The formal title for this position is Senior Analyst, Data Privacy. To be considered, all candidates must submit a formal application here: https://sgu.csod.com/ux/ats/careersite/7/home/requisition/1378?c=sgu
The Senior Analyst, Data Privacy reporting to the Senior Manager, Compliance & Risk, will support strategic priorities relating to compliance with domestic and international privacy regulations. The Senior Analyst will have subject matter expertise in policy and process management, risk management, breach and incident management, metrics and reporting, and related privacy requirements. This role will require handling of inquiries and complaints, incident management, identifying areas of non-compliance, privacy training and education, advising across compliance functions such as Information Security, Information Technology, and Legal.
Essential Functions
- Work closely with technical and non-technical stakeholders across business, marketing, legal and compliance teams.
- Ensure policies, process, data process flows, retention schedules and other documentation are up to date.
- Ensuring appropriate categorization of data and aligning required controls with data processing purposes and data sensitivity.
- Perform periodic gap analysis, identify risks, and work with key stakeholders to ensure actions are taken to close identified compliance gaps.
- Collaborate with Legal to ensure that appropriate data protection privacy language is in third party contracts.
- Maintaining and updating Breach Response Plan, Processes, and Notification.Managing any data breaches.
- Act as a subject matter expert and work with various teams across the company on the technical implementation of privacy compliance around data mapping, consent and notification, anonymization standards, conducting data protection impact and transfer assessments, as well as supporting other organizational projects to ensure privacy compliance.
- Organize and conduct periodic training for staff.Ensure training materials are updated to reflect current legal and regulatory requirements. Stay up to date and disseminate information on current and new trends in data privacy.
- Maintaining and presenting metrics on data privacy activities.
- Other duties and projects as assigned.
Essential Knowledge, Skills & Abilities
- Track record of project management and privacy compliance program ownership and driving risk management activities across cross-functional teams and business functions at a large, complex organization.
- Strong understanding of global privacy landscape & laws and how this applies in technology, advertising, and online businesses.
- Excellent organizational skills, client-service oriented, and able to handle multiple requests with differing priorities and stakeholders.
- Team player with ability to operate independently, react with appropriate urgency to situations and events that require a quick response or turnaround, have great judgment in ambiguous situations, and take effective action without having to know the total picture.
- Experience providing user support and advice, analyzing data, working in cross-functional departments, facilitating meetings, and delivering presentations.
- MS Word, PowerPoint, and Excel skills.
- Strong written and verbal communication skills and great attention to detail.
- Experience operationalizing and/or managing privacy requirements.
- Knowledge of compliance management standards, tools, methodologies, and best practices. Experience with OneTrust a plus.
- Knowledge of information technology or information security.
- Critical thinker with strong analytical skills.
Qualifications
- Minimum 1-3 years of privacy/data protection experience required.
- Minimum four-year Bachelor’s degree required preferably in a related field of study required.
- Industry recognized privacy certification such as Certified Information Privacy Professional, Certified Information Privacy Technologist (CIPP or CIPT), Certified Information Privacy Manager (CIPM), Certified Information Systems Auditor (CISA), Certified in Governance of Enterprise IT (CGEIT) preferred.
Work Environment/Physical Demands
- The ability to maintain good concentration while dealing with interruptions.
Hours and Travel
- A typical work week is 37.5 hours Monday through Friday 9am to 5pm.
- Location: Remote.
- Ability to work evening hours and occasional weekends as needed.
- Travel as needed.
Job Type: Full-time
Pay: $68,000.00 - $80,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Employee assistance program
- Employee discount
- Flexible spending account
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Vision insurance
Compensation package:
Schedule:
Work Location: Remote