Find Jobs Find Talent
Data Privacy & Regulatory General Compliance Analyst
Madison, NJ  |  Remote
Contract Position
It appears that you have already applied to this job.
Applied on May 20, 2022
Job Id #55502 Posted April 7, 2022

Position Summary:
  • This role is part of a continuously evolving/growing program and perform various assessment types against various types of regulation.
  • In collaboration with all business areas and company affiliates, the person in this role will assist in measuring the maturity of appropriate protocols, applications and data share for handling highly confidential and personal data.
  • They will provide management with observations and their recommendations about opportunities to further strengthen controls or bring forth new controls.
  • They will provide transparency into what the assessments are revealing and be able to summarize an executive level conclusion (and support that conclusion with examples/context).
Responsibilities:
  • Perform walkthroughs related to the use of applications used by the organization and any process disciplines to understand how data is being used, managed, stored, and when applicable, shared.
  • Conducts Privacy Impact Assessments of identified applications and/or business processes identified as in-scope for Data Privacy Regulatory requirements, reconciled against the company’s Information Security Standards and identify when other Regulations are in scope fir future data reuse opportunities.
  • Participates in developing and implementing action plans to maintain compliant with internal and external regulatory bodies. Collect evidence in a way that would support external, internal and self auditing bodies.
  • Provide guidance during development of internal systems/applications/infrastructure changes supporting the business to ensure appropriate compensating controls are in-place for ongoing compliance needs.
  • Assists in the monitoring and investigations of operational issues that require an impact analysis concentrating on compliance matters or items resulting from Data Privacy Impact Assessments.
  • Utilizes Data Privacy GRC Tool (TrustArc) and other Regulatory support tools (Nymity) to assess Data Privacy and Regulatory Compliance related matters and determine if the shift in environment will impact the DP and compliance activities owned by GIS.
  • Technical acumen to manage and enhance enterprise Data Privacy tools and solutions.
  • Assists in the development and provide privacy training guidance to business clients to help keep the messaging of "data privacy importance" in the forefront.
  • Support the identification of process improvements focusing on continuous improvement to move from manual to automated processes pertaining to security/data privacy controls.
  • Provide appropriate reports and updates to GIS manager on data privacy matters and assist with the creation/ further development of appropriate tracking metrics.
  • Knowledge of Vendor Risk Assessments and how third-party risk can be mitigated is important as several applications will be provided and or co-managed with a vendor. Understanding what a firm's Vendor risk team would be assessing up front is useful but not critical must have.
  • Additional responsibilities as required.
Minimum Qualifications:
  • Knowledge in the areas of data and application/system risk analysis and data privacy regulations, hands on experience with various types of information and application security assessments, knowledge of IT security standards and best practices, and strong familiarity with the active and pending state privacy and security regulations.
  • Bachelor's degree in a business-oriented or related discipline
  • Must demonstrate proficiency and familiarity with regulations such as HIPAA, NYDFS, GLBA, State Data Privacy Acts, and PCI-DSS.
  • Knowledge of common IS security regulations and standards, such as ISO/IEC 27001 and 27002, FISMA, the NIST Cybersecurity Framework and NIST Special Security Publications and AICPA SOC2 required. (Important: Having this WITHOUT adequate Data Privacy familiarity is not a fit for this role)
  • Three or more years of experience conducting security control assessments, vendor risk assessments and or IT/operational control audits. (Be specific on resumes please.)
  • Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Internal Auditor (CIA), and other applicable certifications preferred, but not required.
  • Strong analytical and problem-solving skills, strategic, innovative and creative thinking with ability to assist in developing best practices.
  • Project Management experience strongly preferred. This person will need to be organized, understand how to manage time and priorities to meet deadlines.
  • Strong verbal and written communication skills with the ability to communicate regulatory concepts to a broad range of technical and non-technical staff. They are at times forward facing to key personnel at the firm and external to the firm but also formulating communications that would be discoverable in any audit.
  • Networking and relationship building skills required. If they are already part of industry networks, we would love to know that too.
  • Ability to work independently and collaboratively, in a team and highly visible setting.
  • A high level of initiative & a Self-starter. Someone that drives to deadline, can operate under pressure and time constraints and willing to be cross-pollinated in other areas of this program.
  • Familiar with using GRC platforms to capture and report on results.
  • Good problem solver!!

Horizontal is proud to be an Equal Opportunity and Affirmative Action Employer. We seek to provide employment opportunities to talented, qualified candidates regardless of race, color, sex/gender including gender identity and/or expression, national origin, religion, sexual orientation, disability, marital status, citizen status, veteran status, or any other protected classification under federal, state or local law.

In addition, Horizontal will provide reasonable accommodations for qualified individuals with disabilities. If you need to request a reasonable accommodation in order to complete the application or interview process, please contact hr@horizontal.com.

All applicants applying must be legally authorized to work in the country of employment.

EQUAL OPPORTUNITY EMPLOYMENT SURVEY

What is your gender?

What is your ethnicity?

What is your Veteran / U.S. Military Status?

Do you identify with one or more of the classifications of protected veterans below?

If yes, please indicate by checking the appropriate box below

Do you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Horizontal is proud to be an Equal Employment Opportunity/Affirmative Action Employer providing a drug-free workplace.

Success!

You have saved your first job! To see all your Saved Jobs, click here. Or continue scrolling through jobs and bookmark openings that catch your eye and apply for those jobs later.

Return to Job Search
Close

We’re sorry!

There are currently no open positions in your location or accepting applications from out of the country

Return to Home
Close
X
Cookies help us improve your website experience.
By using our website, you agree to our use of cookies.
Confirm