Job Description
Description:
Seeking a Sr. Data Security Strategist who will be responsible for studying the uses of PII(personal identifiable info) data, work with the Sr. Data Privacy Analyst to understand the lifecycle of data, identify the gaps in the controls then determine how to secure it. This position will also be involved in Data Privacy and Security Risk Management program to assist with identifying Data Privacy and Security Risks then evaluating and designing People, Process and Technology Controls, Countermeasures or Compensating Controls to ensure PII data is secure.
The ideal person will have a technical background within security to understand how things should be fixed and experience on how to effectively deploy the changes in an environment.
Core Responsibilities Privacy and Risk Management Strategic Planning • Conduct gap analysis and assessment of privacy and risk Management programs • Develop a strategic roadmap to evolve the privacy and risk management programs
Privacy Governance and Reporting • Develop continuous improvements to privacy governance • Enforce Policies and Procedures • Review Policies and Procedures quarterly to ensure accuracy • Provide regular program status reports and metrics to management • Fulfill internal and external program audits or assessments • Assist in the development and delivery of privacy training and awareness • Participate in external data privacy-related organizations to share and collaborate on best practices
Risk Management • Planning, designing and implementing an overall risk management process for privacy. • Conduct quarterly privacy risk assessments to ensure all risks to protected customer information are documented. • Prepare quarterly “Top 5 Risks” report for the Confidentiality Committee • Develop continuous improvements to the Risk Management Program
Privacy Impact Assessments • Conduct privacy impact assessments to assess and mitigate risks related to processing, transmission and storage of PII data • Determine specific privacy-related requirements and potential vulnerabilities. • Participate in new business initiatives and product development activities to identify and escalate privacy considerations. • Manage the privacy impact assessment process • Conduct regular privacy impact assessments to ensure that privacy policies are being adhered to
Privacy Compliance Monitoring • Ensure that business units, IT and vendors are complying with privacy program and meeting privacy policy requirements and address privacy concerns. • Collaborate with and assist business units and IT to develop corrective action plans for identified privacy compliance issues. • Continuously monitor the status and effectiveness of privacy controls • Ensure privacy-related key risk indicators are effectively monitored to prevent an unacceptable impact on business objectives and reputation. • Lead and coordinate business group privacy activities, which include implementation and adherence to policies in data privacy and security • Assist with implementing privacy and data protection requirements, including Privacy by Design architecture
Personally Identifiable Information (PII) Inventory and Usage • Support the creation of an inventory that documents how personal data is collected, shared and used. • Continually update and re-evaluate the extent to which customer and employee information is collected and shared internally and externally. • Monitor the data request and usage processes matters for personal data • Maintain registry of data stores and processes that affect personal information from associates Qualifications
Professional Skills Requirements
Company Description
TenTek has been in business since 1989, and is recognized as a leading staffing provider of tech professionals to a growing client base.