Job DescriptionData Privacy Sr. Analyst who will be responsible for providing leadership, independent oversight, guidance, and direction necessary to maintain ongoing compliance with Data Privacy and the protection of PII (personally identifiable information), PHI (protected health information) and other sensitive data elements related to Global Data Privacy regulations applicable to the company. This position is a key member of the Data Governance, Protection and Privacy team.
If you are selected as the Data Privacy Sr. Analyst, you will be responsible for day-to-day operations of the Data Privacy program, supporting privacy frameworks, risk assessments, data maps, as well as awareness around data privacy programs as applicable. Knowledge of data privacy governance principles combined with soft skills related to influence, presentations and general privacy awareness and training will be key for this role.
This position will be based in Houston, Texas.
Your responsibilities may include:
Technical Understanding
• Own and keep under constant review all the companys global data protection compliance arrangements to include updating policies and guidance, centralizing processes and putting in place robust, time-bound remedial plans where necessary.
• Develop and maintain relevant global internal data privacy policies and training.
• Work with Legal and HR (Human Resource) to ensure applicable Data Privacy laws and statutes are accounted for in the overall program development and maintenance. Serving as a subject matter expert and developing and implementing a robust compliance plan.
• Partner with all key business areas, in particular the IT (Information Technology) Security team, Business Leaders, HR and Legal, to ensure data privacy issues are considered at the outset of new projects, products and initiatives
• Act as a liaison to the companys Information Governance Committee in relation to global data privacy issues.
• Help manage the data privacy network across all global offices.
• Handle enquiries and issues in conjunction with HR and Legal relating to data privacy practices, withdrawal of consent, the right to be forgotten, and related rights.
• Monitor the industry landscape to keep visibility on evolutions, trends, and best practices related to Data Privacy.
• Ensure that systematic compliance audits are undertaken and that their findings are reported and acted upon.
• The use of One Trust that manages our data quality, usability, and integrity.
Basic/Required:
• 5-7+ years of experience of Data Privacy experience
• 5-7+ years of experience with Data Privacy Program development
• Demonstrate deep knowledge of data privacy, data handling and data classification.
• Demonstrate experience of managing data privacy issues in a global organization.
• Expertise in global and European data protection laws and practices and an in-depth understanding of: GDPR (General Data Protection Regulation), GDPR-UK, Norway Privacy law, US state privacy laws, China PIPL, Australia Data Privacy, Malaysia PDPA, Singapore PDPA, Qatar Data Privacy Law etc.
• Capable of conducting data privacy compliance reviews and assessments working locally and with regional contacts; Support any data privacy audits internal or external
• Have the ability to develop awareness and communications at all levels within the company.
• Strong attention to detail
Preferred:
• Bachelor's degree or higher in Business Admin/Mgmt., Computer Science, Engineering, Information Technology, Management Information Systems, other related business field, other related technical field, or foreign equivalent
• 5-7+ years of experience in Data Privacy, Data Protection and Data Governance
• Basic knowledge in data privacy procedures, standard methodologies, and implementation of privacy programs
• An excellent teammate with the ability to get results quickly and efficiently, both internally and with outside vendors
• Ability to rapidly develop a conceptual understanding of environments that are new to them and provide insight into the analysis of related events
• Ability to resolve complex issues related to privacy
• Advanced proficiency with Microsoft O365 applications: Excel, Outlook, PowerPoint, SharePoint, Teams and Word
• Takes ownership of actions and follows through on commitments by holding others accountable and standing up for what's right
• Delivers positive results through realistic planning to accomplish goals
• Builds effective solutions based on available information and makes timely decisions that are safe and ethical
• Understanding of common privacy industry standards and regulations (e.g., GDPR, CCPA (California Consumer Privacy Act), LGPD, PIPEDA, HIPAA (Health Insurance Portability & Accountability) / HITECH, COPPA, U.S. State Breach Disclosure Laws, CANSPAM, GLBA,) and industry frameworks (e.g., NIST (National Institute of Standards and Technology) (National Institute of Standards and Technology), GAPP, ISO);
• Privacy/ Auditing Certifications - CIA, CISA (Cybersecurity and Infrastructure Security Agency), CIPP - A/US/E/ C, CIPT, CISSP (Certified Information Systems Security Professional), etc.
• Understanding of OneTrust Privacy Modules