Cyber Privacy & Risk Analyst

Job Description

Our mission is to redefine the home experience with tech and services to create a smarter, greener, safer home that saves our customers money every month.

Summary:

The position will also strategically work to align advanced technologies and Privacy by Design principles at the earliest stages in development and make sure that the accumulation, analysis and actions the business chooses with data meet established regulatory compliance needs. This role will be responsible for analyzing the risk from resultant security, compliance and privacy assessments. Working across the organization to report on the risk posture. This position will also be an integral part of Vivint's Privacy team by answering consumer privacy request and managing the privacy data map. The goal of the role is to ensure security, compliance and privacy design, controls and procedures are aligned with industry and Vivint's information security and privacy standards and that the appropriate risk mitigation is identified and exposure remediated to an acceptable risk level.

Primary Responsibilities:

• Be a cross-functional champion for privacy risk management.
• Support risk owners guiding them to be cognizant of critical issues and assisting them to define the best risk response strategy.
• Work cross-functionally to analyze privacy, compliance and security risks identified through existing processes (e.g. Privacy Impact Assessments) or ad/hoc (e.g. self-identification) producing agreed results with all stakeholders of inherent and residual risks results.
• Produce and enhance different key risk metrics and risk reporting for all audiences impacted.
• Influence others to take the right decision under the Privacy Risk landscape.
• Work with cross functionally teams who work with sensitive data (e.g., Product, IT, HR, etc.) to establish processes and ensure risk management through project lifecycles.
• Support and manage various one off critical compliance, privacy and security risk remediation related projects.
• Assists with collecting data and updates from Subject Matter Experts regarding IT risks
• Maintain the company's privacy data map
• Respond to consumer DNC, RTN and deletion request.
• This role will collaborate with data product development teams creating new uses of data by using cutting-edge privacy features and prototypes that can be deployed in production code
• Performs security and privacy assessments of operational processes, existing products, and new initiatives
• Identifying, and mitigating risks across the company
• Assist with data flow diagrams and documentation
• Communicates program progress, escalations, and issue analysis to key stakeholders
• Be an SME and provide guidance on privacy principles to achieve better privacy integration in the development lifecycle
• Maintain an awareness of applicable federal and state privacy laws, as well as monitoring advancements in information privacy technologies

Required Skills:

• Project management
• Ability to analyze and articulate implications of compliance requirements
• Strong writing skills with experience in documenting assessment procedures and results
• Skilled at communicating technical information to both technical and non-technical audiences and stakeholders at every level of the organization
• Ability to build and maintain relationships across diverse technical and non-technical teams
• Understanding of current privacy standards and compliance measures, as they pertain to Software products and processes
• Excellent communication skills (verbal and written) and the ability to effectively communicate designs, proposals, and results; and negotiate options at management levels
• Demonstrated teamwork and collaboration skills, in particular in leading or contributing to global and multi-functional teams

Required Education/Experience:

• Privacy Certification (CIPM/CIPP/CIPT) or Risk Certification (CRMP/ CRISC) 2 years' experience working in privacy or risk management or analysis
• Bachelors Degree or relevant work experience
• Hands-on practice executing qualitative and quantitative risk analysis on complex environments.
• Experience in heavy technological environments and matrixed organizations.
• Knowledge of Privacy compliance standards (e.g. ISO27701 and/or regulations (e.g. GDPR) and Risk Management frameworks (e.g. ISO31000 or NIST 800-53)
• Proven track record of collaborating with cross-functional groups to set objectives and produce results.
• Experience managing, organizing, and coordinating projects and process-improvements in a program.

Learn about the Vivint Culture and why it's a great place to grow your career!

Here are some highlighted perks you should ask us about:

• Free daily lunch and drinks on site
• Paid holidays and flexible paid time away
• Employee/Friends/Family Discounts
• Onsite health clinic, gym, gaming tables
• Medical/dental/vision/life coverage & 24/7 Medical Hotline
• 401(k) + Employer Match
• Employee Resource Groups

WORKING CONDITIONS:
This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines.

SAFETY:
Vivint enforces a safety culture whereby all employees have the responsibility for continuously developing and maintaining a safe working environment. Each new employee is responsible for completing all training requirements. Additionally, the employee must accept they have responsibility for maintaining the safety of themselves, their co-workers, and the public. Employee must adhere to all written and verbal instructions, promptly report and correct all hazards or unsafe conditions, question non-standard operations or unmitigated hazards, and provide feedback to management on all safety issues.

If you are an active Vivint employee, please apply through Workday by searching "Find Jobs".