Privacy Compliance Senior Analyst

Privacy Compliance Senior Analyst

Oracle Corporation Asia Pacific Division
Singapore Thailand
7 - 10 Years
Not Specified

Job Description


Job Description :
Preferred Qualifications
Responsible for supporting the IT Compliance Department with the establishment and maintenance of all Data Privacy compliance programs within NetSuite. Existing programs include GDPR Privacy Self Assessment compliance, CCPA Alignment, EU Privacy Shield compliance, ISO 27K, and related security and privacy policies and processes. Assist in conducting research on privacy compliance requirements and legislation, and, as necessary, responsible for performing walkthroughs and controls testing, and writing up reports to document findings for review by the relevant project manager. Coordinate, collaborate, communicate, and work effectively with prospects, customers, internal process owners, internal and external auditors, and all levels of management.
• Provide guidance and lead the identification, implementation, and maintenance of information policies and procedures in coordination with appropriate organization management and administration for privacy.
• Perform gap and readiness assessments for compliance obligations focused on privacy (i.e. Privacy assessments, EU SafeHarbor/ Privacy shield, Global Data Protection Regulation, ISO 27018, etc):
- Agree objective, goals, and scope of the project with senior management. Obtain management support and commitment of resources for the assessment
- Build audit programs, including audit plan, process, scope, procedures, questionnaires and schedules
- Assess adequacy of existing policies, processes, and controls against the requirements of the compliance obligation
- Work with management to draft and implement remediation plans to mitigate identified issues and risks, and improve processes and controls
- If working with staff, review staff output, provide guidance on project next steps, and supervise and guide staff in working with internal customers
• Perform periodic privacy audits of websites, products, applications, operations and environments for adherence to corporate privacy policies and guidelines.
• Work closely with Legal department and/or external consultants to ensure the organization is up-to-date on privacy requirements, identify areas of concern, develop the relevant solutions, provide management response, track progress and drive actions to completion.
• Enforce compliance with policies and standards in conjunction with internal audit, developing, managing and monitoring security over business processes.
• Maintain controls documentation with SMEs and ensure compliance with Internal and External Audit.
• Provide guidance and advice to the organization with current information on related regulatory issues and compliance technologies.
Qualifications – (hopefully these align with the market trends today)
• Highly independent, with high ethical standards and integrity
• Experience in program or project management
• Knowledge of GDPR, CCPA, EU Privacy Shield, ePHI, PII and/or other data privacy and related security regulatory and compliance requirements an advantage
• 7-10 years of experience in compliance, focused on information security, risk management, privacy, and controls, of which at least 3 years is in a project or program management position
• Knowledge or exposure to Binding Corporate Rules, Model Clauses, Global Data Protection Regulation and/or Privacy Shield an advantage
• Effective communication and presentation skills
• Experience dealing with all levels of management and across different teams, including managing conflicts
• Outstanding cross-group collaboration skills and proven ability to drive initiatives across organizations
• Working knowledge of SAAS cloud hosting models essential
• Exposure to cloud environment security standards and implementation an advantageExecutes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.
Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company*s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.
Job duties are varied and complex; independent judgment needed. May have project lead role. Prefer 5 years relevant experience and BA/BS degree.
As part of Oracle%27s employment process candidates will be required to successfully complete a pre-employment screening process. This will involve identity and employment verification, professional references, education verification and professional qualifications and memberships (if applicable).Detailed Description and Job Requirements
Executes security controls to prevent hackers from infiltrating company information or jeopardizing e-commerce programs.
Researches attempted efforts to compromise security protocols. Maintains security systems for routers and switches. Administers security policies to control access to systems. Maintains the company*s firewall. Uses applicable encryption methods. Provides information to management regarding the negative impact on the business caused by theft, destruction, alteration or denial of access to information.
Job duties are varied and complex; independent judgment needed. May have project lead role. Prefer 5 years relevant experience and BA/BS degree.
As part of Oracle%27s employment process candidates will be required to successfully complete a pre-employment screening process. This will involve identity and employment verification, professional references, education verification and professional qualifications and memberships (if applicable).

People Also Considered