Managing Privacy Counsel, Manager Privacy Services

Data. Discovery. Better Health.

ICES is a world-leading health research and analytics institute. With a wealth of data and analytic expertise, we create trusted evidence that has changed health policy and practice and helps ensure better health for all. 

Ready to discover more with us? Join our outstanding, collaborative team where your skills, knowledge and curiosity are valued and can change the future of health care.

At ICES, we recognize what matters most to our employees. Some of the great benefits of working at ICES include:

• Flexible remote work arrangements anywhere in Ontario
• Competitive Compensation
• Comprehensive Benefits Program
• HOOPP Pension Plan (Defined Pension)
• Employee Assistance Program and Dialogue Well Being Program
• Generous vacation, float and caregiver days for all employees
• Education Fund and Dedicated Education Days
• Holiday Closure
• Perkopolis Employee Discount Program

Introduction:

ICES is currently seeking a Managing Privacy Counsel, Manager Privacy Services to join our Privacy and Legal Office Department. Reporting to the Director, Privacy & Legal Office (PLO), the Managing Privacy Counsel, Manager Privacy Services is responsible for the effective and efficient management of all privacy activities that form part of the ICES Privacy program to ensure that ICES meets its privacy obligations and to support ICES with achieving its mission and vision while living up to ICES' values.

Responsibilities of the position include, but may not be limited to:

1. Oversee operations of Privacy Services, including all privacy-related consultations; privacy impact assessments (PIAs) on projects, programs, data holdings, information systems, and technology; suspected privacy breaches; privacy complaints; and privacy inquiries;
2. Build and develop a cohesive team, including recruiting, training and coaching Privacy Services resources, assessing performance of direct reports, and supporting skill and career development of direct reports;
3. Manage all Privacy Services roles, including acting as an escalation stakeholder and approver, auditing work for accuracy and timeliness, and ensuring accuracy and consistency;
4. Develop, update, and oversee privacy-related processes, practices, and tools, including working with relevant ICES departments to ensure service level agreements (e.g. assessment timelines) are routinely met or exceeded, with an eye to continuous improvement and effective service delivery;
5. Ensure Privacy Services remains up to date on, and incorporates into its work, developments in privacy and data governance laws and best practices, including developing knowledge-sharing relationships with external privacy SMEs;
6. Oversee ICES-wide privacy and data governance education, awareness, and training resources, with a strong understanding of organizational trends to ensure the organization receives relevant information;
7. Ensure alignment of privacy operations with strategic priorities of the organization as directed by upper management;
8. Have a strong understanding of how privacy legal principles, interact with data analytics, research, and emerging data uses and ICES business practices;
9. Conduct highly complex and/or high visibility consultations, PIAs, suspected privacy breaches, privacy complaints, and privacy inquiries, particularly those that carry elevated legal risk;
10. Be a trusted legal and business advisor to stakeholders and leadership across the organization, able to identify privacy and data governance-related legal and business risks and recommend creative, effective solutions and mitigation strategies that protect and advance the goals of the organization;
11. Participate in cross-functional initiatives and projects of strategic importance to advise on privacy, legal, and data governance matters;
12. Liaise with external counsel on privacy and data governance legal matters, as required;
13. Provide support on regulatory matters, as required;
14. Identify liability and privacy legal issues and advise the corporation, accordingly;
15. Draft and review agreements, as required;
16. Draft and update privacy-related policies and procedures;
17. Consult and liaise with internal and external stakeholders to accomplish any of the above;
18. Represent and act as an ambassador of PLO;
19. Act as the delegate of, and perform other duties as may be assigned by, the Director, PLO.

Knowledge, skills, and abilities required: 

• Bachelor of Laws (L.L.B.) or Juris Doctor (J.D.) or equivalent law degree is required;
• Licensed to practice law in Ontario and must be a member in good standing of the Law Society of Ontario;
• CIPP/C certification or equivalent (strongly preferred);
• Minimum 9 years of relevant work experience in privacy, law, regulation, or compliance, with at least 4 years of privacy experience;
• Superior knowledge and command of Canadian privacy and data governance laws;
• Extensive experience drafting privacy impact assessments or legal documents where review, assessment and comprehension of complex documentation is required;
• Excellent analytic skills and detail-oriented approach to issues and analyses;
• Excellent critical thinking skills, including ability to exercise discretion and good judgment consistent with industry best practices;
• Proven ability to communicate information and advice that is clear, practical, and actionable, both orally and in writing;
• Excellent interpersonal skills, with demonstrated experience successfully navigating and managing cross-functional projects, with ability to interface and influence effectively across all business functions;
• Demonstrated ability to work independently and resourcefully, including taking proactive action to identify issues and solve problems and adjusting to changing priorities as necessary, while maintaining cohesion and consistency with team members;
• Demonstrated aptitude and/or track record of managing and/or mentoring legal, privacy, regulation, and compliance professionals;
• Excellent project management, organizational, and time management skills;
• Sets and delivers high standards of personal work.

This is a full-time vacant opportunity at ICES Central. Successful candidate must reside within Ontario while working remotely and able to come into the office if required from time to time. There may be instances where in-person meetings are requested; however, ICES continues to support Flexible remote work arrangements anywhere in Ontario.

Security clearance may be required.

Interested candidates should submit their resume and cover letter detailing how their knowledge, skills and abilities match the scope of this position.

ICES is committed to ensuring equity in employment. Our goal is to attract, develop, and retain highly talented employees from diverse backgrounds allowing us to benefit from a wide variety of experiences and perspectives. ICES strongly encourages applications from candidates from equity-deserving communities including but not limited to First Nations, Métis, Inuit, Black and racialized, 2SLGBTQIA+, and persons with visible and non-visible disabilities.

ICES is committed to providing accessible employment practices, in compliance with the Accessibility for Ontarians with Disabilities Act, 2005 (AODA). Applicants are asked to make accommodation requests to ICES and we will make every effort to ensure that accommodation requests are met throughout the recruitment process.

We thank all applicants for their interest in working at ICES. Due to the volume of applications received, only applicants being considered for the position will be contacted for further discussions.