Data Governance and Protection Analyst

Request Technology - Dallas, TX

posted 3 months ago

Full-time
Dallas, TX
Administrative and Support Services

About the position

The Information Data Governance and Protection Analyst position at a prestigious financial company is a critical role focused on supporting the development and implementation of the information governance, data protection, and privacy program. The candidate will be responsible for creating strategies, policies, procedures, and controls that govern and protect information throughout its lifecycle. This role requires collaboration with various stakeholders to define the necessary governance, data protection, and privacy requirements, ensuring compliance with these requirements to mitigate risks. The analyst will represent the program to both internal and external stakeholders and will also support the development and implementation of training and awareness programs related to information governance and data protection. A significant aspect of this role involves ensuring compliance with applicable regulatory and legal requirements, such as SEC Regulation SCI and CFTC System Safeguards. The analyst will assist in regulatory examinations and internal audit remediation planning, tracking, and mitigation. The position demands a proactive approach to creating a culture that treats information as an enterprise asset, implementing the information governance and data protection program, and developing necessary policies and procedures. The analyst will be tasked with identifying and implementing technologies that support program objectives and classification standards, executing controls and risk assessments, and performing privacy impact assessments on data incidents. Collaboration with Security Services and Legal teams will be essential in closing incidents effectively. Additionally, the analyst will prepare the program for regulatory and internal audits, ensuring timely remediation of any findings. The role also includes maintaining the organization's Records and Information Management (RIM) program, ensuring proper retention and disposal of information across all media and formats, and addressing retention, disposition, protection, and classification in new applications and systems. The analyst will also support the development of training programs and identify trends in privacy and regulatory requirements to adapt the program accordingly.

Responsibilities

  • Work with appropriate stakeholders and across the organization to create a culture that manages information as an enterprise asset.
  • Implementation of the information governance, data protection, and privacy program including the development of policies, procedures, and job aids.
  • Identification, implementation, and use of technologies to support program objectives and classification standards.
  • Execution of controls and risk assessments (e.g., third-party risk, privacy, data protection).
  • Perform privacy impact assessments on data incidents and collaborate with relevant stakeholders like Security Services and Legal to close incidents.
  • Creation and execution of strategies to identify information across the organization and throughout its life cycle.
  • Preparation of the program for regulatory and internal audits/examinations and timely remediation of any findings.
  • Use technology/tools to track projects, manage deliverables, and create reporting that supports the program and its objectives.
  • Support compliance assessments for information governance, data protection, and privacy including development of controls to measure risk.
  • Development and maintenance of the organization's Records and Information Management (RIM) program, ensuring proper retention and disposal of information.
  • Ensure retention, disposition, protection, and classification are addressed in new applications, platforms, and systems.
  • Collaborate with internal and external stakeholders to implement information governance, data protection, and privacy policies and requirements.
  • Support and develop training and awareness programs for information governance, data protection, and privacy.
  • Identify trends in privacy and regulatory requirements, compliance enforcement, and implement necessary changes in the program.

Requirements

  • Strong interest in understanding and solving data challenges with experience in information governance, data protection, and privacy policy.
  • Knowledge of and work experience with enterprise systems, networks, databases, and other technical domains.
  • Strong attention to detail, customer orientation, communication, and presentation skills, including the ability to listen and quickly translate business needs into solutions.
  • Strong experience in building capabilities for auto data classification, data security, and data protection.
  • Experience with classification standard definitions and settings.
  • Experience with privacy requirements and working with personal information and its protection.
  • Strong strategic thinking, problem-solving, and analytic skills.
  • Utilize metrics as a means to improve performance.
  • Ability to adapt to change in emerging environments and work across multiple areas.
  • Experience in developing policies and procedures.
  • Experience in project management, project execution, and managing multiple priorities in a timeline-driven environment.
  • Experience working in a highly regulated environment, including an understanding of audit and compliance requirements.
  • Proficiency in Office 365 (Word, Excel, PowerPoint).
  • Experience with systems supporting Compliance, Risk, Audit, Privacy, and Management such as ServiceNow, Archer, etc.
  • Project/Program Management and Business Intelligence tool experience.
  • Bachelor's degree or higher in information management, information systems, law, computer science, or BA/BS in another discipline with equivalent experience.

Nice-to-haves

  • Certifications in Information, Data, Privacy Records or Security such as: Certified Information Privacy Professional (CIPP), Certified Information Privacy Management (CIPM), Certified Records Manager (CRM), Certified Information Privacy Technologist (CIPT), Certified Information Systems Security Professional (CISSP), Information Governance Professional (IGP), Certified Information Security Manager (CISM), and Certified Information Systems Auditor (CISA).

Benefits

  • Bonus eligibility.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service