CHS has an exciting opportunity in our IT Data Protection Team. We are looking for a Privacy Analyst to support and grow Privacy Operations and Compliance at CHS.
This position will report to the Data Protection Manager and will be responsible for administering cross functional efforts to discover, build, execute and refine technical controls, assessments and technology as it relates to Privacy.
The successful candidate will possess the ability to function independently, apply professional judgement, interface with all levels of stakeholders, communicate complex matters clearly and succinctly.
This talent should be a go-getter with strong collaboration and analytical skills bridging IT concepts to business processes and identify cost-effective solutions.
? This position will:
Deliver on privacy and security project initiatives to further mature our Privacy and Cyber Security program. Collaborate with staff in other information security, IT department, legal and business teams to ensure CHS is incorporating privacy into operations with integrity, inclusion, safety and the cooperative spirit in mind.
Serve as a trusted privacy advisor to business staff regarding a privacy sensitive approach to collection, use, handling and security of personal information and compliance with applicable laws and regulations while meeting business objectives Execute transformational activities related to privacy security awareness, compliance, vendor risk management, incident management and security technology implementations to support risk reduction initiatives Utilize his/her own knowledge/experience and problem-solving skills to creatively resolve complex issues,
choose the best course of action and
prioritize key issues, goals and work plans to various leaders and business line Conduct ongoing pre-assessments and risk assessments to ensure CHS?s compliancy Support Data Protection Committee meetings in partnership with the Data Protection and CISO. Coordinate and address implementation and governance work efforts associated to GDPR, other privacy regulations and privacy compliancy programs Oversee adherence to technical controls, policies, standards, procedures, including employee training Champion new process or technology implementations to drive further automation and efficiencies Assist privacy program governance and oversight of information security program maturity disciplines to the CHS information risk management program including the development and implementation of an IT risk assessment process and oversight/coordination of industry assessments Design and implement processes that embody Privacy by Design principles into new and existing business processes, information uses and systems Fosters a culture of exemplary leadership, prioritization, delivery and collaboration. Cultivate and promote a strong safety culture and follow all safety policies, procedures and regulations. Identify and communicate workplace hazards and correct or seek assistance in correcting unsafe actions or conditions
Basic Qualifications: (required) 5 plus years of IT Information Security and/or Privacy experience in a large-scale public company to include: 1+ year(s) of experience working with GDPR 3+ years of experience working with IT and the Business to reach goals Working knowledge of the technical controls and policies used to meet the compliance requirements and testing procedures Knowledge of industry trends, direction and best practices in domain areas of responsibility 2 plus years of team or project leadership experience
Preferred Qualifications: (desired)
Bachelor?s degree Professional certifications such as CIPP/US, CIPP/E or others Experience with Auditors Training end users experience Experience with convenience store/gas retail environments Project management background and experience with an emphasis on information security and compliance