Data Protection Officer

Overview

An international life sciences organization is seeking an experienced Data Protection Officer (DPO) Subject Matter Expert to support a global Cyber Security and Data Protection as a Service (DPOaaS) engagement.

The role will focus on ensuring data protection compliance across clinical development and pharmacovigilance operations , supporting a multi-regional regulatory landscape and working alongside an established cyber security delivery team.

The successful candidate will bring deep experience in global data protection frameworks within the life sciences sector , particularly relating to clinical trial data, patient safety data, and pharmacovigilance systems .

Key Responsibilities

• Provide Data Protection Officer (DPO) expertise across global life sciences operations.
• Ensure compliance with international data protection and privacy regulations across multiple jurisdictions.
• Advise on data governance and privacy controls relating to clinical trial data, patient records, and pharmacovigilance reporting.
• Support Data Protection Impact Assessments (DPIAs) and privacy risk assessments for clinical and safety systems.
• Work closely with cyber security teams to ensure privacy-by-design and privacy-by-default principles are embedded in security frameworks.
• Provide regulatory guidance for cross-border data transfers and international data handling.
• Support the development and review of data protection policies, procedures, and governance frameworks .
• Act as an SME for privacy considerations in GxP regulated environments .
• Provide guidance to global stakeholders including legal, compliance, IT security, and clinical operations teams .

Required Experience

• Extensive experience acting as a Data Protection Officer or Data Privacy SME in a global life sciences or pharmaceutical environment .
• Strong expertise in clinical research data protection and pharmacovigilance data privacy requirements .
• Deep knowledge of global privacy regulations , including:
• GDPR and UK GDPR
• International cross-border data transfer frameworks
• Regional privacy regulations across NAM, EU, and APAC
• Experience working within GxP regulated environments .
• Proven experience supporting global privacy governance frameworks .
• Ability to work with cyber security and risk teams to integrate privacy requirements into security programs.

Preferred Qualifications

• Certifications such as CIPP/E, CIPM, CIPT , or equivalent privacy qualifications.
• Experience delivering DPO-as-a-Service (DPOaaS) or advisory services.
• Experience supporting clinical systems, safety databases, or pharmacovigilance platforms .
• Experience operating across multi-region regulatory environments .