Director of Global Data Privacy

We are excited to add a Director of Global Data Privacy to our team. We have one open position and are welcoming candidates based in the United States or Europe. While Indianapolis, IN is the preferred U.S. location, there is consideration for remote work for non‑Indiana residents and a fully remote arrangement for Europe‑based candidates.

The Director of Global Data Privacy plays a critical enterprise role in enabling trust, compliance, and responsible data use at scale. This leader ensures the organization meets complex global regulatory obligations while strengthening confidence among customers, employees, and partners through consistent, defensible privacy practices. By proactively identifying and mitigating privacy risk, embedding privacy into AI, analytics, and digital initiatives, and driving operational excellence through automation and standardization, the role reduces enterprise risk and enables confident innovation. Serving as a strategic advisor to senior leadership, the Director of Global Data Privacy provides clear insights, metrics, and risk-based guidance to inform executive decision-making while fostering a strong, privacy-first culture grounded in data ethics and accountability.

In this role, you will make an impact in the following ways: 

• Lead the implementation, governance, and continuous improvement of the global data privacy program.
• Drive end-to-end program delivery, including strategy execution, process design, tooling adoption, and performance management.
• Identify and implement opportunities for automation, efficiency, and operational scale across privacy processes.
• Establish KPIs, metrics, and program maturity measures to track effectiveness and drive continuous improvement.
• Interpret and operationalize global privacy regulations (e.g., GDPR, CCPA/CPRA and other applicable laws) through policies, governance frameworks, and operational controls.
• Lead privacy risk assessments, DPIAs, and control evaluations to proactively identify and mitigate enterprise risk.
• Support regulatory inquiries, audits, and internal compliance reviews with timely, accurate responses.
• Escalate material privacy risks and provide clear, actionable mitigation strategies to senior leadership.
• Oversee and continuously enhance core privacy operations, including: 
  • Data inventories, data mapping, and records of processing activities
  • DSAR and data subject rights intake, fulfillment, and reporting
  • Privacy incident identification, tracking, escalation, and remediation
  • Third-party data protection agreements and contract governance
• Drive optimization and effective use of privacy platforms and tooling (e.g., OneTrust) to improve visibility, consistency, and execution.
• Act as a strategic advisor to senior stakeholders across IT, cybersecurity, legal, HR, and business leadership.
• Embed privacy-by-design and privacy-by-default principles into systems, products, and enterprise data initiatives.
• Provide guidance on complex and emerging data use cases, including AI, advanced analytics, and cross-border data transfers.
• Influence executive decision-making through pragmatic, risk-based guidance that balances compliance with business objectives.
• Provide regular reporting and insights to the Sr. Director on program performance, risk trends, and regulatory developments.
• Provide leadership and direction to regional or functional privacy leads within a global, matrixed organization.
• Lead the development and delivery of targeted privacy training and awareness programs aligned to role, risk, and geography.
• Promote a privacy-first, risk-aware culture that reinforces accountability, transparency, and ethical data use.

Cummins is an equal opportunity employer. Our policy is to provide equal employment opportunities to all qualified persons without regard to race, sex, color, disability, national origin, age, religion, union affiliation, sexual orientation, veteran status, citizenship, gender identity, or other status protected by law.