Information Security Analyst jobs in United States

Job Description:

Data Protection Governance & Compliance:

• Support in development and implementation of data protection policies and frameworks in compliance with applicable data privacy laws.

• Ensure the organization's data processing activities align with legal, regulatory, and contractual obligations.

• Act as the primary point of contact for regulatory authorities and respond to inquiries or audits.

• Monitor and assess risks related to data protection and advise senior leadership on mitigating measures.

Risk Management & Data Security:

• Conduct Data Protection Impact Assessments (DPIA) and oversee risk mitigation strategies.

• Collaborate with IT and security teams to implement cybersecurity measures protecting personal and sensitive data.

• Lead periodic audits and assessments to identify vulnerabilities and ensure compliance with security standards.

Training, Awareness & Advisory:

• Design and deliver training programs to educate employees on data privacy best practices and legal obligations.

• Provide guidance to internal teams on privacy-by-design principles in new projects, products, and technologies.

• Serve as an advisor to the leadership team on emerging data protection trends, risks, and regulatory changes.

Stakeholder & Vendor Management:

• Oversee data processing agreements with third-party vendors to ensure compliance with data protection regulations.

• Work with business units, legal, IT, and HR teams to embed privacy requirements into business operations.

• Engage with external regulators, auditors, and legal experts to ensure proactive compliance.

Team Management & Succession Planning:

• Ensure the professional development of the team and provide necessary training.

• Create and maintain a robust talent pipeline to ensure succession planning (1:2 ratio).

Environment, Social & Governance:

• Oversee corporate governance within the assigned region, ensuring alignment with organizational principles, policies, and regulations.

• Promote judicious use of natural resources and adhere to the organization's environment, health, and safety policies, objectives, and guidelines.

• Drive the organization's sustainability initiatives, working towards achieving established targets.

Anti Bribery Management Systems (ABMS):

• Follow the ABMS roles and responsibilities details as prescribed on the ABMS manual.

a. Understanding of ethical standards and the importance of integrity in business practices.

b. Ability to identify and evaluate risks related to bribery in various business contexts. For more detailed explanation, follow the ABMS manual

Education:

• Law degree with data protection and privacy certification, such as Certified Information Privacy Professional, Certified Information Privacy Technologist.

Experience:

• 10-15 years of proven expertise in European Union and global data protection laws, as well as Information Technology systems and programming and demonstrated leadership in obtaining information security certifications.

Critical Competencies:

Behavioral Competencies:

· Communication

· Quality and Service Orientation

· Delivering Results

· Digital Fluency

· Diversity, Equity and Inclusion Orientation

· Agility

· Leadership

· Networking

· Entrepreneurship

Functional Competencies:

· Stakeholder Relationship Management

· Compliance

· Governance, Risk and Control

· Training Facilitation Skills