The Privacy and Security Analyst will be responsible for ongoing activities related to the development, implementation, maintenance of, and adherence to the companyrsquos policies and procedures regarding the privacy, governance and protecting company-related information. Responsibilities include Program Governance Partner with appropriate stakeholders on the implementation, maintenance and adherence to the companyrsquos privacy and governance strategy. Conduct research and analyze compliance trends and industry benchmarking to prepare for and monitor upstream risks and issues. Maintain subject matter expertise on changes to the regulatory and compliance landscape. Proactively collaborate with the business and functional teams to evaluate impact on any new or changing regulation, assessing the risks and documenting possible remediation. Maintain knowledge of privacy and security practices across the company in order to better understand and isolate the risk of exposure or liabilities, assist in the development of realistic preventive measures, and assist in the response to information security incidents. Interface with HR and Legal to ensure communication and understanding of privacy and governance requirements. Also assisting in the evaluation of issue classifications and action plans. Operations Ensure that business units, functional teams and third parties adhere to company's data and privacy governance programs, meet data-policy requirements and address data-compliance concerns by facilitating and mediating communication and understanding of these topics Participate in project meetings, conduct Privacy Impact Assessments, provide guidance of risks and recommended remediation. Work in a collaborative manner to offer support and assistance in compliance-related matters to ensure an open, adequate and effective risk management culture. Review system-related information security plans throughout the company to ensure alignment between security and privacy practices. Assist with data breach incident responses, any required breach notifications and any required remediation. Assist with periodic information privacy risk assessments and ongoing compliance monitoring activities. Training Facilitate and promote activities to foster information privacy and data governance awareness within the organization and related entities. Develop privacy materials and conduct privacy training. Qualifications Bachelors degree in business administration, law, ITSecurity related discipline is required Five years of experience in privacy, data protection, security, risk management or compliance Ability to understand business process flows and to provide recommendations for operationalizing compliance requirements Possess an understanding of architectural direction for complex data management efforts Strong written and verbal communication skills, as well as the ability to work well with a diverse client base Knowledge of the data management aspects of the product development life cycle, data handling and asset classification Privacy Certification is preferred
Associated topics: attack, forensic, identity, identity access management, iam, malicious, phish, security, security engineer, threat
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.