Job Description

At Intuitive, we are united behind our mission: we believe that minimally invasive care is life-enhancing care. Through ingenuity and intelligent technology, we expand the potential of physicians to heal without constraints.

As a pioneer and market leader in robotic-assisted surgery, we strive to foster an inclusive and diverse team, committed to making a difference. For more than 25 years, we have worked with hospitals and care teams around the world to help solve some of healthcare's hardest challenges and advance what is possible.

Intuitive has been built by the efforts of great people from diverse backgrounds. We believe great ideas can come from anywhere. We strive to foster an inclusive culture built around diversity of thought and mutual respect. We lead with inclusion and empower our team members to do their best work as their most authentic selves.

Passionate people who want to make a difference drive our culture. Our team members are grounded in integrity, have a strong capacity to learn, the energy to get things done, and bring diverse, real world experiences to help us think in new ways. We actively invest in our team members to support their long-term growth so they can continue to advance our mission and achieve their highest potential.

Join a team committed to taking big leaps forward for a global community of healthcare professionals and their patients. Together, let's advance the world of minimally invasive care.

Primary Function of Position:

Privacy and data protection laws and regulations are evolving across the globe. The regulatory and

operational impact to businesses is increasing in complexity and presenting new compliance challenges.

Intuitive’s Privacy and Data Protection team helps develop and implement data privacy and protection

safeguards, controls, and regulatory requirements into our products, services and internal processes. The

team supports Intuitive’s mission by promoting transparent, thoughtful, and deliberate collection, use, and

dissemination of data in ethical, practical, and legally compliant ways.

The successful candidate will have an opportunity in the privacy program to make impact in a dynamic

and rapidly growing organization. This position primarily supports the APAC region and is based in Seoul, South Korea.

Role and Responsibilities:

• Collaborate closely with Data Privacy legal, compliance and privacy engineer colleagues, and

other stakeholders to support privacy compliance in an efficient and effective manner. Advice on

decisions to be taken, and paths to take to resolve areas of opportunity.

• Work closely with Intuitive’s functional and product development teams to identify data flows and

develop records of processing activities.

• Conduct privacy risk assessments and Data Protection Impact Assessments (DPIA) for

products, systems, and services. Assess privacy risks and recommend mitigating controls.

• Lead privacy projects, identify trends and leverage data to drive improvement across Intuitive.

• Automate internal review process and periodic assessments.

• Manage data subject rights requests.

• Establish continuous monitoring for effectively tracking and managing security and privacy

controls.

• Contribute to privacy control governance, policy and procedure, and technical security controls

supporting privacy objectives.

• Identify and execute upon opportunities to improve our ability to measure and report on privacy

risk management.

• Manage assigned data privacy operations activities, including the implementation and

monitoring of metrics to measure activities' health and success. Respond to escalations from

other team members.

• Proactively and independently analyze and manage risks. Make recommendations and escalate

appropriately.

• Develop and drive complex projects to completion. Ensure alignment with program and

organizational goals. Provide feedback and insights to drive continuous improvement for the

Privacy function.

• Stakeholder engagement: Build relationship and be able to influence internal stakeholders (e.g.

product development teams and business functions) to implement privacy in our products and

processes.

• Respond to privacy and data breaches and incidents in a timely and thorough manner.

• Prepare clear, detailed process documentation.

• Proactively propose, prepare and present presentations for Privacy Leadership, Legal, and

other business teams to represent the Privacy team.

Qualifications

Required Knowledge, Skills, and Experience:

• Bachelor’s degree in computer science, Law, Cyber Security, Engineering or related discipline,

or commensurate experience.

• 7+ years of privacy framework experience (PIPC, PIPA or equivalent).

• 7+ years of experience working in a privacy program, with hands-on experience on multiple

areas of privacy such as privacy risk assessments and risk mitigation, training, incident

response, monitoring and audits.

• 3+ years of project management experience.

• Able to identify pragmatic, risk-based privacy solutions that balance privacy compliance with

business needs.

• Expert level of knowledge on multiple areas of privacy, including legal requirements and internal

processes. Able to provide comprehensive privacy guidance independently. Appropriately

consult with other Privacy colleagues (e.g. region, process, legal) to ensure comprehensive

review of matters.

• Able to assess hardware and software features for their privacy implications; capable of

translating abstract product design concepts into actionable privacy requirements.

• Able to drive and execute projects and operational tasks efficiently.

• Self-starter, with close attention to detail.

• Consistently strive for continuous individual performance and support the team’s performance.

• Comfortable speaking in front of varied audiences to provide training focused on privacy

concepts.

• Able to convey clear, concise, and actionable instructions and messaging.

• Current CIPP, CIPM, CIPT, or other related certification.

Preferred Skills, and Experience

• Hands-on experience in developing a compliant privacy program and related processes.

• Capacity to motivate and influence stakeholders to achieve organizational goals and initiatives.

• Experience in complying with privacy regulations across Asia, e.g. PIPL (China), DPDPA (India)

etc.

• Familiarity with security and privacy standards such as SOC, ISO 27001, ISO 27018, HITRUST

etc.

• Experience operating in a highly regulated industry and international environment.

• Master’s degree in information security, Law, Cybersecurity or similar field of study

Additional Information

Intuitive는 고용 기회 균등 고용주입니다. 당사는 인종, 성별, 임신 여부, 성적 지향, 성 정체성, 출신 국가, 피부색, 연령, 종교, 국가 보훈 대상자, 장애 여부, 유전 정보 또는 연방, 주 또는 현지 관련 법률에 따라 보호받는 기타 모든 지위에 관계없이 자격을 갖춘 모든 지원자 및 직원에게 동등한 고용 기회를 제공하며 모든 유형의 차별과 괴롭힘을 금지합니다.

당사는 기회 균등법에 따라 범죄 및 유죄 판결 기록이 있는 고용 자격을 갖춘 지원자를 고려할 것입니다.