This job posting isn't available in all website languages
WD30067179078 Requisition #
Share this Job
What you will do

The Chief Privacy and Records Management Officer is responsible for Johnson Controls’ overall Global Privacy Program, including overseeing and implementing all aspects of the program, monitoring for continuous improvement, reporting progress to senior leadership, developing and implementing remediation plans, as well as managing the enterprise-wide Records Management program. The Chief Privacy and Records Management Officer is responsible for advising senior management, including C-suite executives and business-segment leaders globally, on laws and regulations governing privacy and stored data, ensuring that Johnson Controls complies with applicable laws, meaningfully addresses risks, and timely remediates issues.


As the enterprise-wide leader of the Global Privacy Program, the Chief Privacy and Records Management Officer is principally responsible for managing Johnson Controls’ Binding Corporate Rules and coordinating as necessary with regulatory authorities globally.  The Chief Privacy and Records Management Officer will report directly to the Vice President & Chief Ethics and Compliance Officer.

How you will do it
  • Directing and overseeing Johnson Controls’ Global Privacy Program, including consistently implementing all aspects of the privacy and data security program across the enterprise in coordination with senior management to ensure the company has and maintains appropriate privacy and confidentiality consent, authorization forms, and information notices—among other requirements—as well as materials reflecting current company and legal requirements.
  • Developing and maintaining systems, tools, and processes to ensure compliance with privacy policies and standards, such as data mapping and DPIAs, and assist business units to develop and efficiently utilize tools and best practices to ensure ongoing compliance.
  • Liaising with global regulators and accrediting bodies responsible for enforcing privacy and data security laws, regulations, and accreditations, and, as required, coordinating and managing Johnson Controls’ response to government inquiries respecting the Global Privacy Program or related issues.
  • Collaborating with functional and business teams to enhance and mature existing programs consistent with established frameworks , including:
    • Information Security, concerning cyber-privacy and security policies and procedures;
    • Senior Management, concerning development of strategic plans for the collection, use, and sharing of information to maximize value while complying with applicable privacy regulations;
    • Government Relations, concerning how best to monitor legal and regulatory developments to advise business and executive leadership regarding strategic engagement on pertinent legislative issues;
    • Product Development and Engineering, concerning management of enterprise-wide processes and tools to develop new products and services consistent with company privacy policies and legal obligations;
    • Procurement, Sales and the Law Department, concerning best practices for third-party engagements and contractual terms.
  • Developing effective privacy training materials and other communications to increase employee understanding of Johnson Controls’ privacy policies, best practices for processing personal data, company procedures, and legal obligations.
  • Maintaining a current and thorough working knowledge of applicable global privacy laws and standards, and monitor advancements in information privacy technologies. Periodically revise the privacy program in light of changes in laws, regulatory or company policy, and technological advancements.
  • Overseeing confidential and/or privileged privacy investigations, and responding quickly and appropriately to potential instances of inappropriate use or disclosure of personal information by employees or business partners. 

What we look for
  • 10 years or more of related experience with a minimum of 5 years active management of privacy programs, performing regulatory, compliance and/or audit functions in a corporate environment.
  • J.D. degree required.
  • CIPP or CIPP/E (Certified Information Privacy Professional/Europe) and/or CIPM (Certified Information Privacy Manager) preferred.
  • Fluent in English, with exceptional written and oral communication skills. Additional languages a plus.
  • Proven ability to assess risk strategically and help clients find solutions that enable them to mitigate risk while achieving their business strategies.
  • Deep experience managing high-stakes issues in a professional, assertive, and proactive manner.
  • Advanced program and project management skills, including the advanced competence in managing several global projects simultaneously and effectively.
  • Strong organizational skills and ability to manage multiple, cross-functional projects; able to work independently and as part of a team in a fast-paced environment
  • Stellar and unwaveringly sound judgment, and agility to manage multiple wide-ranging matters, often competing deadlines, and new areas of expertise as business needs change.

Johnson Controls is a global diversified technology and multi industrial leader, serving a wide range of customers in more than 150 countries. Among our core values we rank Integrity First, and our commitment to sustainability dates back to our roots in 1885 with the invention of the first electric room thermostat. We are committed to helping our customers win and creating greater value for all of our stakeholders through strategic focus on our buildings and energy growth platforms. 

Previous Job Searches

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings

United States of America, Florida, Boca Raton

📁 Legal

Requisition #: WD30072594154

United States of America, Wisconsin, Milwaukee

📁 Legal

Requisition #: WD30069952113

View All Jobs