Information Privacy and Compliance Analyst

Clark University - Worcester, MA

posted about 1 month ago

Full-time - Mid Level
Worcester, MA
1,001-5,000 employees
Educational Services

About the position

The Information Privacy and Compliance Analyst at Clark University plays a crucial role in developing, implementing, and ensuring compliance with the University's information security and data privacy policies. This position requires collaboration with various stakeholders to enhance data management workflows and ensure adherence to relevant regulatory requirements. The analyst will also be responsible for training and awareness programs related to data security and privacy, as well as managing third-party risk assessments for IT-related contracts.

Responsibilities

  • Monitor and advise on information security/privacy issues related to information assets and business processes.
  • Stay updated on external regulations and assess potential risks to translate them into University policy.
  • Develop and revise University policies and procedures related to data security and privacy.
  • Collaborate with data owners on process improvements and participate in incident response activities.
  • Review third-party vendor services/contracts for data security/privacy considerations and develop a monitoring process.
  • Document data-related components of the University's business continuity and disaster recovery program.
  • Develop communications and training programs to support compliance with data security/privacy standards.
  • Serve as staff support to the University's Information Security/Privacy Council.
  • Participate in annual audits and data security/privacy reviews as needed.
  • Manage end-user training programs on information security and data privacy.
  • Engage with external professional organizations relevant to information security/privacy.

Requirements

  • Bachelor's degree plus 3 years of relevant experience in information technology, security, or risk management.
  • Ability to translate compliance requirements into enterprise-wide data security/privacy standards.
  • Working knowledge of information security/privacy standards and regulations (e.g., NIST, FERPA, HIPAA).
  • Experience in reviewing and monitoring third-party vendor contracts for data security/privacy considerations.
  • High degree of integrity regarding computer security and confidentiality of information.
  • Ability to see the big picture while engaging with projects at a micro level.
  • Exceptional verbal and written communication skills, with the ability to explain complex issues to non-technical audiences.
  • Demonstrated passion for problem-solving and excellent project management skills.
  • Team player with consulting skills and a professional presence.
  • Knowledge of IT governance and operations.

Nice-to-haves

  • Experience in a higher education environment preferred.
  • Ability to work nights and weekends on an as-needed basis.

Benefits

  • Paid time off
  • Generous retirement plan
  • Group health and dental insurance
  • Life insurance
  • Tuition assistance
  • Access to campus amenities

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service