Sr. Privacy and Data Protection Engineer (CRM), Mounds View, MN

We anticipate the application window for this opening will close on - 30 Apr 2026 At Medtronic you can begin a life-long career of exploration and innovation, while helping champion healthcare access and equity for all. You’ll lead with purpose, breaking down barriers to innovation in a more connected, compassionate world. A Day in the Life The Cardiac Rhythm Management Group brings all of our cardiac businesses together into one cross-functional, collaborative operating unit to employ the full breadth of our talent, technologies, products, services, and solutions to address the needs of customers and patients across the globe. Cardiac Rhythm Management offers devices and therapies to treat abnormal heart rhythms, as well as cardiac diagnostic and monitoring solutions. Be on the frontlines of the emerging area of medical device data protection and privacy as an integral member and technical leader within a team responsible for creating, deploying, and monitoring cybersecurity and privacy solutions for Medtronic’s medical devices and supporting IT infrastructure. Work directly with R&D teams to ensure all relevant data protection and privacy risks are identified and evaluated, and appropriate and well-balanced solutions are implemented. Develop project privacy management deliverables for regulatory bodies to comply with standards / guidance documents, and successfully communicate data protection policies, processes and solutions to customers, regulatory bodies, and other stakeholders. Responsibilities may include the following and other duties may be assigned. Lead and execute product data privacy activities, including data protection impact assessments (DPIAs) and implementation of mitigation strategies. Provide product privacy consultations and develop product-specific privacy policies and procedures. Guide products through the Privacy by Design process in partnership with R&D teams; define and recommend appropriate privacy controls at the product and system level. Lead and support product-specific data privacy investigations, including corrective actions, remediation, and risk mitigation efforts. Manage privacy-related deliverables for regulatory bodies, ensuring compliance with applicable laws, standards, and guidance. Support responses to customer privacy and security inquiries in collaboration with cross-functional teams. Partner with regional business and legal stakeholders to provide guidance on product-specific privacy requirements. Promote privacy awareness and drive compliance through training, consultation, and ongoing engagement. Perform additional duties as assigned. Must Have: Minimum Requirements- To be considered for this role, please ensure the minimum requirements are evident in your applicant profile: Requires a Baccalaureate degree and minimum of 4 years of relevant experience OR Master's degree with a minimum of 2 years relevant experience OR PhD with 0 years relevant experience Nice to Have: CIPP or equivalent certification, or comparable experience/education in privacy and compliance 2+ years of experience in privacy compliance or related roles Strong decision-making skills, with the ability to assess trade-offs and recommend practical, risk-based solutions High attention to detail and accuracy in handling complex information Excellent written and verbal communication skills; able to translate complex technical concepts into clear, actionable guidance Proven ability to influence and drive behavioral change across stakeholders Ability to communicate privacy risks effectively and support balanced, business-aligned decision-making Strong business acumen with a commitment to delivering timely, high-quality support Excellent organizational and prioritization skills; able to break down complex work into manageable tasks Experience managing privacy and security incidents Solid understanding of data protection practices, risk management, cybersecurity principles, and incident response Knowledge of global privacy laws and regulations, including HIPAA and GDPR Strong relationship-building skills with the ability to collaborate across diverse teams and stakeholders Demonstrated leadership and teamwork capabilities Ability to develop creative, compliant solutions to complex challenges Experience working with customers and external stakeholders on privacy and data protection matters Strong analytical and problem-solving skills Experience in healthcare or other highly regulated industries preferred Background in cybersecurity, information security, or IT preferred Experience with contracts and legal interpretation preferred About Medtronic Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology, therapies and services can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than yesterday. It is what makes this an exciting and rewarding place to be. We want to accelerate and advance our abi