AVP Privacy Operations in Orlando Office Complex at Marriott Vacations Worldwide

發佈日期: 11/16/2021

職位快速流覽

職位描述

Are you ready to grow your dream career while making others' vacation dreams come true? Marriott Vacations Worldwide is a world premier organization for Vacation Ownership with resorts at destinations around the globe. Join our team and help deliver unforgettable experiences that make vacation dreams come true.

Position Summary

As a member of the professional staff, contributes a high level of specialized knowledge and skill in a discipline (e.g., Accounting, Finance, Human Resources, Information Technology, Operations Planning & Support, Sales & Marketing) area to support department and/or function objectives. Generally, works with considerable independence, developing operating plans and related operational processes for own department in alignment with broader business objectives. 

Specific Job Summary

The AVP, Privacy Operations, will report to and assist the VP, Data Privacy (acting as the Chief Privacy Officer) to oversee and enhance the global privacy program (the “program”), and compliance oversight of global privacy laws and regulations. The role maintains an awareness of federal, state, and international privacy laws and standards and applies this knowledge to MVWC business processes and systems including information privacy automation technologies and tools.

The role will oversee the buildout and management of privacy operations that cover 80+ countries. Operations include range from DSARs, assessments, data mapping, etc. with metrics to proactively enhance the company’s global privacy program. This includes, but is not limited to, managing daily operations of the program, development, implementation and maintenance of policies and procedures, DPIA’s, record of processes, investigations, and tracking of required reporting to promote customer trust through transparency and ensuring customers’ rights are upheld.

As a leadership role within the Global Privacy Office, this position will interact with departments globally across the enterprise. This includes management to senior leadership levels at corporate and site-based locations

CLS Generic Expected Contributions

  • Develops operating plans and workable business processes for own department in alignment with function strategy.
  • Manages larger business processes and/or projects, setting priorities and measurable objectives, monitoring and reporting on the process, progress, and results. 
  • Responds to, solves, and makes decisions on business requests that have broader department impact and/or moderate risk.  Presents alternative solutions to business issues by leveraging the broader organization. 
  • Responsible for own work and contributing to team, department and/or business results. May direct work of non-management staff.  Typically influences work of cross-functional or extended teams.
  • Assists more senior associates in achieving business results by:
    • acting in a consultative fashion to implement programs impacting the broader organization.
    • assisting in the development and communication of broader organizational goals.
    • achieving results against budget within scope of responsibility.
    • taking calculated risks to move the department or team forward.
    • developing and using systems to organize and keep track of information.
    • balancing the interests of own group with the interests of the organization.
    • working with others to identify and remove barriers to success.
  • Readily critiques own behavior to acknowledge mistakes and improve future leadership performance and acts independently to improve and increase skills and knowledge.
  • Performs other duties as appropriate.

Specific Expected Contributions

  • Develop and implement processes to identify and address evolving privacy and data protection risks inherent in the Company’s operations and in the development of new products and services.
  • Design, implement and execute company-wide data privacy processes and procedures.  Continually updating such processes and procedures, as necessary.
  • Ensure organizational compliance and conformance with privacy / data protection principles and highlight key risk areas to the board.
  • Provides development guidance and assists in the identification, implementation, and maintenance of organization information privacy policies and procedures in coordination with key stakeholders such as legal.
  • Maintain and establish a register of data owners for sets of information and educate the data owners on their responsibilities (what is data, how is it used, who has access to it).
  • Maintain data flow maps as necessary.
  • Initiates, facilitates, and promotes activities to foster information privacy awareness within the organization and related entities.
  • Maintains current knowledge of applicable privacy laws and accreditation standards, and monitors advancements in information privacy technologies to ensure organizational adaptation and compliance.
  • Guides staff and project management in conducting documented Privacy Impact Assessments including both risk analysis and mitigation.
  • Ensures compliance with privacy practices and consistent application of sanctions for failure to comply with privacy policies for all individuals in the organization’s workforce, extended workforce, and for all business associates, in cooperation with Human Resources, the information security officer, administration, and legal counsel as applicable.
  • Oversees, directs, delivers, or ensures delivery of initial and privacy training and orientation to all employees, volunteers, medical and professional staff, contractors, alliances, business associates, and other appropriate third parties.
  • Works with legal counsel and management, key departments, and committees to ensure the organization has and maintains appropriate privacy and confidentiality consent, authorization forms, and information notices and materials reflecting current organization and legal practices and requirements.


Staff and Span of Control:

  • Manages all aspects of global privacy operations, multi-disciplined work teams, contractors, vendors, or other similar resources.
  • May manage small contracts or vendor service agreements.  Contributes to establishing organizational business objectives.

CLS Generic Candidate Profile

Successful candidates should possess knowledge and experience and demonstrate strong leadership and relationship skills as follows:

Generally, a professional position requiring significant knowledge and experience in one or more disciplines and/or business operations as well as associate and/or organizational management experience.  College degree and/or relevant experience generally required

Specific Candidate Profile (the education, experience, skills and attributes that are important for this position)

Education

  • Bachelor’s degree required or equivalent work experience; advanced degree preferred

Experience

  • 10+ years of experience in Information Technology, Security, Privacy, Legal, Audit or related fields of study with substantive compliance experience
  • Ability to distill complex and often ambiguous legal concepts into effective operational solutions.
  • Strong personal, analytical and communications skills.
  • Demonstrated ability to translate privacy and security regulations and/or standards into workable and implementable solutions
  • Proven experience with change management in an international organization
  • Data Privacy certification from IAPP or ISACA preferred
  • Deep knowledge and expertise in interpreting and applying global laws and regulations pertaining to data protection and privacy with a nuanced understanding of jurisdictional differences in the approach to regulation.
  • Experience developing and implementing measures to comply with EU data protection requirements in a large global organization strongly preferred.


Marriott Vacations Worldwide is an equal opportunity employer committed to hiring a diverse workforce and sustaining an inclusive culture