Company Description
At Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints.
As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare's hardest challenges and advance what is possible.
Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere. We strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.
Passionate people who want to make a difference drive our culture. Our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential.
Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let's advance the world of minimally invasive care.
Job Description
Primary Function of Position:
Privacy and data protection laws and regulations are evolving across the globe. The regulatory and
operational impact to businesses is increasing in complexity and presenting new compliance challenges.
Intuitive’s Privacy and Data Protection team helps develop and implement data privacy and protection
safeguards, controls, and regulatory requirements into our products, services and internal processes. The
team supports Intuitive’s mission by promoting transparent, thoughtful, and deliberate collection, use, and
dissemination of data in ethical, practical, and legally compliant ways.
The successful candidate will have an opportunity in the privacy program to make impact in a dynamic
and rapidly growing organization. This position primarily supports the APAC region and is based in Seoul, South Korea.
Role and Responsibilities:
• Collaborate closely with Data Privacy legal, compliance and privacy engineer colleagues, and
other stakeholders to support privacy compliance in an efficient and effective manner. Advice on
decisions to be taken, and paths to take to resolve areas of opportunity.
• Work closely with Intuitive’s functional and product development teams to identify data flows and
develop records of processing activities.
• Conduct privacy risk assessments and Data Protection Impact Assessments (DPIA) for
products, systems, and services. Assess privacy risks and recommend mitigating controls.
• Lead privacy projects, identify trends and leverage data to drive improvement across Intuitive.
• Automate internal review process and periodic assessments.
• Manage data subject rights requests.
• Establish continuous monitoring for effectively tracking and managing security and privacy
controls.
• Contribute to privacy control governance, policy and procedure, and technical security controls
supporting privacy objectives.
• Identify and execute upon opportunities to improve our ability to measure and report on privacy
risk management.
• Manage assigned data privacy operations activities, including the implementation and
monitoring of metrics to measure activities' health and success. Respond to escalations from
other team members.
• Proactively and independently analyze and manage risks. Make recommendations and escalate
appropriately.
• Develop and drive complex projects to completion. Ensure alignment with program and
organizational goals. Provide feedback and insights to drive continuous improvement for the
Privacy function.
• Stakeholder engagement: Build relationship and be able to influence internal stakeholders (e.g.
product development teams and business functions) to implement privacy in our products and
processes.
• Respond to privacy and data breaches and incidents in a timely and thorough manner.
• Prepare clear, detailed process documentation.
• Proactively propose, prepare and present presentations for Privacy Leadership, Legal, and
other business teams to represent the Privacy team.
Qualifications
Required Knowledge, Skills, and Experience:
• Bachelor’s degree in computer science, Law, Cyber Security, Engineering or related discipline,
or commensurate experience.
• 7+ years of privacy framework experience (PIPC, PIPA or equivalent).
• 7+ years of experience working in a privacy program, with hands-on experience on multiple
areas of privacy such as privacy risk assessments and risk mitigation, training, incident
response, monitoring and audits.
• 3+ years of project management experience.
• Able to identify pragmatic, risk-based privacy solutions that balance privacy compliance with
business needs.
• Expert level of knowledge on multiple areas of privacy, including legal requirements and internal
processes. Able to provide comprehensive privacy guidance independently. Appropriately
consult with other Privacy colleagues (e.g. region, process, legal) to ensure comprehensive
review of matters.
• Able to assess hardware and software features for their privacy implications; capable of
translating abstract product design concepts into actionable privacy requirements.
• Able to drive and execute projects and operational tasks efficiently.
• Self-starter, with close attention to detail.
• Consistently strive for continuous individual performance and support the team’s performance.
• Comfortable speaking in front of varied audiences to provide training focused on privacy
concepts.
• Able to convey clear, concise, and actionable instructions and messaging.
• Current CIPP, CIPM, CIPT, or other related certification.
Preferred Skills, and Experience
• Hands-on experience in developing a compliant privacy program and related processes.
• Capacity to motivate and influence stakeholders to achieve organizational goals and initiatives.
• Experience in complying with privacy regulations across Asia, e.g. PIPL (China), DPDPA (India)
etc.
• Familiarity with security and privacy standards such as SOC, ISO 27001, ISO 27018, HITRUST
etc.
• Experience operating in a highly regulated industry and international environment.
• Master’s degree in information security, Law, Cybersecurity or similar field of study
Additional Information
Intuitive는 고용 기회 균등 고용주입니다. 당사는 인종, 성별, 임신 여부, 성적 지향, 성 정체성, 출신 국가, 피부색, 연령, 종교, 국가 보훈 대상자, 장애 여부, 유전 정보 또는 연방, 주 또는 현지 관련 법률에 따라 보호받는 기타 모든 지위에 관계없이 자격을 갖춘 모든 지원자 및 직원에게 동등한 고용 기회를 제공하며 모든 유형의 차별과 괴롭힘을 금지합니다.
당사는 기회 균등법에 따라 범죄 및 유죄 판결 기록이 있는 고용 자격을 갖춘 지원자를 고려할 것입니다.