Data Compliance Analyst Level II

Right Networks offers the only intelligent cloud purpose-built for accounting firms and professionals. Backed by award-winning around-the-clock US-based support, our fully managed IT and applications ensure customers have secure, reliable, on-demand access to their technology. We provide a curated software ecosystem that simplifies the complexity of running an accounting firm or small business, supported by a community of thought leaders, peer networks, and educational resources. Our success is made possible by leveraging decades of specialized experience in leading accounting firms and technology companies. More than 10,000 accounting firms and 60,000 SMBs count on us to run their business every day.

We have a great team, we’re growing fast, and have a winning culture based on innovation, teamwork, and mutual respect.

Job Overview

Right Networks is seeking a highly skilled and experienced Data Compliance Analyst Level II to join our organization. As a Data Compliance Analyst, you will be responsible for ensuring our organization's compliance with data protection laws, regulations, and internal policies. You will play a crucial role in assessing and monitoring our data compliance framework, conducting audits, and providing guidance to ensure the secure and responsible handling of data.

This is a remote work position.

Responsibilities

• Compliance Monitoring: Conduct regular assessments and monitoring activities to ensure compliance with applicable data protection laws, regulations, and internal policies. Identify areas of non-compliance and work collaboratively with relevant teams to address and resolve any issues.
• Data Privacy Impact Assessments (DPIA): Support the development and execution of DPIAs for new projects or processes involving data. Assess and mitigate potential privacy risks, document findings, and recommend appropriate measures to ensure compliance and protect privacy rights.
• Audit and Risk Management: Conduct internal audits to evaluate data compliance practices, identify gaps, and recommend corrective actions. Collaborate with stakeholders to develop and implement risk management strategies, including the establishment of controls and monitoring mechanisms.
• Policy Development and Implementation: Assist in the development, review, and implementation of data compliance policies, procedures, and guidelines. Ensure they align with relevant regulations, industry best practices, and organizational requirements. Communicate policy updates to stakeholders and facilitate training sessions as needed.
• Data Breach Incident Response: Support the incident response process in the event of a data breach or security incident. Work closely with cross-functional teams to investigate and contain incidents, perform root cause analysis, and implement measures to prevent future occurrences.
• Compliance Training and Awareness: Collaborate with the training team to develop and deliver data compliance training programs to employees at various levels within the organization. Raise awareness of data protection regulations, promote a culture of compliance, and provide guidance on best practices for data handling.
• Documentation and Reporting: Maintain accurate and up-to-date records of data compliance activities, including audit findings, risk assessments, policy updates, and incident response actions. Prepare reports and presentations on data compliance status, trends, and areas for improvement.
• Stay Updated on Data Protection Regulations: Keep abreast of emerging data protection laws, regulations, and industry standards. Proactively assess the impact of new regulations on our organization and recommend necessary adjustments to policies, procedures, and practices.

Requirements

• Bachelor’s degree (or equivalent experience) in Computer Science, Information/Data Management, Data Science, Technology Governance, and/or Privacy Management
• 10-12 years of progressive responsibility in rapidly growing and maturing IT environments
• 5 years of hands-on technology management
• Solid understanding of IT Governance, Risk Management, and Compliance concepts
• Basic experience reviewing contracts, agreements, and requirements documents
• Solid understanding of high-level cloud technology concepts (SaaS, PaaS, IaaS)
• 2 years of focused experience in an IT Governance, Risk Management, and/or Compliance role
• One or more of the following Information Governance and Privacy certifications: IAPP: CIPP/E, CIPM, and/or CIPT; ISC2: CDPSE; ISACA: CGEIT; ICCP: DGSP
• Superlative written and spoken communication skills
• Ability to effectively collaborate with high-level business stakeholders
• Ability to deconstruct, analyze, and document complex business and technology systems
• Experience analyzing and developing policies, processes, and procedures (business and technology)
• Documentation and knowledge management skills
• Industry-standard IT assurance certifications are a plus: CISSP, CISM, CISA, CRISC, CCSP
• Working knowledge of mainstream privacy regulations, such as CCPA/CPRA and GDPR, a plus
• Development, scripting, and/or automation skills, a plus
• Database management and connectivity experience, a plus
• Reporting and visualization experience, a plus
• Master Data Management concepts and/or product experience, a plus
• ETL/Data Warehousing concepts and/or product experience, a plus

Benefits

To provide best-in-class solutions, we need a best-in-class team. We offer competitive salaries to recruit the best talent. We provide company paid short and long-term disability insurance, life insurance and a generous 401K match. We offer highly affordable medical, dental, vision coverage, and many other valuable benefits. We offer a generous PTO bank, and numerous paid holidays, affording you the time to be there for what is important in your life. We encourage giving back to our communities by providing volunteer paid time off. We are proud to be an Equal Opportunity Employer!

This job description may not be inclusive of all assigned duties, responsibilities, or aspects of the job described, and may be amended at any time at the sole discretion of the employer.