (J.D.) from an accredited law school
  • Bachelor’s degree in a healthcare-related field
  • Privacy certification, such as Certified Information Privacy Professional (CIPP)


Interested in this job? Get in touch.

(Accepted file formats are PDF, DOC, DOCX, TXT, RTF and ZIP. File size maximum is 2 MB.)