Privacy Analyst

Job Responsibilities

• Assist in the development, implementation, and enforcement of data privacy policies and procedures.
• Monitor compliance with privacy laws and regulations such as GDPR, CCPA, HIPAA, and other global data protection laws.
• Conduct privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) for new and existing projects.
• Review and analyze data processing activities to identify potential risks and recommend mitigation strategies.
• Respond to privacy-related inquiries, data subject requests, and incidents, including breach response and reporting.
• Collaborate with IT, legal, compliance, and business teams to ensure privacy requirements are integrated into systems, products, and services.
• Stay up-to-date on emerging privacy regulations and industry best practices, providing recommendations to management.

Job Requirements

• Bachelor’s degree in Law, Information Security, Business, or a related field (or equivalent experience).
• 3+ years of experience in data privacy, compliance, legal, or cybersecurity roles.
• Familiarity with privacy laws and frameworks (GDPR, CCPA, HIPAA, ISO 27701, NIST Privacy Framework, etc.).
• Experience conducting privacy impact assessments, risk assessments, and compliance audits.
• Strong analytical and problem-solving skills with attention to detail.
• Excellent written and verbal communication skills for documentation and stakeholder engagement.
• Experience working with privacy management tools (OneTrust, TrustArc, etc.)