Digital Ethics & Data Privacy Officer, Oncology Business Unit

Role Summary

Digital Ethics & Data Privacy Officer, Oncology Business Unit (Director level) supporting the Oncology Business Unit (OBU) and reporting to the Head of Ethics & Compliance, OBU. Responsible for ethical and compliant use of data and emerging technologies, leading privacy and digital ethics initiatives, and guiding regulatory response across the business.

Responsibilities

• Business partner: Acts as the DE&C business partner to OBU DD&T and Insights & Analytics teams, serving as an ethics advisor on the responsible use of digital technology and data.
• Guidance & Contracting: Provide subject matter expertise across OBU on internal data acquisition, data management and commercial reporting to ensure ethical implementation and compliance with privacy policies and regulations; identify opportunities for DE&C insights.
• Compliance & Monitoring: Develop and deploy guidance, metrics and tools to monitor compliance with emerging technologies, privacy regulations, and internal standards in coordination with Global DE&C.
• Written Standards: Co-create and implement tools/resources to enable ethics and privacy by design across data acquisition, management/reporting, access, and use of ML/AI and other technologies.
• Risk Assessment: Evaluate and advise on digital ethics and privacy risks; support Privacy Impact Assessments and remedial steps.
• Subject Requests: Support data subject requests and maintain compliance documentation.
• Training: Disseminate and deliver digital ethics and data privacy training at US-OBU and global OBU levels.
• Vendor Due Diligence: Conduct ethics & compliance vendor due diligence for US-OBU vendors and assist with privacy issues identified in relation to OBU vendors.
• Regulatory Changes/Engagement: Analyze impact of new rules affecting US market/USOBU; support regulator inspections related to digital and data privacy.
• Privacy Incidents: Investigate privacy incidents, reporting obligations and remediation efforts.
• Team Representation: Represent OBU in networks and committees to maintain expertise and benchmarking.

Qualifications

• Bachelor's Degree required; advanced degree in digital systems, data, law, or related field preferred.
• Minimum 8 years in pharmaceutical or highly regulated industry with experience in Ethics & Compliance, Legal, or related functions.
• Privacy certification(s) such as IAPP-CIPM/CIPT/CIPE or equivalent preferred.
• Proven track record of project and process development, implementation, and management.
• Strong analytical, organizational, and prioritization skills; collaborative and interpersonal abilities.
• High ethical standards, impartiality, and ability to report non-compliance; able to influence without authority in a matrixed organization.
• Leadership capabilities; ability to interact with senior leaders and regulators.
• Strong communication skills; ability to make risk-based decisions with integrity and autonomy.
• Curiosity, learning agility, and interest in innovative approaches; focus on privacy, compliance, and process improvement.
• Operations, data analytics, or technical expertise to design and implement privacy/compliance processes and controls.
• Experience with Agentic AI or related technologies and risk review activities; ability to assess ABAC risk with AI.

Skills

• Ethics & Compliance leadership
• Privacy requirements and regulatory knowledge
• Data governance, data management, and data ethics
• Cross-functional collaboration and stakeholder management
• Risk assessment and incident response
• Training and knowledge dissemination
• Vendor due diligence and regulatory engagement