This site uses cookies. To find out more, see our Cookies Policy

Manager, Privacy Program Management II in Newport Beach, CA at Hyundai Capital America

Date Posted: 12/4/2018

Job Snapshot

Job Description

General Summary:

The Manager, Privacy Program Management II works under the direction of the Function Head, Privacy to enhance, develop and implement HCA’s United States and Canada privacy programs and practices ensuring operational goals align with HCA’s business priorities as well as complying with Hyundai Capital Global Governance requirements and applicable laws and regulations. This position is also responsible for partnering with HCA and Hyundai Capital Canada business teams to drive interaction and provide routine privacy guidance in connection with the review and implementation of privacy controls across the enterprise and ensuring adequate safeguards are in place. 

Essential Job Function:

1.     Privacy Program Management – Assist with building and continually enhancing HCA’s privacy compliance programs and practices. Ensure business needs are met and privacy compliance risks are proactively identified and managed including, but not limited to, Privacy Impact Assessments (IPIA), PII Inventory, Breach Management, Data Classification and Handling, Information Sharing, and Operational Privacy Compliance. Ensure appropriate safeguards are in place to comply with privacy rules, laws, regulations, and corporate policies.

2.     Privacy Risk Assessment – Establish and manage a privacy risk assessment process to identify and mitigate privacy risks associated with the processing of personally identifiable information (PII), understanding why PII is being collected, and discovering how PII is being used, accessed, shared, safeguarded and stored. Help ensure that the process conforms to the appropriate privacy laws, regulations, and corporate policies.  Identify potential risks and effects of these risks including recommending administrative, technical and physical controls, countermeasures, and remediation action plans to reduce the exposure of privacy risks to HCA.

3.      Privacy Regulatory Updates – Maintain an understanding and comprehension of privacy and data protection laws and regulations (US and Canada) and work with directly with the business units, including the Legal and Compliance Department, to establish implementation plans for upcoming legal and regulatory changes. 

4.     Training and Awareness - Design and implement privacy-related training and awareness activities for the various business units.  Perform all other duties as assigned.

Knowledge and Skills:

•         Comprehensive understanding of U.S. privacy and data protection laws and regulations, including, but not limited to, GLBA, FCRA and SB1, fair information practices and core privacy and data protection principles, direct marketing techniques, workplace monitoring, online privacy, and information security.  Knowledge of Canadian federal and provincial privacy laws and regulations, including PIPEDA, would be considered an asset.

•         Tactical thinking skills, creative problem solving, analytical skills, verbal and written communication skills, including meeting facilitation and presentation skills.

•         Ability to influence and articulate privacy-related concepts to a broad range of technical and non-technical staff.

•         Excellent leadership, functional management and teamwork skills.  Able to work with a high degree of independence

•         Excellent written and verbal communication skills.

•         CIPP/US, CIPM, CIPT, CISA, CISM, or CISSP required.  CIPP/C would be considered an asset.  Equivalent or comparable qualifications will be considered. 


Education and Experience:

•         Minimum bachelor’s degree in related area.

•         Minimum of 8 years’ related professional experience in the financial services sector. 

•         Complete understanding and comprehension of U.S. privacy and data protection laws and regulations including but not limited to GLBA and SB1, fair information practices and core privacy and data protection principles, direct marketing techniques, workplace monitoring, online privacy, risk management and information security.

•         Knowledge of Canadian federal and provincial privacy laws and regulations would be considered an asset. 

Physical Requirements and Working Condition

Employees in this class are subject to extended periods of sitting, standing and walking, vision to monitor and moderate noise levels. Work is performed in an office environment.

Hyundai is an Equal Opportunity Employer  M/F/D/V


Primary Location:  United States-California-Newport Beach
Work Locations:  
Headquarters 2 (HCA_HQ2)
4000 MacArthur Blvd. Ste 1000 West Tower
Newport Beach, 92660


Job:  Information Protection
Job Type:  Regular
Job Level:  Individual Contributor
Schedule:  Full-time
Job Posting:  Dec 4, 2018