Senior Privacy Officer

Remote job

Applications have closed

Numinus

We’re revolutionizing mental health care with evidence-based therapies, psychedelics, training, & clinical trials. Discover how we help people heal.

View company page

We value those qualified applicants with lived experience as racialized people, Indigenous people, those who have experienced homelessness, mental illness, and who have diverse abilities, as well as people of all sexual orientations, women and trans people.

About Us:

Numinus Wellness (TSX: NUMI) helps people to heal and be well through the development and delivery of innovative mental health care and access to safe, evidence-based psychedelic-assisted therapies. The Numinus model - including psychedelic production, research, and clinic care - is at the forefront of a transformation aimed at healing rather than managing symptoms for depression, anxiety, trauma, pain and substance use. At Numinus, we are leading the integration of psychedelic-assisted therapies into mainstream clinical practice and building the foundation for a healthier society.

Our North Star

Be the most trusted brand in the psychedelic space.

Our Mission

We are bringing transformative healing to communities through innovative therapies backed by science and scalable operations.

Our Vision

A world where everyone feels connected and whole.

Our Values

  • Be in service to self and others
  • Build something that captures our collective ideals
  • Be dedicated to the art and the science
  • Have courage to do the right thing
  • Be committed to doing our part in the process of Truth and Reconciliation with Indigenous Peoples

Job Summary:

The Senior Privacy Officer will be responsible for acting as advisor and subject matter expert for privacy, data governance, and anti-spam (CASL) matters. This position will be an integral part of our governance team and will carry out key functions related to the protection of personal information and personal health information at Numinus.

Location: Remote (Anywhere in Canada)

Job Type: Full Time, Permanent 

Requirements

WHAT YOU’LL DO

  • Provide advice, subject matter expertise, and supportive leadership related to privacy and legislative compliance across the organization’s service delivery divisions: mental health Clinics, clinical research, training and digital solutions.
  • Advise business teams and stakeholders on organizational projects, strategic initiatives and the implementation of privacy-compliant operational systems, processes, and practices.
  • Conduct vendor assessments and privacy impact assessments, identifying risks and recommending appropriate mitigations.
  • Investigate and respond to privacy incidents and complaints, ensuring regulatory requirements are met.
  • Contribute to the organization’s privacy program through the development, review and implementation of policies, processes and guidelines, education and awareness initiatives and compliance activities.
  • Promote privacy awareness and best practices within the organization by building collaborative work relationships, providing formal training to employees and through other awareness activities.
  • Prepare privacy communications and work collaboratively with Corporate Communications to maintain privacy-related information on internal/external communication channels.
  • Proactively monitor emerging privacy best practices, trends, and changes in the regulatory environment, assess impact to the organization and develop solutions to mitigate risk.
  • Act as the designated privacy officer for Numinus and its affiliates.
  • Act as a resource for those responsible for the privacy function within Numinus-managed clinics.
  • Perform other related duties as required.


WHO YOU ARE

Position Requirements:


  • Minimum of 5 years of experience in a privacy function.
  • Industry recognized privacy designation such as Certified Information Privacy Professional (CIPP/C), Canadian Institute of Access and Privacy Professionals (CIAPP) or Certified Information Privacy Manager (CIPM).
  • Completion of a degree in a relevant discipline such as law, technology, computer science, information management, business is an asset.
  • Strong working knowledge of privacy principles and up to date knowledge and experience interpreting Canadian and international privacy legislation, guidance, and regulatory decisions, including PIPEDA, PHIPA, PIPA and Bill 64.
  • Familiarity with US and European privacy and health information legislation (e.g., HIPAA, GDPR) is preferred.
  • Experience providing advice and recommendations on privacy-related matters, particularly with regards to personal health information in a medical clinic and clinical research setting and regarding corporate privacy training, policies and program reporting.
  • Experience advising on privacy by design as it relates to development of software, systems and programs and working in a collaborative, multi-disciplinary team.
  • Understanding of IT and information management systems and practices to protect data during processing activities.
  • Experience conducting privacy impact assessments on a range of operational projects.
  • Experience responding to, and investigating, privacy incidents and complaints.
  • Must be able to establish rapport with stakeholders, including clinicians and information technology teams, and gain their trust.
  • Experience working in start-ups and hyper-growth / quickly changing environments is an asset.
  • Ability to flourish with minimal guidance, be proactive, and handle uncertainty and ambiguity.


Knowledge, Skills and Abilities:

  • Self-starter
  • Strong technical skills
  • Strong communication and listening 
  • Problem-solving 
  • Results-driven
  • Detail-oriented  
  • Strong organization and time management skills
  • Ability to prioritize assignments & meet deadlines across multiple projects
  • Adaptable  
  • Relationship building  
  • Decisiveness 

At Numinus, we are committed to fostering a diverse, inclusive, and accessible work environment. We welcome and celebrate differences because we believe a multitude of perspectives fosters innovation and will help us achieve our ultimate purpose of delivering the highest quality outcomes to the people we serve. Our culture is one of belonging in which each person is accepted and valued for their individuality. As such, if you require any accommodation during the recruitment process, please let us know so we can work with you to meet your needs.


We thank all of those who take the time to apply; however, only those short-listed will be contacted. Please note we are only able to consider applicants who possess valid Canadian work authorization.

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: C CIPP Compliance Computer Science GDPR Governance HIPAA Privacy

Perks/benefits: Career development Health care Startup environment Team events Wellness

Region: Remote/Anywhere
Job stats:  39  2  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.