Global Privacy Counsel - New Technology and Cyber Security

Please Note: The deadline for applying is 23.59 the day before the job posting end date.

Job Title: Global Privacy Counsel – New Technology and Cyber Security

Location: 100VE

JOB PURPOSE

Reporting to the Chief Privacy Officer, who leads the Global Privacy Office. As the Global Privacy Counsel, you will be responsible for proactively supporting the business needs with privacy and data protection legal advice in relation to products, services, programmatic advertising, gen AI in marketing assets, emerging technology and transactions. You will ensure that Unilever respects the privacy of its consumers, customers, partners and employees, and complies with applicable laws and regulations, as well as its own vision and principles concerning privacy. Working closely with the Cyber Security Risk Management Team you will advise Business Groups, Business Units and functional teams on privacy and information security. You will provide privacy legal advice and training in connection with new technology, estate web management, consumer engagement, cross border data flows, data loss prevention, investigations, incident response and engagement with Regulators.

RESPONSIBILITIES

• Proactively support the business needs with strategic privacy and data protection advice in relation to products, services, programmatic advertising, estate web management, emerging technology and transactions.
• Advising the business on the lawful use of Gen AI in marketing assets, in line with our policy position.
• Advising on privacy risk assessments and our privacy and AI governance processes.
• Engaging with regulators on privacy related consultations or queries.
• Promoting awareness for consumer data privacy risks and building data protection expertise with business teams, managers and legal and compliance team members through both informal and formal training.
• Collaborating seamlessly with the extended consumer data privacy network, providing data protection and security-related legal advice to other internal stakeholders.
• Proactively advising on cross-border data flows within the company and to our business partners.
• Advising on data loss prevention, investigations and incident response.
• Embedding privacy by design principles and AI assurance into functional activities based our privacy Code policy and Privacy fundamentals.
• Working closely with the Cyber Security Risk Management Team (“CSRM”) and cross functional partners to embed privacy and security by design principles and processes across multiple jurisdictions.
• Supporting CSRM in reviewing and updating cyber security standards.
• Monitoring and responding to developments in data protection and information security (e.g. news, laws, regulations, important judgements, regulatory guidance).
• Helping to build the management’s response to significant business risks in line legal and regulatory requirements.
• Updating global policies and procedures for the managing of personal data incidents in accordance with regulatory guidance and in co-ordination with CSRM and other stakeholders.
• Providing data protection and data incident training and awareness programmes, particularly focusing on embedding across the business a culture of privacy and security by design.
• Working collaboratively as business partner to key stakeholders, functions and Business Groups and Business Units and Business Integrity to drive a culture of compliance and ethics throughout the business so that privacy principles are considered at the outset and then re-assessed for subsequent changes in processing of personal data.

LEADERSHIP ATTRIBUTES

• Ability to maintain a passion for high performance, with a Productivity and Growth Action Plan mindset to identify the need for change and not be daunted by leading strategic initiatives.
• Strong organisational and prioritisation skills.
• Must be able to quickly assimilate information, scoping out legal risks and provide pragmatic, commercial advice to the business.
• Excellent communication skills both written and oral: ability to communicate with global business partners in different time zones and with countries where English is often not the first language.
• Promote awareness for privacy risks and build data protection expertise with business teams, managers and legal and compliance team members through both informal and formal training.
• Collaborate seamlessly with the extended privacy network, providing data protection and security-related legal advice to other internal stakeholders.

ALL ABOUT YOU

• Law degree plus four years or more of post-qualification experience with demonstrated experience in the areas of privacy and data protection as well as emerging technology.
• Experience with international privacy and data protection regimes with an in-depth understanding of their implementation is strongly preferred, as is experience operating in a global corporate environment.
• Ability to communicate effectively and influence senior management and decision-making in the organisation.
• Practical, pragmatic business-oriented mindset.
• Privacy programme management experience.
• Solid understanding of existing and emerging technologies and platforms. Curiosity and willingness to learn about new technologies and the ability to assess risks and provide concise business-focused legal advice in relation to emerging technologies and trends.
• Experience supporting information and cyber security programmes including security by design, vulnerability management, incident response and strategy threats, as well as associated regulatory reporting requirements.
• Experience liaising with regulators.
• Experience developing control documents and governance frameworks as well as tools, templates, guidance, playbooks and resources to manage privacy, cyber and security risk.
• Fluency in English. Additional European language skills are considered a plus.

What we offer

Whilst the role is advertised on a full-time basis, we would be happy to discuss possible flexible working options and what this may look like for you. We strive to achieve a family-friendly and inclusive workplace and to, above all, create possibilities for all.

Diversity at Unilever is about inclusion, embracing differences, creating possibilities and growing together for better business performance. We embrace diversity in our workforce. This means giving full and fair consideration to all applicants and continuing development of all employees regardless of age, disability, gender reassignment, race, religion or belief, sex, sexual orientation, marriage and civil partnership, and pregnancy and maternity. We are also more than happy to provide reasonable adjustments during our application and interview process to enable you to be present your best self.

#J-18808-Ljbffr