Let’s build a healthier future, together! By combining our unique strengths, we are redefining healthcare through sustainable action and innovation. For a behind-the-scenes look, check out this video to see how we at Roche are making personalized health care a reality.
The mySugr GmbH was acquired by Roche in 2017 and our Vienna office is one of Roche's global sites. You will be located here, in the heart of Vienna, no matter if you work on a mySugr®, Accu-Chek®, navify® or any other Roche product or solution. You can read more about the history of mySugr & Roche here.
We are looking for a Data Privacy Expert to be our dedicated privacy champion. Your mission will be to guide us on all data protection matters, from handling data requests to running impact assessments. But this isn't a siloed role - you'll be a key player supporting our security team, helping us spot risks and strengthen our defenses. We need a proactive team player who is excited to build, innovate, and keep our user data safe.
Your upcoming mission:
Be our internal privacy champion: Drive the development, and maintenance of our data privacy framework, ensuring compliance with GDPR and other relevant privacy regulations.
Connect us to the bigger picture: Act as a link to our parent company's global privacy and security teams. You'll translate corporate strategy into what works for us, align on key initiatives, and ensure a smooth flow of information in both directions.
Translate legal into practical: Interpret complex privacy laws and translate them into actionable policies, procedures, and technical requirements
Manage data subject rights: Establish and manage processes for handling data subject access requests (DSARs) and other privacy-related inquiries.
Oversee vendor privacy: Evaluate and manage privacy risks associated with third-party vendors and data processors and conduct contract reviews
Foster a privacy-aware culture: Develop and deliver privacy training and awareness programs for all employees.
Stay ahead of the curve: Monitor changes in privacy laws, regulations, and best practices, advising the company on necessary adjustments.
Bridge the gap to Security: Team up with our IT and security crew to conduct risk assessments, review our security measures, and help manage our incident response plan.
Boost our Compliance Game: Contribute your privacy expertise to our compliance efforts and audits, especially for key standards like ISO 27001 (Information Security) and ISO 13485 (Medical Devices).
Essential skills for your mission:
Strong understanding of GDPR: In-depth knowledge of the General Data Protection Regulation (GDPR) and its practical application.
Experience in privacy frameworks: Proven experience in establishing and maintaining data privacy frameworks and controls within an organization.
Translational skills: Ability to bridge the gap between legal requirements and technical implementation, communicating effectively with both legal and technical teams.
A Security Mindset: You have a solid grasp of information security principles (like CIA triad, risk management) and feel comfortable talking tech with our engineers and IT team.
Excellent communication: Clear and concise written and verbal communication skills in English, with the ability to explain complex privacy concepts to non-experts.
Autonomy and initiative: Self-starter with the ability to work independently in a fast-paced, startup environment.
Bonus skills:
Experience in a startup as well as corporate and tech environment: Prior experience working in a dynamic, fast-paced startup or technology company.
Technical understanding: Basic understanding of cloud computing, software development lifecycles, and data architectures.
What to expect:
Ambitious and passionate people building meaningful products for a global audience
An innovative agile working environment allowing for collaboration with really smart people and knowledge sharing in cross-functional teams
Loads of benefits (brand new Apple hardware, fitness, public transport, lunch benefit, language classes, professional training budget, chance to join global conferences...)
Flexible working hours and home office policy, 5 weeks vacation
An amazing office with a rooftop terrace, fully stocked kitchen and amazing barista coffee machines in the middle of Vienna… oh, and did we mention the best team in the world!
In Austria, we have a legal obligation to disclose the minimum salary according to our collective agreement, which is gross EUR 3.843 - per month for this position. But! Rest assured, we offer amazing competitive compensation packages which take into consideration current market trends, therefore you can expect a higher offer that reflects your experience level.
Who we are and what we care about?
We are committed to providing a healthy, equal and inclusive working environment for our employees to bring true relief to the patient! We care about family friendly career paths, sustainability, a healthy lifestyle and the flexibility of a modern workplace. We maintain a culture of learning and sharing, as well as open and candid feedback. At every level, there are many opportunities to develop and grow - both professionally and personally.
As a healthcare pioneer committed to transforming the lives of billions of people around the globe, we push boundaries to redefine what is possible. We know that early, accurate diagnosis is essential to maintain health, prevent disease and help advance new, targeted treatments and potential cures for the world’s most serious health problems. We have a passion for innovation and a profound commitment to make a lasting impact on society by continuing to improve the standard of care for humankind. Our culture inspires us to create healthcare that is sustainable, efficient and financially viable. Healthcare that is built on people’s needs, strong data and clinical insights. Healthcare that saves lives.
Interested? Great. We’d like to hear from you! Just click that “Apply Now” button and send us your CV in English …. and anything else that you think might impress us.
Roche is an Equal Opportunity Employer.