Seminole Hard Rock Support Services
Data Protection & Privacy Analyst
Seminole Hard Rock Support Services, Fort Lauderdale, Florida, us, 33336
Overview:Seminole Hard Rock Support Services ("Company") is seeking a highly motivated, goal-oriented, dedicated Data Protection Analyst ("Analyst") with a focus on Third Party Risk Management to join our exciting and fast-paced Global Data Protection team in Davie, Florida. The Analyst will work closely with the Company third-party vendors and service providers to assess Privacy and Information Security operational and contractual risks. The Analyst will communicate requirements and recommend controls to ensure risk minimization and Company compliance.
In addition to third-party risk management, the Analyst will provide Privacy subject matter expertise and risk assessment to the Company business units. This would include drafting Privacy documents, processing global Data Subject Access Requests ("DSRs"), conducting privacy and international law research, and monitoring that the Privacy requirements are implemented.
Our team is growing, and if you are equally passionate about privacy, data management, and career growth, an opportunity at Seminole Hard Rock may be a great match!
Responsibilities:
Manage third party and service providers' on-boarding: this includes being the point of contact for all privacy inquiries, analyzing vendor risk assessment results, and reviewing vendor information security and Privacy controls to ensure alignment with internal and legal requirements.Lead third party meetings to understand information management practices and impact to the Company.Assist with reviewing third party data processing agreements with the purpose of identifying and mitigating Privacy and information security contractual risks.Assist with processing DSARs in a timely manner to ensure compliance with regulatory requirements.Assist with conducting Data Mapping Project to ensure the Company has a clear visibility of personal information processed.Assist with conducting Data Protection Impact Assessments as per GDPR requirements and other global regulatory requirements the Company is subject to.Research global and local privacy and data protection laws and standards and translate requirements into actionable steps.Assist with reviewing and developing privacy-related policies, standards, and procedures.Monitor changes in third party regulatory requirements and coordinate with GDPO impact analysis.
Qualifications:Minimum of three (3) years of experience in a GDPO compliance role.Strong understanding of privacy legal and regulatory requirements within the United States and appreciation of global privacy-related laws.Excellent organizational skills with a strong focus on accuracy and attention to detail.Bachelor's degree or equivalent combination of education, preferably in MIS, CIS, Computer Science, Cyber Security, or Law.Experience in reviewing and annotating data processing agreements identifying privacy and information security risks.Ability to effectively operate both independently and as part of a team.Good written and verbal communication skills.Strong multi-tasking skills and the ability to prioritize competing demands.High level of personal integrity and confidentiality.Have an upbeat, positive attitude to get things done and have fun!
Additional, Preferred Qualifications:CIPP/US, CIPP/E, CIPM, and/or CIPT or other relevant privacy certification.Experience with design, implementation, and maintenance of Privacy compliance policies, procedures, and programs.Proficiency in Microsoft Office Suite (i.e. PowerPoint, Excel, Word, OneDrive).Experience with GRC tools, data posture management solutions, and international law research toolsets.Ability to cross-train and work collaboratively with the GDPO and compliance team on day-to-day occurrences.Experience in performing Privacy risk assessments and ongoing Privacy compliance monitoring activities.Experience with compliance management tools.Ability to translate regulatory requirements into practical and actionable elements while supporting business strategy.
#J-18808-Ljbffr
In addition to third-party risk management, the Analyst will provide Privacy subject matter expertise and risk assessment to the Company business units. This would include drafting Privacy documents, processing global Data Subject Access Requests ("DSRs"), conducting privacy and international law research, and monitoring that the Privacy requirements are implemented.
Our team is growing, and if you are equally passionate about privacy, data management, and career growth, an opportunity at Seminole Hard Rock may be a great match!
Responsibilities:
Manage third party and service providers' on-boarding: this includes being the point of contact for all privacy inquiries, analyzing vendor risk assessment results, and reviewing vendor information security and Privacy controls to ensure alignment with internal and legal requirements.Lead third party meetings to understand information management practices and impact to the Company.Assist with reviewing third party data processing agreements with the purpose of identifying and mitigating Privacy and information security contractual risks.Assist with processing DSARs in a timely manner to ensure compliance with regulatory requirements.Assist with conducting Data Mapping Project to ensure the Company has a clear visibility of personal information processed.Assist with conducting Data Protection Impact Assessments as per GDPR requirements and other global regulatory requirements the Company is subject to.Research global and local privacy and data protection laws and standards and translate requirements into actionable steps.Assist with reviewing and developing privacy-related policies, standards, and procedures.Monitor changes in third party regulatory requirements and coordinate with GDPO impact analysis.
Qualifications:Minimum of three (3) years of experience in a GDPO compliance role.Strong understanding of privacy legal and regulatory requirements within the United States and appreciation of global privacy-related laws.Excellent organizational skills with a strong focus on accuracy and attention to detail.Bachelor's degree or equivalent combination of education, preferably in MIS, CIS, Computer Science, Cyber Security, or Law.Experience in reviewing and annotating data processing agreements identifying privacy and information security risks.Ability to effectively operate both independently and as part of a team.Good written and verbal communication skills.Strong multi-tasking skills and the ability to prioritize competing demands.High level of personal integrity and confidentiality.Have an upbeat, positive attitude to get things done and have fun!
Additional, Preferred Qualifications:CIPP/US, CIPP/E, CIPM, and/or CIPT or other relevant privacy certification.Experience with design, implementation, and maintenance of Privacy compliance policies, procedures, and programs.Proficiency in Microsoft Office Suite (i.e. PowerPoint, Excel, Word, OneDrive).Experience with GRC tools, data posture management solutions, and international law research toolsets.Ability to cross-train and work collaboratively with the GDPO and compliance team on day-to-day occurrences.Experience in performing Privacy risk assessments and ongoing Privacy compliance monitoring activities.Experience with compliance management tools.Ability to translate regulatory requirements into practical and actionable elements while supporting business strategy.
#J-18808-Ljbffr